JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.131.77.64

104.131.77.64 was found in our database!

This IP was reported 104 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.131.77.64

Whois 104.131.77.64

IP Abuse Reports for 104.131.77.64:

This IP address has been reported a total of 104 times from 49 distinct sources. 104.131.77.64 was first reported on November 26th 2020, and the most recent report was 4 years ago.

Old Reports: The most recent abuse report for this IP address is from 4 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 antlac1	2021-07-07 01:32:14 (4 years ago)	Web App Attack on 443 (https) / tcp at 2021-07-07 01:02:31.000000	Web App Attack
🇺🇸 antlac1	2021-07-07 01:02:27 (4 years ago)	Web App Attack on 443 (https) / tcp at 2021-07-07 00:51:00.000000	Web App Attack
🇫🇷 security.rdmc.fr	2021-07-06 23:46:27 (4 years ago)	Automatic report - Banned IP Access	Web App Attack
🇩🇪 derLoosi	2021-07-06 16:20:19 (4 years ago)	HV1.2 Blocked by UFW	Port Scan
Anonymous	2021-07-05 00:31:37 (4 years ago)	[Mon Jul 05 00:25:40.173377 2021] [:error] [pid 30161] [client 104.131.77.64] ModSecurity: Access de ... show more [Mon Jul 05 00:25:40.173377 2021] [:error] [pid 30161] [client 104.131.77.64] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "tfscad.[munged]"] [uri "/"] [unique_id "YOKJxH8AAAEAAHXREVMAAAAC"] [Mon Jul 05 00:31:36.277861 2021] [:error] [pid 30264] [client 104.131.77.64] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generi show less	Bad Web Bot Web App Attack
🇩🇪 Hiffo	2021-07-04 19:22:01 (4 years ago)	marc-hoffrichter.de:443 104.131.77.64 - - [05/Jul/2021:01:22:00 +0200] "GET / HTTP/1.1" 403 71290 "h ... show more marc-hoffrichter.de:443 104.131.77.64 - - [05/Jul/2021:01:22:00 +0200] "GET / HTTP/1.1" 403 71290 "http://85.214.217.136:80/" "Mozilla/5.0 zgrab/0.x" show less	Bad Web Bot
🇩🇪 derLoosi	2021-07-01 10:36:07 (4 years ago)	HV1.2 Blocked by UFW	Port Scan
🇨🇿 Linux-Tech	2021-06-29 21:27:13 (4 years ago)	Jun 30 03:21:46 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f: ... show more Jun 30 03:21:46 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=104.131.77.64 DST=217.198.117.163 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=44954 DF PROTO=TCP SPT=42100 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 30 03:21:47 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=104.131.77.64 DST=217.198.117.163 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=44955 DF PROTO=TCP SPT=42100 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 30 03:21:49 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=104.131.77.64 DST=217.198.117.163 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=44956 DF PROTO=TCP SPT=42100 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 30 03:27:11 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:30:e4:db:97:3e:3f:08:00 SRC=104.131.77.64 DST=217.198.117.163 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=19709 DF PROTO=TCP SPT=43476 DPT=6380 WINDOW=29200 RES=0x00 SYN URG ... show less	Port Scan Hacking
🇩🇪 derLoosi	2021-06-29 16:19:22 (4 years ago)	HV1.1 Blocked by UFW	Port Scan
🇺🇸 juguemosalacarioca.com	2021-06-29 11:48:36 (4 years ago)	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	Web App Attack
🇬🇧 oppidans.net	2021-06-28 05:12:28 (4 years ago)	104.131.77.64 - - [15/Jun/2021:21:00:20 +0000] "GET / HTTP/1.1" 200 2976 "-" "Mozilla/5.0 zgrab/0.x"	Bad Web Bot
🇨🇦 ISPLtd	2021-06-25 16:17:24 (4 years ago)	Jun 25 17:17:20 maria kernel: BadPort-Drop-IN=eth0 OUT= MAC=0c:c4:7a:47:ef:dc:00:ff:ff:ff:ff:fd:08:0 ... show more Jun 25 17:17:20 maria kernel: BadPort-Drop-IN=eth0 OUT= MAC=0c:c4:7a:47:ef:dc:00:ff:ff:ff:ff:fd:08:00 SRC=104.131.77.64 DST=167.114.48.93 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=4611 DF PROTO=TCP SPT=34666 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 25 17:17:21 maria kernel: BadPort-Drop-IN=eth0 OUT= MAC=0c:c4:7a:47:ef:dc:00:ff:ff:ff:ff:fd:08:00 SRC=104.131.77.64 DST=167.114.48.93 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=4612 DF PROTO=TCP SPT=34666 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 25 17:17:23 maria kernel: BadPort-Drop-IN=eth0 OUT= MAC=0c:c4:7a:47:ef:dc:00:ff:ff:ff:ff:fd:08:00 SRC=104.131.77.64 DST=167.114.48.93 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=4613 DF PROTO=TCP SPT=34666 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 25 17:17:30 maria kernel: BadPort-Drop-IN=eth0 OUT= MAC=0c:c4:7a:47:ef:dc:00:ff:ff:ff:ff:fe:08:00 SRC=104.131.77.64 DST=167.114.48.92 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=2022 DF PROTO=TCP SPT=54406 DPT=6379 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 25 17:17:31 mari ... show less	Port Scan
🇯🇵 stfw	2021-06-24 12:41:23 (4 years ago)	8080/tcp 2375/tcp 6380/tcp... [2021-06-24]15pkt,5pt.(tcp)	Port Scan
🇨🇦 trentwiles.com	2021-06-22 12:51:28 (4 years ago)	Unauthorized connection attempt detected from IP address 104.131.77.64 to port 80 [c]	Port Scan
🇩🇪 Kreapptivo	2021-06-21 17:45:58 (4 years ago)	[21/Jun/2021:23:39:22 +0200] Web-Request: "GET /", User-Agent: "Mozilla/5.0 zgrab/0.x" [21/Jun/2021: ... show more [21/Jun/2021:23:39:22 +0200] Web-Request: "GET /", User-Agent: "Mozilla/5.0 zgrab/0.x" [21/Jun/2021:23:45:57 +0200] Web-Request: "GET /", User-Agent: "Mozilla/5.0 zgrab/0.x" show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 104 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 163.223.1.146

🇭🇰 118.26.36.248

🇺🇸 52.12.110.223

🇺🇸 184.105.247.235

🇳🇱 176.65.139.130

🇨🇦 165.245.225.27

🇺🇸 139.144.239.72

🇺🇸 129.146.243.24

🇰🇷 121.159.41.81

🇨🇳 106.75.25.139

🇮🇳 103.111.228.36

🇧🇬 91.92.40.123

🇩🇪 69.5.169.178

🇩🇪 64.226.117.69

🇺🇸 64.62.156.199

🇺🇸 64.57.142.163

🇫🇷 62.84.179.70

🇮🇳 52.172.177.191

🇳🇱 45.148.10.183

🇰🇷 34.47.114.240