JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 217.138.216.163

217.138.216.163 was found in our database!

This IP was reported 80 times. Confidence of Abuse is 12%: ?

12%

ISP	M247 LTD Berlin Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	m247.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 217.138.216.163

Whois 217.138.216.163

IP Abuse Reports for 217.138.216.163:

This IP address has been reported a total of 80 times from 32 distinct sources. 217.138.216.163 was first reported on September 11th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-31 15:10:25 (3 weeks ago)	Credential Stuffing attacks against Microsoft 365	Brute-Force
🇧🇷 chronos	2026-05-16 22:09:15 (1 month ago)	Generic malicious activity: Tentativa de varredura de porta TCP... \| Port: 59601 \| Proto: TCP \| Loca ... show more Generic malicious activity: Tentativa de varredura de porta TCP... \| Port: 59601 \| Proto: TCP \| Location: Germany, Berlin show less	Port Scan Hacking
🇨🇳 pengpeng	2026-05-12 22:32:58 (1 month ago)	monitor: on VM-0-7-ubuntu \| port: 43118 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 43118 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 chronos	2026-05-04 21:59:51 (1 month ago)	Generic malicious activity: Tentativa de varredura de porta TCP... \| Port: 59601 \| Proto: TCP \| Loca ... show more Generic malicious activity: Tentativa de varredura de porta TCP... \| Port: 59601 \| Proto: TCP \| Location: Germany, Berlin show less	Port Scan Hacking
🇺🇸 xmission.com	2026-04-14 20:36:28 (2 months ago)	Blocked by UFW (TCP on 6881) Source port: 38534 TTL: 46 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 6881) Source port: 38534 TTL: 46 Packet length: 60 TOS: 0x08 This report (for 217.138.216.163) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-04-03 11:52:48 (2 months ago)	Blocked by UFW (TCP on 6890) Source port: 10404 TTL: 45 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 6890) Source port: 10404 TTL: 45 Packet length: 60 TOS: 0x08 This report (for 217.138.216.163) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 seifert	2026-04-02 09:18:47 (2 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/nextcloud-bf	Brute-Force
🇦🇺 screwlooseit.com.au	2026-04-01 21:35:26 (2 months ago)	Blocked by CSF 13 firewall - Rule: WPLOGIN DE/Germany/-	Web App Attack
Anonymous	2026-03-30 15:39:53 (2 months ago)	(wordpress) Failed wordpress login from 217.138.216.163 (DE/Germany/-)	Brute-Force
🇺🇸 mnsf	2026-03-29 13:05:23 (2 months ago)	Login Too Frequent (8)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-29 12:40:43 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 217.138.216.163 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 217.138.216.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 08:40:34.900458 2026] [security2:error] [pid 30834:tid 30834] [client 217.138.216.163:44832] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|briannalls.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "briannalls.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ackdwofGOK4Vn-9PxdoZMwAAAAE"], referer: https://www.bing.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-03-29 00:25:32 (2 months ago)	2.811 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇫🇷 dynamix	2026-03-28 22:45:00 (2 months ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-03-24 15:27:08 (3 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 integrantservices.com	2026-03-24 15:12:59 (3 months ago)	(wordpress) Failed wordpress login from 217.138.216.163 (DE/Germany/-)	Brute-Force

Showing 1 to 15 of 80 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.139

🇮🇳 203.145.143.163

🇧🇷 201.75.189.97

🇨🇳 111.121.78.231

🇳🇱 81.19.216.117

🇬🇧 2.57.23.109

🇸🇦 176.19.129.25

🇪🇸 158.158.46.108

🇰🇷 112.166.89.17

🇱🇻 81.30.98.44

🇺🇸 50.6.228.32

🇳🇱 45.148.10.121

🇸🇬 43.163.86.65

🇩🇪 43.157.52.37

🇻🇳 27.79.3.128

🇺🇸 23.94.102.136

🇺🇸 20.163.13.222

🇺🇸 18.97.26.118

🇻🇳 14.248.83.33

🇮🇳 2401:4900:1c5c:a397:c3c:ab5:3ede:99f3