JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.131.114.245

216.131.114.245 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 0%: ?

ISP	Clouvider
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62240
Domain Name	clouvider.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.131.114.245

Whois 216.131.114.245

IP Abuse Reports for 216.131.114.245:

This IP address has been reported a total of 32 times from 29 distinct sources. 216.131.114.245 was first reported on September 1st 2021, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 exxos	2025-09-14 15:03:01 (9 months ago)	Attacks with Bad user agents	Hacking
🇩🇪 Joebln	2024-06-18 12:22:00 (2 years ago)	port 25	Port Scan
🇫🇷 jk jk	2024-02-17 08:29:50 (2 years ago)	GoPot Honeypot	Port Scan Hacking
Anonymous	2024-01-26 21:19:07 (2 years ago)	postfix	Email Spam Web App Attack
🇺🇸 TPI-Abuse	2024-01-26 15:36:10 (2 years ago)	(mod_security) mod_security (id:234930) triggered by 216.131.114.245 (216-131-114-245.fra.as54203.ne ... show more (mod_security) mod_security (id:234930) triggered by 216.131.114.245 (216-131-114-245.fra.as54203.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 26 10:36:03.548918 2024] [security2:error] [pid 25187] [client 216.131.114.245:5198] [client 216.131.114.245] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|sabri.es\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "sabri.es"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "ZbPRYxdCCuK_eUjDvi3LqwAAAAA"], referer: www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Papy Abuse	2023-11-23 17:38:41 (2 years ago)	honeypots-httpproxy	Port Scan
🇬🇧 moebius	2023-11-23 10:40:10 (2 years ago)	GET /portal.php?type=stb&action=handshake&token=&prehash=0&JsHttpRequest=1-xml HTTP/1.1" 404 19 "htt ... show more GET /portal.php?type=stb&action=handshake&token=&prehash=0&JsHttpRequest=1-xml HTTP/1.1" 404 19 "http://145.239.252.18:80/c/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML show less	Web App Attack
🇬🇧 findlab	2023-10-13 20:10:02 (2 years ago)	Backdrop CMS module - Request: /wp-admin/setup-config.php	Bad Web Bot Web App Attack
🇫🇷 Guardian	2023-09-17 06:27:02 (2 years ago)	Unauthorized connection attempt to SMTP Relay	Spoofing Brute-Force
🇷🇴 abuse_IP_reporter	2023-09-17 00:15:04 (2 years ago)	Sep 17 03:14:25 server UFW BLOCK SRC=216.131.114.245 DF PROTO=TCP SPT=58731	Port Scan
🇷🇴 abuse_IP_reporter	2023-09-16 22:00:08 (2 years ago)	Sep 17 00:54:45 server UFW BLOCK SRC=216.131.114.245 DF PROTO=TCP SPT=42376	Port Scan
🇷🇴 abuse_IP_reporter	2023-09-16 20:00:08 (2 years ago)	Sep 16 22:51:45 server UFW BLOCK SRC=216.131.114.245 DF PROTO=TCP SPT=58731	Port Scan
🇳🇱 ManagedStack	2023-06-01 19:26:25 (3 years ago)	GET "/portal.php?type=stb&action=handshake&token=&prehash=0&JsHttpRequest=1-xml"	Web App Attack
🇩🇪 SCHAPPY	2023-06-01 03:20:11 (3 years ago)	Faked HTTP referer string using numeric IP address of destination host instead of host name.	Hacking Web App Attack
🇳🇱 AutoBlockIP	2023-04-24 15:00:45 (3 years ago)	Suspicious behaviour detected (tcp/25)	Port Scan Hacking Brute-Force

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 218.156.38.44

🇳🇱 185.242.226.85

🇧🇪 104.199.55.128

🇺🇸 64.62.156.135

🇮🇷 193.151.133.105

🇺🇸 178.93.52.158

🇳🇱 91.92.40.47

🇷🇴 2.57.121.25

🇷🇺 109.207.88.47

🇳🇱 81.19.216.93

🇨🇳 8.133.185.52

🇳🇱 5.187.35.26

🇺🇸 3.144.240.130

🇧🇷 177.91.77.8

🇰🇷 112.184.22.125

🇮🇳 106.219.182.136

🇺🇸 65.49.1.143

🇷🇴 141.98.83.240

🇳🇱 91.92.40.8

🇺🇸 64.62.156.51