JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 217.64.97.16

217.64.97.16 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 18%: ?

18%

ISP	Société des Télécommunications du Mali
Usage Type	Fixed Line ISP
ASN	AS21271
Domain Name	moov-africa.ml
Country	🇲🇱 Mali
City	Segou, Segou

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 217.64.97.16

Whois 217.64.97.16

IP Abuse Reports for 217.64.97.16:

This IP address has been reported a total of 10 times from 8 distinct sources. 217.64.97.16 was first reported on August 27th 2024, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-09 17:12:10 (22 hours ago)	[Wed Jun 10 00:12:06.588771 2026] [security2:error] [pid 153342:tid 139736432686784] [client 217.64. ... show more [Wed Jun 10 00:12:06.588771 2026] [security2:error] [pid 153342:tid 139736432686784] [client 217.64.97.16:63050] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bing.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bing.go.id found within REQUEST_HEADERS:Referer: https://www.bing.go.id/ request_line = GET /index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/alamat-kantor/list-all-categories/555556811-mengakses-halaman-web-https-karangploso-jatim-bmkg-go-id-secara-offline-dan-menginstallnya-di-hp-android-atau-di-komputer"] [unique_id "aihJZtE44pa6G6Brr9fOmAAAQRQ"], referer https://www.bing.go.id/ [s ... show less	Email Spam Hacking
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: fd8a75e9-7ad9-4605-bec7-39ad26683952	DDoS Attack
🇨🇦 polycoda	2026-04-19 10:41:54 (1 month ago)	🥶 Part of massive botnet scraping campaign that nearly turned into a DDoS on 2025-11-27	DDoS Attack
🇺🇸 xmission.com	2026-03-06 20:52:48 (3 months ago)	Blocked by UFW (TCP on 9101) Source port: 40519 TTL: 110 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9101) Source port: 40519 TTL: 110 Packet length: 52 TOS: 0x08 This report (for 217.64.97.16) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 HandyTreff.de	2026-02-07 11:14:36 (4 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -23.221 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -23.221 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:137.0) Gecko/20100101 Firefox/137.0 show less	Bad Web Bot Web App Attack
Anonymous	2025-11-18 21:04:44 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-16 09:05:25 (6 months ago)	scanning http requests from known botnet	Web App Attack
🇺🇸 TPI-Abuse	2025-06-27 17:09:53 (11 months ago)	(mod_security) mod_security (id:217210) triggered by 217.64.97.16 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:217210) triggered by 217.64.97.16 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 27 13:09:46.550923 2025] [security2:error] [pid 3010358:tid 3010358] [client 217.64.97.16:53490] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./](?::\\\\d+)?)?/[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S])?\|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?\|options \\\\)\\\\s+[\\\\w\\\\./]+\|get /[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line\|\|route66book.com\|F\|4"] [data "GET http://route66book.com HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "route66book.com"] [uri "/"] [unique_id "aF7QWlqbx7jbMLjzcYxyOgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2024-09-01 16:55:04 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2024-08-27 20:55:14 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 176.65.235.80

🇨🇦 172.70.50.110

🇨🇳 111.229.117.49

🇳🇱 45.148.10.147

🇵🇰 39.39.169.69

🇷🇴 2.57.121.25

🇩🇪 213.209.159.231

🇺🇸 173.255.223.73

🇩🇪 141.11.187.248

🇨🇳 120.48.29.51

🇺🇸 67.81.118.42

🇳🇱 45.148.10.152

🇺🇸 20.9.77.23

🇩🇪 213.209.159.56

🇧🇷 177.2.7.116

🇮🇳 171.61.17.222

🇨🇦 167.114.3.195

🇩🇪 139.162.155.161

🇨🇿 91.224.90.50

🇫🇷 91.196.152.187