JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.104.252.242

172.104.252.242 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 31%: ?

31%

ISP	Linode
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Hostname(s)	172-104-252-242.ip.linodeusercontent.com
Domain Name	linode.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.104.252.242

Whois 172.104.252.242

IP Abuse Reports for 172.104.252.242:

This IP address has been reported a total of 13 times from 13 distinct sources. 172.104.252.242 was first reported on January 28th 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-22 03:57:44 (22 hours ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-06-12 07:59:42 (1 week ago)	172.104.252.242 - - [12/Jun/2026:07:59:41 +0000] "\x16\x03\x01\x05\xfb\x01" 400 432 "-" "-" ...	Bad Web Bot Web App Attack
🇳🇱 security.yc3a.com	2026-06-05 05:26:24 (2 weeks ago)	2026-06-05T06:26:07.594122+01:00 mail6 sshd-session[2026031]: refused connect from 172.104.252.242 ( ... show more 2026-06-05T06:26:07.594122+01:00 mail6 sshd-session[2026031]: refused connect from 172.104.252.242 (172.104.252.242) 2026-06-05T06:26:08.836977+01:00 mail6 sshd-session[2026047]: refused connect from 172.104.252.242 (172.104.252.242) 2026-06-05T06:26:13.928563+01:00 mail6 sshd-session[2026093]: refused connect from 172.104.252.242 (172.104.252.242) 2026-06-05T06:26:18.939377+01:00 mail6 sshd-session[2026120]: refused connect from 172.104.252.242 (172.104.252.242) 2026-06-05T06:26:23.948630+01:00 mail6 sshd-session[2026146]: refused connect from 172.104.252.242 (172.104.252.242) show less	Brute-Force SSH
🇺🇸 ras07	2026-06-04 21:00:08 (2 weeks ago)	Brute force SSH login attempts.	Brute-Force SSH
🇨🇿 Countryman	2026-05-13 20:24:06 (1 month ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
Anonymous	2026-05-06 12:22:03 (1 month ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇨🇿 lp	2026-04-29 09:41:57 (1 month ago)	anomaly: tcp_src_session, 2501 > threshold 2500, repeats 62 times	Port Scan
Anonymous	2026-04-02 01:37:04 (2 months ago)	ET SCAN Suspicious inbound to mySQL port 3306	Port Scan
Anonymous	2026-03-27 13:04:52 (2 months ago)	Nmap.Script.Scanner	Port Scan
🇷🇸 Scan	2026-03-24 03:56:41 (2 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇧🇪 cmbplf	2026-03-10 00:34:04 (3 months ago)	20 requests with url.path *.dll	Brute-Force Bad Web Bot
Anonymous	2026-02-11 00:57:01 (4 months ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇹🇭 Sawasdee	2026-01-28 04:49:18 (4 months ago)	Port Scan ...	Port Scan

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 80.225.238.77

🇹🇷 212.252.73.26

🇲🇦 196.75.159.112

🇨🇳 139.9.191.197

🇯🇵 124.155.125.131

🇨🇳 123.187.243.243

🇨🇳 115.190.167.144

🇺🇸 104.28.166.119

🇳🇱 91.92.40.240

🇫🇷 85.217.140.8

🇱🇹 62.60.130.14

🇲🇾 47.250.51.32

🇸🇬 47.84.46.241

🇭🇰 43.161.217.219

🇴🇲 188.66.246.109

🇮🇹 185.15.171.1

🇵🇰 175.107.205.20

🇺🇸 147.185.132.100

🇺🇸 109.105.210.70

🇳🇱 104.28.163.184