JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 216.24.216.237

216.24.216.237 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 0%: ?

ISP	Atlas Networks Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS3503
Hostname(s)	216-24-216-237.pureserverone.live
Domain Name	atlasnetworks.us
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 216.24.216.237

Whois 216.24.216.237

IP Abuse Reports for 216.24.216.237:

This IP address has been reported a total of 67 times from 33 distinct sources. 216.24.216.237 was first reported on January 18th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SC0TT0Ne	2024-08-17 09:35:33 (1 year ago)	Attempt windows login (Reported with IPABan)	Brute-Force
🇦🇺 MAGIC	2024-08-17 00:06:18 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇦 Mediashaker	2024-08-10 12:29:18 (1 year ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 216.24.216.237 (US/Unite ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 216.24.216.237 (US/United States/-) show less	Port Scan
Anonymous	2024-08-10 05:29:36 (1 year ago)	wordpress-trap	Web App Attack
🇳🇱 CryptoYakari	2024-08-09 10:51:45 (1 year ago)	216.24.216.237 - - [09/Aug/2024:13:51:38 +0300] "GET /.well-known/acme-challenge/wso112233.php HTTP/ ... show more 216.24.216.237 - - [09/Aug/2024:13:51:38 +0300] "GET /.well-known/acme-challenge/wso112233.php HTTP/1.0" 404 29107 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/74.0.3729.169 Safari/537.36" 216.24.216.237 - - [09/Aug/2024:13:51:38 +0300] "GET /.well-known/acme-challenge/atomlib.php HTTP/1.0" 404 29089 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36" 216.24.216.237 - - [09/Aug/2024:13:51:41 +0300] "GET /.well-known/acme-challenge/admin.php HTTP/1.0" 404 29071 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 216.24.216.237 - - [09/Aug/2024:13:51:42 +0300] "GET /.well-known/acme-challenge/sclass_api.php HTTP/1.0" 404 29116 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:72.0) Gecko/20100101 Firefox/72.0" 216.24.216.237 - - [09/Aug/2024:13:51:43 +0300] "GET /.well-known/acme-challenge/LA.php HTTP/1.0" 404 29044 "-" "Mozilla/5.0 (Windows NT 10.0; WO ... show less	Web Spam Blog Spam Bad Web Bot Web App Attack
Anonymous	2024-08-09 02:07:02 (1 year ago)	Fail2Ban apache-noscript	Bad Web Bot
🇺🇸 TPI-Abuse	2024-08-08 23:19:04 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 08 19:18:59.618137 2024] [security2:error] [pid 15995:tid 15995] [client 216.24.216.237:63236] [client 216.24.216.237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "forgottenwarriors.org"] [uri "/wp-config.php"] [unique_id "ZrVSYxrFLjy-IYbm9lIC6wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-07-09 02:20:53 (1 year ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇳🇱 Linuxmalwarehuntingnl	2024-07-03 07:06:50 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇲🇾 Rizzy	2024-06-15 09:59:22 (2 years ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-06-14 17:43:28 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 14 13:43:20.312800 2024] [security2:error] [pid 2295] [client 216.24.216.237:61471] [client 216.24.216.237] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|dgroupsa.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "dgroupsa.com"] [uri "/site/default/settings.php.BAK"] [unique_id "ZmyBODdNpWXm58GU5ytFdQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-06-14 15:44:14 (2 years ago)	Fail2Ban apache-noscript	Bad Web Bot
🇺🇸 TPI-Abuse	2024-06-14 03:48:45 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 13 23:48:41.706895 2024] [security2:error] [pid 1951613] [client 216.24.216.237:58796] [client 216.24.216.237] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|enjoy2dance.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "enjoy2dance.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zmu9mTy9aa2648gPtOLMFAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-06-14 03:20:18 (2 years ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-06-13 23:02:09 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 216.24.216.237 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 13 19:02:05.136725 2024] [security2:error] [pid 19883] [client 216.24.216.237:59912] [client 216.24.216.237] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|majersigns.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "majersigns.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Zmt6bYGryQpZRBKfeB2JnwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.46.255.86

🇺🇦 46.150.68.126

🇺🇸 216.25.89.104

🇸🇾 205.209.65.70

🇱🇧 185.184.84.85

🇳🇱 176.65.139.181

🇸🇬 161.118.220.167

🇮🇳 117.214.25.114

🇮🇳 117.199.71.39

🇩🇿 105.103.128.158

🇭🇰 103.158.29.100

🇮🇩 103.101.229.35

🇱🇻 81.30.98.144

🇩🇪 69.5.169.178

🇺🇸 64.60.113.178

🇳🇱 45.153.34.87

🇧🇩 203.99.145.189

🇹🇼 198.235.24.100

🇺🇸 192.178.119.212

🇫🇮 147.185.133.73