JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.211.52.79

197.211.52.79 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 66%: ?

66%

ISP	ENTERPRISE-BENIN
Usage Type	Fixed Line ISP
ASN	AS37148
Domain Name	08vicenterprises.com
Country	🇳🇬 Nigeria
City	Lagos, Lagos

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.211.52.79

Whois 197.211.52.79

IP Abuse Reports for 197.211.52.79:

This IP address has been reported a total of 129 times from 72 distinct sources. 197.211.52.79 was first reported on August 12th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-11 07:55:50 (1 day ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-09 13:36:00 (3 days ago)	[13:36] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [13:36] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
Anonymous	2026-06-08 18:25:46 (4 days ago)	Authentication failure	Brute-Force
🇬🇧 Birdo	2026-06-06 12:31:14 (6 days ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇫🇷 UM3	2026-06-03 17:00:52 (1 week ago)	Exim Auth Failed	Brute-Force
Anonymous	2026-06-03 07:59:01 (1 week ago)	...	Brute-Force
Anonymous	2026-05-28 16:30:34 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇩🇪 SMARTNET	2026-05-27 06:03:53 (2 weeks ago)	Aisuru(Mirai variant) DDoS \| Incident ID: 22ada211-5b5c-463a-b46f-60fd11dc639d	DDoS Attack
🇩🇪 IP Analyzer	2026-05-25 14:00:20 (2 weeks ago)	Unauthorized connection attempt from IP address 197.211.52.79 on Port 445(SMB)	Port Scan
Anonymous	2026-05-23 02:30:01 (2 weeks ago)	8x Postfix SASL LOGIN authentication failed	Brute-Force
Anonymous	2026-05-22 22:37:02 (2 weeks ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
🇺🇸 RAP	2026-05-16 13:37:13 (3 weeks ago)	2026-05-16 13:37:13 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇬🇧 PeravixGroup	2026-05-15 13:04:18 (4 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 guldkage	2026-05-12 15:48:07 (1 month ago)	Unauthorized connection attempt detected from IP address 197.211.52.79 to port 445 (ger-02) [SMB]	Exploited Host
🇬🇧 PeravixGroup	2026-05-12 12:08:16 (1 month ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇪 217.165.164.115

🇹🇼 198.235.24.29

🇦🇺 149.118.68.211

🇵🇱 146.59.32.16

🇸🇬 109.123.234.206

🇨🇦 85.217.149.8

🇮🇩 69.5.23.222

🇺🇸 44.243.35.189

🇬🇧 35.203.211.6

🇨🇳 14.103.118.61

🇰🇷 222.109.35.24

🇪🇸 213.194.159.139

🇯🇵 203.25.124.35

🇧🇪 198.235.24.241

🇪🇸 196.196.150.4

🇺🇸 195.184.76.129

🇿🇦 185.132.186.79

🇧🇷 177.86.6.91

🇭🇰 101.36.127.86

🇫🇷 91.231.89.166