JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.69.138.171

172.69.138.171 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 172.69.138.171 is an IP address from within our whitelist belonging to the subnet 172.64.0.0/13, which we identify as: "Cloudflare Reverse Proxy".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 172.69.138.171

Whois 172.69.138.171

IP Abuse Reports for 172.69.138.171:

This IP address has been reported a total of 20 times from 9 distinct sources. 172.69.138.171 was first reported on December 8th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-23 12:25:18 (2 weeks ago)	[Sat May 23 14:25:17.575745 2026] [authz_core:error] [pid 12227] [client 172.69.138.171:9540] AH0163 ... show more [Sat May 23 14:25:17.575745 2026] [authz_core:error] [pid 12227] [client 172.69.138.171:9540] AH01630: client denied by server configuration: /etc/httpd/htdocs [Sat May 23 14:25:17.754458 2026] [authz_core:error] [pid 12227] [client 172.69.138.171:9540] AH01630: client denied by server configuration: /etc/httpd/htdocs [Sat May 23 14:25:17.940424 2026] [authz_core:error] [pid 12227] [client 172.69.138.171:9540] AH01630: client denied by server configuration: /etc/httpd/htdocs ... show less	Web App Attack
🇧🇷 danchoivanov	2026-05-18 22:10:54 (3 weeks ago)	Automated scanner probing /wp-content/plugins/hellopress/wp_filemanager.php on simpleitsrq.com. Auto ... show more Automated scanner probing /wp-content/plugins/hellopress/wp_filemanager.php on simpleitsrq.com. Auto-blocked by honeypot trap. show less	Web App Attack Hacking
Anonymous	2026-03-28 13:56:30 (2 months ago)	[Sat Mar 28 14:56:29.710489 2026] [authz_core:error] [pid 11403] [client 172.69.138.171:10090] AH016 ... show more [Sat Mar 28 14:56:29.710489 2026] [authz_core:error] [pid 11403] [client 172.69.138.171:10090] AH01630: client denied by server configuration: /etc/httpd/htdocs [Sat Mar 28 14:56:29.933759 2026] [authz_core:error] [pid 11403] [client 172.69.138.171:10090] AH01630: client denied by server configuration: /etc/httpd/htdocs [Sat Mar 28 14:56:30.163293 2026] [authz_core:error] [pid 11403] [client 172.69.138.171:10090] AH01630: client denied by server configuration: /etc/httpd/htdocs ... show less	Web App Attack
🇮🇹 Fusty	2025-08-31 14:56:52 (9 months ago)	Unauthorized attempt on (TCP on port 2087). Source port: 61618 TTL: 53 Packet length: 60 Timestamp: ... show more Unauthorized attempt on (TCP on port 2087). Source port: 61618 TTL: 53 Packet length: 60 Timestamp: 2025-08-31 16:56:52 show less	Port Scan
🇯🇵 S.O.B.A. Dev.	2025-07-15 17:31:08 (10 months ago)	Persistent port scanning or vulnerability scanning	Port Scan
Anonymous	2025-05-31 23:38:26 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇳🇱 Study Bitcoin 🤗	2025-04-19 09:42:37 (1 year ago)	Port probe to tcp/80 (http) [srv125]	Port Scan Bad Web Bot Web App Attack
Anonymous	2025-04-15 01:53:36 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇯🇵 Kinsei Engineering Inc.	2025-03-27 23:24:11 (1 year ago)	UFW:High-frequency access to unused ports	Port Scan
🇯🇵 Kinsei Engineering Inc.	2025-03-11 13:47:43 (1 year ago)	UFW:High-frequency access to unused ports	Port Scan
🇺🇦 URAN Publishing Service	2025-01-02 03:03:34 (1 year ago)	172.69.138.171 - - [02/Jan/2025:04:59:25 +0200] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 404 ... show more 172.69.138.171 - - [02/Jan/2025:04:59:25 +0200] "GET /wp-content/themes/sketch/404.php HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:73.0) Gecko/20100101 Firefox/73.0" 172.69.138.171 - - [02/Jan/2025:05:03:34 +0200] "GET /wp-includes/PHPailer/about.php HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2024-12-27 02:37:51 (1 year ago)	172.69.138.171 - - [27/Dec/2024:04:36:29 +0200] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 404 280 "- ... show more 172.69.138.171 - - [27/Dec/2024:04:36:29 +0200] "GET /wp-admin/images/Mhbgf.php HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36" 172.69.138.171 - - [27/Dec/2024:04:37:50 +0200] "GET /wp-content/install.php HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" ... show less	Web App Attack
🇩🇪 IllusionCloud	2024-12-20 00:02:20 (1 year ago)	ILShield Appliance Alert: The following IPv4 address has been identified with potential malicious ac ... show more ILShield Appliance Alert: The following IPv4 address has been identified with potential malicious activities, including Internet Scanning, Denial of Service (DoS) Attacks, Participation in Distributed Denial of Service (DDoS) Attacks, Transmission of Invalid Packets, Potential IP Spoofing. show less	DNS Compromise DNS Poisoning DDoS Attack FTP Brute-Force Ping of Death SQL Injection Brute-Force Exploited Host Web App Attack SSH IoT Targeted
🇩🇪 IllusionCloud	2024-12-19 00:01:03 (1 year ago)	ILShield Appliance Alert: The following IPv4 address has been identified with potential malicious ac ... show more ILShield Appliance Alert: The following IPv4 address has been identified with potential malicious activities, including Internet Scanning, Denial of Service (DoS) Attacks, Participation in Distributed Denial of Service (DDoS) Attacks, Transmission of Invalid Packets, Potential IP Spoofing. show less	DNS Compromise DNS Poisoning DDoS Attack FTP Brute-Force Ping of Death SQL Injection Brute-Force Exploited Host Web App Attack SSH IoT Targeted
🇩🇪 IllusionCloud	2024-12-17 00:01:55 (1 year ago)	ILShield Appliance Alert: The following IPv4 address has been identified with potential malicious ac ... show more ILShield Appliance Alert: The following IPv4 address has been identified with potential malicious activities, including Internet Scanning, Denial of Service (DoS) Attacks, Participation in Distributed Denial of Service (DDoS) Attacks, Transmission of Invalid Packets, Potential IP Spoofing. show less	DNS Compromise DNS Poisoning DDoS Attack FTP Brute-Force Ping of Death SQL Injection Brute-Force Exploited Host Web App Attack SSH IoT Targeted

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 178.178.194.137

🇺🇸 147.185.132.117

🇸🇬 43.156.239.194

🇷🇺 37.77.150.241

🇸🇬 178.128.84.112

🇻🇳 115.78.226.174

🇨🇳 113.221.9.152

🇧🇴 200.105.172.184

🇩🇪 194.88.98.94

🇮🇳 182.95.43.50

🇧🇷 179.218.63.2

🇫🇮 147.185.133.253

🇭🇰 116.48.138.69

🇿🇦 105.233.67.36

🇷🇺 94.233.127.218

🇳🇱 91.199.163.52

🇬🇧 89.37.172.132

🇩🇪 69.5.169.40

🇩🇪 43.165.62.10

🇬🇧 35.203.211.137