JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 167.99.248.146

167.99.248.146 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Hostname(s)	1536075.cloudwaysapps.com
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 167.99.248.146

Whois 167.99.248.146

IP Abuse Reports for 167.99.248.146:

This IP address has been reported a total of 151 times from 65 distinct sources. 167.99.248.146 was first reported on March 19th 2021, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Sipo Chutão	2025-08-19 03:00:01 (9 months ago)	/teorema505?t=1	Hacking
Anonymous	2025-08-17 00:11:38 (9 months ago)	Aggressive web scan	SQL Injection Bad Web Bot Web App Attack
Anonymous	2025-08-16 23:24:16 (9 months ago)	Blocked by cpGuard/ModSecurity WAF	Web App Attack
🇨🇳 ThreatBook.io	2025-08-16 22:43:56 (9 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/167.99.248.146 2025-08 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/167.99.248.146 2025-08-16 04:02:21 /ab2g 2025-08-16 04:02:23 /alive.php 2025-08-16 04:02:22 /ab2h show less	Web App Attack
🇺🇸 mnsf	2025-08-16 19:05:17 (9 months ago)	Too many Status 50X (13)	Brute-Force Web App Attack
🇭🇺 HoneyPotEu	2025-08-16 16:57:35 (9 months ago)	167.99.248.146 - (14061-DIGITALOCEAN-ASN Germany Frankfurt am Main) - - [16/Aug/2025:18:57:35 +0200] ... show more 167.99.248.146 - (14061-DIGITALOCEAN-ASN Germany Frankfurt am Main) - - [16/Aug/2025:18:57:35 +0200] "x16x03x01x00{x01x00x00wx03x033}xFEx80xEExC9gxC6x8FxE3oWxCF?xA7x00xE1xB4xB7jY ... show less	Bad Web Bot Web App Attack
🇳🇱 JCB	2025-08-16 16:40:00 (9 months ago)	167.99.248.146 - - [15/Aug/2025:23:26:26 +0300] "GET /ab2g HTTP/1.1" 404 196 "-" "Mozilla/5.0 zgrab/ ... show more 167.99.248.146 - - [15/Aug/2025:23:26:26 +0300] "GET /ab2g HTTP/1.1" 404 196 "-" "Mozilla/5.0 zgrab/0.x" 167.99.248.146 - - [15/Aug/2025:23:26:27 +0300] "GET /ab2h HTTP/1.1" 404 196 "-" "Mozilla/5.0 zgrab/0.x" ... show less	Hacking Web App Attack
🇬🇧 djboddington	2025-08-16 16:10:55 (9 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-backdoors-attempts	Hacking Exploited Host
🇩🇪 pigro	2025-08-16 11:27:55 (9 months ago)	167.99.248.146 - - [16/Aug/2025:13:27:54 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03f=\xAB\x09\x ... show more 167.99.248.146 - - [16/Aug/2025:13:27:54 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03f=\xAB\x09\xC5y\x7FK8]N\xE2\xAE\xB9\x1A\xB3\x90\xAD\x86}\x88\xB7\xAC\xE5\x97\xA3\xE1X\x05~\xBC\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 157 "-" "-" 167.99.248.146 - - [16/Aug/2025:13:27:54 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x85\xBFx" 400 157 "-" "-" ... show less	Web App Attack
🇩🇪 firestorm	2025-08-16 11:26:17 (9 months ago)	167.99.248.146 - - [16/Aug/2025:13:26:16 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x01Q\xF5\xF3 ... show more 167.99.248.146 - - [16/Aug/2025:13:26:16 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x01Q\xF5\xF3\xE0>\xB2G\x996\xBC\x87{\x03\x9By\xD8\xDA\x19\x8B\xC0\x9A\xB0/`\xEC\x8E9\xF9u$r\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 150 "-" "-" 167.99.248.146 - - [16/Aug/2025:13:26:16 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03T\x19\xF53\xD0B\x8E\xF8\xC6xN\xB6P\x13U\xE3\x1D\xFD\x7F\xEFYd(" 400 150 "-" "-" ... show less	Brute-Force Web App Attack
🇫🇷 masterguru	2025-08-16 10:36:01 (9 months ago)	Host header is a numeric IP address. Pattern match "^ (920350-131)	Hacking Bad Web Bot
🇮🇪 RoboSOC	2025-08-16 09:59:12 (9 months ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	Port Scan
🇨🇭 zynex	2025-08-16 09:29:58 (9 months ago)	URL Probing: /systembc/password.php	Web App Attack
🇳🇱 antikirra	2025-08-16 09:22:51 (9 months ago)	Multiple URL Probing	Hacking Bad Web Bot Web App Attack
🇬🇧 rakkor	2025-08-16 07:50:15 (9 months ago)	2025/08/16 08:50:14 [error] 13292#13292: 1266724 FastCGI sent in stderr: "Primary script unknown" w ... show more 2025/08/16 08:50:14 [error] 13292#13292: 1266724 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 167.99.248.146, server: , request: "GET /upl.php HTTP/1.1", upstream: "fastcgi://unix:/run/php-fpm/php-925b669d-80ec-41dd-b8c8-bf5a26d831bf.sock:", host: "86.18.121.28" ... show less	Hacking Brute-Force

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 202.105.98.252

🇨🇳 183.56.179.201

🇺🇸 85.239.234.245

🇳🇬 2620:171:c5:f002:9999::241

🇺🇸 216.25.89.109

🇹🇭 203.154.158.195

🇳🇱 176.65.139.246

🇫🇮 147.185.133.226

🇹🇼 128.14.237.120

🇮🇳 103.54.31.44

🇲🇾 49.124.152.167

🇳🇱 45.142.193.12

🇬🇧 35.203.211.78

🇨🇦 20.220.147.44

🇨🇭 209.99.185.118

🇫🇷 185.137.122.108

🇮🇳 182.95.186.66

🇺🇸 173.239.214.161

🇫🇷 167.86.119.81

🇮🇳 139.59.59.165