AbuseIPDB » 167.94.145.52

167.94.145.52 was found in our database!

This IP was reported 6,601 times. Confidence of Abuse is 0%: ?

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398705
Domain Name	censys.com
Country	Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 167.94.145.52 is an IP address from within our whitelist belonging to the subnet 167.94.145.0/24, which we identify as: "Censys (https://about.censys.io/)".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 167.94.145.52

Whois 167.94.145.52

IP Abuse Reports for 167.94.145.52:

This IP address has been reported a total of 6,601 times from 480 distinct sources. 167.94.145.52 was first reported on August 24th 2023, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Little Iguana	2024-04-25 06:51:33 (1 year ago)	trying to access non-authorized port	Port Scan
Anonymous	2024-04-23 12:45:05 (1 year ago)	Knocking on port 22 (endlessh)	SSH
llighthunter	2024-04-19 11:04:12 (1 year ago)	Apr 16 09:26:10 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=16 ... show moreApr 16 09:26:10 mail dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=167.94.145.52, lip=192.168.1.80, TLS: Connection closed, session=<srBj0DAWGuinXpE0> Apr 16 09:26:21 mail dovecot: imap-login: Disconnected (no auth attempts in 7 secs): user=<>, rip=167.94.145.52, lip=192.168.1.80, TLS, session=<YIUP0TAW0uynXpE0> Apr 16 09:26:23 mail dovecot: imap-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=167.94.145.52, lip=192.168.1.80, TLS handshaking: SSL_accept() failed: error:14209102:SSL routines:tls_early_post_process_client_hello:unsupported protocol, session=<eSIq0TAWuIenXpE0> show less	Port Scan Hacking Spoofing
geddo.in	2024-04-19 10:52:34 (1 year ago)	2024-04-19 04:52:31 SMTP protocol synchronization error (input sent without waiting for greeting): r ... show more2024-04-19 04:52:31 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[167.94.145.52] input="\026\003\001" 2024-04-19 04:52:32 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[167.94.145.52] input="\026\003\001" 2024-04-19 04:52:34 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[167.94.145.52] input="\026\003\001" ... show less	Brute-Force
yvoictra	2024-04-19 09:14:46 (1 year ago)	Apr 19 11:14:44 lavrea postfix/submission/smtpd[712263]: lost connection after STARTTLS from unknown ... show moreApr 19 11:14:44 lavrea postfix/submission/smtpd[712263]: lost connection after STARTTLS from unknown[167.94.145.52] Apr 19 11:14:45 lavrea postfix/submission/smtpd[712263]: lost connection after UNKNOWN from unknown[167.94.145.52] Apr 19 11:14:46 lavrea postfix/submission/smtpd[712263]: lost connection after UNKNOWN from unknown[167.94.145.52] ... show less	Email Spam Brute-Force
Mölkky	2024-04-19 08:13:19 (1 year ago)	Censys scanner	Web App Attack
hbrks	2024-04-19 06:47:17 (1 year ago)	undefined undefined://93.224.1.33/ * statusCode: 503 *	Web Spam Hacking Bad Web Bot
marcel-knorr.de	2024-04-19 06:43:28 (1 year ago)	[MK-VM3] Blocked by UFW	Port Scan Brute-Force
lavnet.net	2024-04-19 06:08:37 (1 year ago)	Apr 19 06:08:35 angela postfix/submission/smtpd[1465114]: lost connection after STARTTLS from unknow ... show moreApr 19 06:08:35 angela postfix/submission/smtpd[1465114]: lost connection after STARTTLS from unknown[167.94.145.52] Apr 19 06:08:37 angela postfix/submission/smtpd[1465114]: improper command pipelining after CONNECT from unknown[167.94.145.52]: \026\003\001\000\274\001\000\000\270\003\003ne\325\024\206\315\315\201\272M\025\224\305\205q\371\371\301\0306D\333\230\277\a\212\203[L\354\302V 6\315\271]Av\003\253Q.@\344\364\363\036\265 \314\225\035m\305\361\257\230\2710 \006\363\325\276\000 \314\250\314\251\300/\3000\300+\300,\300\023\300\t\300\024\300\n\000\234 Apr 19 06:08:37 angela postfix/submission/smtpd[1465114]: lost connection after UNKNOWN from unknown[167.94.145.52] ... show less	Brute-Force Web App Attack
MazenHost	2024-04-19 06:05:14 (1 year ago)	1713506694 - 04/19/2024 08:04:54 Host: 167.94.145.52/167.94.145.52 Port: 111 TCP Blocked ...	Port Scan
Little Iguana	2024-04-19 05:32:55 (1 year ago)	trying to access non-authorized port	Port Scan
kivitendo.de	2024-04-19 04:22:30 (1 year ago)	Apr 19 04:22:20 dsrv58535 sshd[3410102]: refused connect from 167.94.145.52 (167.94.145.52) Ap ... show moreApr 19 04:22:20 dsrv58535 sshd[3410102]: refused connect from 167.94.145.52 (167.94.145.52) Apr 19 04:22:29 dsrv58535 sshd[3410111]: refused connect from 167.94.145.52 (167.94.145.52) ... show less	Brute-Force SSH
Admins@FBN	2024-04-19 04:06:12 (1 year ago)	FW-PortScan: Traffic Blocked srcport=59780 dstport=25	Port Scan
Largnet SOC	2024-04-19 03:57:58 (1 year ago)	167.94.145.52 triggered Icarus honeypot on port 22. Check us out on github.	Port Scan Hacking
en0	2024-04-19 03:46:37 (1 year ago)	167.94.145.52 was recorded 3 times by 2 hosts attempting to connect to 2 unique ports. Incident coun ... show more167.94.145.52 was recorded 3 times by 2 hosts attempting to connect to 2 unique ports. Incident counter (4h, 24h, all-time): 3, 21, 1256 show less	Port Scan

Showing 1 to 15 of 6601 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

103.172.205.208

209.38.40.86

34.223.47.16

34.223.37.247

44.242.179.251

160.0.140.102

44.242.178.155

82.211.134.3

5.230.250.81

93.123.109.101

195.184.76.5

176.65.149.226

51.75.128.81

36.255.220.76

118.186.3.158

46.243.68.121

183.255.68.106

199.45.155.92

35.238.203.213

222.74.136.222