AbuseIPDB » 172.104.11.34

172.104.11.34 was found in our database!

This IP was reported 19,039 times. Confidence of Abuse is 100%: ?

100%

ISP	Linode
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Hostname(s)	edinburgh.scan.bufferover.run
Domain Name	linode.com
Country	United States of America
City	Cedar Knolls, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 172.104.11.34

Whois 172.104.11.34

IP Abuse Reports for 172.104.11.34:

This IP address has been reported a total of 19,039 times from 637 distinct sources. 172.104.11.34 was first reported on July 20th 2022, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Axel	2025-04-25 06:38:13 (6 hours ago)	SSH login attempts (endlessh): 2025-04-25T06:09:32.237Z ACCEPT host=::ffff:172.104.11.34 port=5486 f ... show moreSSH login attempts (endlessh): 2025-04-25T06:09:32.237Z ACCEPT host=::ffff:172.104.11.34 port=5486 fd=13 n=11/4096 show less	Brute-Force SSH
SiyCah	2025-04-25 03:00:03 (10 hours ago)	172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time ... show more172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time wasted: 10s. Total bytes sent by tarpit: 992B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
spamverify.com	2025-04-24 23:43:06 (13 hours ago)	Honeypot Hit: Port Scan (68) DHCP_CLIENT	Web Spam Blog Spam Bad Web Bot Web App Attack
ThreatBook.io	2025-04-24 22:39:03 (14 hours ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/172.104.11.34	SSH
SiyCah	2025-04-24 21:55:03 (15 hours ago)	172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time ... show more172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time wasted: 11s. Total bytes sent by tarpit: 967B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
Alcedema	2025-04-24 18:12:03 (19 hours ago)	SSH login attempts (endlessh): I0424 18:10:13.980109 1 client.go:99] CLOSE host=172.104.11.34 ... show moreSSH login attempts (endlessh): I0424 18:10:13.980109 1 client.go:99] CLOSE host=172.104.11.34 port=37716 time=18.00223799 bytes=1 show less	Brute-Force SSH
banankicks	2025-04-24 18:08:13 (19 hours ago)	Unauthorized connection attempt detected from IP address 172.104.11.34 to port 22 (banankicks-server ... show moreUnauthorized connection attempt detected from IP address 172.104.11.34 to port 22 (banankicks-server) [q] show less	Brute-Force Exploited Host
qtland Cloud Inc.	2025-04-24 12:09:54 (1 day ago)	2025-04-24T12:09:51.391752+00:00 eu-north-sto2 sshd[94248]: Connection closed by 172.104.11.34 port ... show more2025-04-24T12:09:51.391752+00:00 eu-north-sto2 sshd[94248]: Connection closed by 172.104.11.34 port 33712 [preauth] 2025-04-24T12:09:52.871007+00:00 eu-north-sto2 sshd[94250]: Connection closed by 172.104.11.34 port 33726 [preauth] 2025-04-24T12:09:54.504989+00:00 eu-north-sto2 sshd[94252]: Connection closed by 172.104.11.34 port 33734 [preauth] ... show less	Brute-Force SSH
W8C Dev	2025-04-24 12:07:47 (1 day ago)	Apr 24 09:07:43 vmori-manager-1 sshd[72016]: Connection closed by 172.104.11.34 port 17782 [preauth] ... show moreApr 24 09:07:43 vmori-manager-1 sshd[72016]: Connection closed by 172.104.11.34 port 17782 [preauth] Apr 24 09:07:44 vmori-manager-1 sshd[72018]: Connection closed by 172.104.11.34 port 17784 [preauth] Apr 24 09:07:46 vmori-manager-1 sshd[72020]: Connection closed by 172.104.11.34 port 17798 [preauth] ... show less	Brute-Force SSH
SiyCah	2025-04-24 03:00:02 (1 day ago)	172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time ... show more172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time wasted: 10s. Total bytes sent by tarpit: 992B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
Axel	2025-04-24 00:27:05 (1 day ago)	SSH login attempts (endlessh): 2025-04-24T00:08:03.861Z ACCEPT host=::ffff:172.104.11.34 port=56816 ... show moreSSH login attempts (endlessh): 2025-04-24T00:08:03.861Z ACCEPT host=::ffff:172.104.11.34 port=56816 fd=8 n=8/4096 show less	Brute-Force SSH
ThreatBook.io	2025-04-23 22:36:54 (1 day ago)	ThreatBook Intelligence: Scanner,Zombie more details on https://threatbook.io/ip/172.104.11.34	SSH
hanb.jp	2025-04-23 22:27:18 (1 day ago)	Suspicious port scanning activity detected on port 1234.	Port Scan
SiyCah	2025-04-23 21:55:03 (1 day ago)	172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time ... show more172.104.11.34 fell into Endlessh tarpit; 0/3 total connections are currently still open. Total time wasted: 11s. Total bytes sent by tarpit: 967B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
banankicks	2025-04-23 21:08:57 (1 day ago)	Unauthorized connection attempt detected from IP address 172.104.11.34 to port 8080 (banankicks-serv ... show moreUnauthorized connection attempt detected from IP address 172.104.11.34 to port 8080 (banankicks-server) [t] show less	Brute-Force Exploited Host

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩