JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 91.247.163.204

91.247.163.204 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 8%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 91.247.163.204

Whois 91.247.163.204

IP Abuse Reports for 91.247.163.204:

This IP address has been reported a total of 14 times from 7 distinct sources. 91.247.163.204 was first reported on June 3rd 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-22 13:40:16 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 09:40:09.454652 2026] [security2:error] [pid 10887:tid 10887] [client 91.247.163.204:31017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lusineweb.com"] [uri "/wp-config.php.orig"] [unique_id "ahBcuZ_PBH_29z6cOgZi0gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 10:53:47 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 06:53:42.837859 2026] [security2:error] [pid 24048:tid 24048] [client 91.247.163.204:22925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nessmonsters.com"] [uri "/wp-config.php.old"] [unique_id "ahA1tldES66GfQrtPiJxRAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 01:09:48 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 21:09:43.216378 2026] [security2:error] [pid 3005:tid 3005] [client 91.247.163.204:48047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.bak" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.hare.digitalsolutions.help"] [uri "/wp-config.bak"] [unique_id "ag-s12ilLLRhAcaYMoWH7gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 23:30:42 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 19:30:35.157109 2026] [security2:error] [pid 3543:tid 3543] [client 91.247.163.204:36351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fluff2.instagenii.com"] [uri "/wp-config.php~"] [unique_id "ag-Vm5oeL81h_wf6Q19P8gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 17:54:49 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 91.247.163.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 13:54:44.008190 2026] [security2:error] [pid 22335:tid 22335] [client 91.247.163.204:46721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.solarfarms.totalstorage.solutions"] [uri "/wp-config.php.orig"] [unique_id "ag31ZBd1VVmTpYoNSJIIXgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 sssrit	2026-05-18 09:53:11 (1 month ago)	91.247.163.204 - - [18/May/2026:11:53:10 +0200] "GET /wp-json/oembed/1.0/embed?url=https%3A%2F%2Fsss ... show more 91.247.163.204 - - [18/May/2026:11:53:10 +0200] "GET /wp-json/oembed/1.0/embed?url=https%3A%2F%2Fsssr.it HTTP/1.1" 404 100 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 MusicLibrary	2026-04-22 20:04:30 (2 months ago)	Attempted access to non existent wordpress urls	Bad Web Bot
🇪🇸 el-brujo	2026-04-03 03:30:40 (2 months ago)	[Fri Apr 03 05:30:39.755464 2026] [proxy_fcgi:error] [pid 2524810:tid 2525489] [remote 91.247.163.20 ... show more [Fri Apr 03 05:30:39.755464 2026] [proxy_fcgi:error] [pid 2524810:tid 2525489] [remote 91.247.163.204:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com [Fri Apr 03 05:30:40.229323 2026] [proxy_fcgi:error] [pid 2524814:tid 2525121] [remote 91.247.163.204:0] AH01071: Got error 'Primary script unknown\n', referer: https://www.google.com ... show less	Hacking Web App Attack
🇩🇪 ps-center	2026-03-07 16:44:06 (3 months ago)	C1: Brutforce ssh Login	Brute-Force
🇺🇸 MrDD	2024-06-24 20:50:21 (2 years ago)	Botnet Attacking Cisco Web VPN	Brute-Force
🇺🇸 MrDD	2024-06-21 21:36:31 (2 years ago)	Botnet IP attacking Cisco Web VPN	Brute-Force
🇩🇪 NxtGenIT	2024-06-09 22:55:49 (2 years ago)	91.247.163.204 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Atte ... show more 91.247.163.204 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt show less	Brute-Force
🇩🇪 NxtGenIT	2024-06-07 15:15:20 (2 years ago)	91.247.163.204 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Atte ... show more 91.247.163.204 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt show less	Brute-Force
🇩🇪 NxtGenIT	2024-06-03 13:21:35 (2 years ago)	91.247.163.204 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Atte ... show more 91.247.163.204 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt show less	Brute-Force

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 213.180.203.254

🇳🇱 176.65.139.232

🇺🇸 104.244.124.135

🇮🇳 103.105.155.117

🇩🇴 190.167.237.191

🇵🇪 190.81.117.162

🇮🇳 164.164.117.23

🇨🇳 119.51.143.48

🇺🇸 104.236.66.186

🇺🇸 98.183.112.4

🇫🇷 91.231.89.79

🇩🇪 64.89.163.173

🇳🇱 51.158.205.47

🇲🇾 47.250.122.155

🇳🇱 45.148.10.151

🇺🇸 45.73.162.44

🇺🇸 34.19.127.185

🇶🇦 2600:1900:4260:40e::ae

🇬🇧 195.96.139.219

🇦🇷 186.148.224.219