JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.154.161.216

149.154.161.216 was found in our database!

This IP was reported 248 times. Confidence of Abuse is 19%: ?

19%

ISP	Telegram Messenger Network
Usage Type	Commercial
ASN	AS62041
Hostname(s)	ip-149-154-161-216.ptr.telegram.org
Domain Name	telegram.org
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.154.161.216

Whois 149.154.161.216

IP Abuse Reports for 149.154.161.216:

This IP address has been reported a total of 248 times from 28 distinct sources. 149.154.161.216 was first reported on June 22nd 2022, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ambor	2026-05-22 20:13:50 (4 weeks ago)	L0ss Honeypot: Database dump file access attempt. Path: /dump.sql	Web App Attack
🇮🇩 David Koswari	2026-05-20 06:20:00 (1 month ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇨🇭 🇨🇭 Hosting	2026-05-18 22:10:25 (1 month ago)	Automated security scanning detected: WordPress Setup-Config Probing. Systematic reconnaissance usin ... show more Automated security scanning detected: WordPress Setup-Config Probing. Systematic reconnaissance using automated tools. show less	Web App Attack
🇩🇪 HandyTreff.de	2026-05-15 19:47:29 (1 month ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -37.373 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -37.373 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: TelegramBot (like TwitterBot) show less	Web App Attack Bad Web Bot
🇺🇸 Mrnobot	2026-05-15 10:30:53 (1 month ago)	Confirmed scanner / probe behavior on NL-origin IP. 1 edge-firewall events. User-Agent: TelegramBot ... show more Confirmed scanner / probe behavior on NL-origin IP. 1 edge-firewall events. User-Agent: TelegramBot (like TwitterBot) Sample paths probed: /causes/trauma Source: edge-firewall events on a content site. show less	Web App Attack
🇺🇸 ambor	2026-03-30 21:40:59 (2 months ago)	L0ss Honeypot: Environment file access attempt. Path: /.env	Web App Attack
🇵🇾 armandosaucedo.me	2026-03-14 00:40:58 (3 months ago)	149.154.161.216 - - [14/Mar/2026:00:40:47 +0000] "GET /wp-content/txets.php HTTP/1.1" 404 196 "-" "T ... show more 149.154.161.216 - - [14/Mar/2026:00:40:47 +0000] "GET /wp-content/txets.php HTTP/1.1" 404 196 "-" "TelegramBot (like TwitterBot)" show less	Web App Attack
🇩🇪 HandyTreff.de	2026-03-11 14:33:16 (3 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -19.567 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -19.567 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: TelegramBot (like TwitterBot) show less	Web App Attack Bad Web Bot
🇺🇸 myagent.site	2026-03-09 18:24:26 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 SSH-Admin	2026-02-22 14:00:04 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇳🇱 Roderic	2026-02-08 07:01:33 (4 months ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot
🇳🇱 Roderic	2026-02-05 16:48:36 (4 months ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot
🇳🇱 Roderic	2026-01-22 13:13:46 (5 months ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted])	Bad Web Bot
🇺🇸 ambor	2026-01-13 21:45:36 (5 months ago)	Honeypot access: Web shell access attempt. Path: /shell.php	Hacking Web App Attack
🇦🇺 MAGIC	2026-01-06 01:05:27 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot

Showing 1 to 15 of 248 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.105

🇮🇩 103.49.223.111

🇸🇬 101.127.101.225

🇹🇼 101.13.4.124

🇳🇱 89.190.156.12

🇺🇸 66.132.172.234

🇺🇸 64.62.156.81

🇦🇷 45.162.20.216

🇨🇳 27.8.44.168

🇮🇳 2404:6800:4013:80d::121

🇰🇷 211.253.31.143

🇰🇷 211.223.187.249

🇫🇷 209.242.199.143

🇮🇩 182.1.238.178

🇰🇷 122.202.41.161

🇧🇩 103.114.20.216

🇺🇸 100.29.192.45

🇩🇪 69.5.169.60

🇩🇪 69.5.169.30

🇨🇦 20.151.205.58