JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 217.219.159.52

217.219.159.52 was found in our database!

This IP was reported 286 times. Confidence of Abuse is 32%: ?

32%

ISP	Iran Information Technology Company PJSC
Usage Type	Fixed Line ISP
ASN	AS58224
Domain Name	co.com
Country	🇮🇷 Iran (Islamic Republic of)
City	Tehran, Tehran

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 217.219.159.52

Whois 217.219.159.52

IP Abuse Reports for 217.219.159.52:

This IP address has been reported a total of 286 times from 60 distinct sources. 217.219.159.52 was first reported on December 2nd 2020, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 knock	2026-06-08 05:03:30 (2 days ago)	Knock-Knock honeypot brute-force: SMB (4 total hits)	Brute-Force
🇩🇪 IP Analyzer	2026-06-06 23:00:16 (3 days ago)	Unauthorized connection attempt from IP address 217.219.159.52 on Port 445(SMB)	Port Scan
Anonymous	2026-06-01 07:48:45 (1 week ago)	1780300124 - 06/01/2026 09:48:44 Host: 217.219.159.52/217.219.159.52 Port: 445 TCP Blocked ...	Port Scan
🇺🇸 drewf.ink	2026-05-30 03:40:01 (1 week ago)	[03:40] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [03:40] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-28 08:35:06 (1 week ago)	tcp/445	Port Scan
🇬🇧 Birdo	2026-02-20 12:49:17 (3 months ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
🇬🇧 Birdo	2026-02-10 13:51:01 (4 months ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Port Scan Hacking Brute-Force Exploited Host
Anonymous	2026-02-10 04:21:23 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-01-28 06:37:33 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 sthoyer.de	2025-12-24 03:01:18 (5 months ago)	Dec 24 04:01:18 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Dec 24 04:01:18 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=217.219.159.52 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=31231 DF PROTO=TCP SPT=53671 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 sthoyer.de	2025-12-24 02:05:17 (5 months ago)	Dec 24 03:05:16 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Dec 24 03:05:16 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=217.219.159.52 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=21891 DF PROTO=TCP SPT=51262 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2025-12-24 02:04:09 (5 months ago)	trying to access non-authorized port	Port Scan
🇩🇪 kalof	2025-12-23 10:02:11 (5 months ago)	ports, 445/24H:1/7D:1	Port Scan
🇹🇷 rtbh.com.tr	2025-12-15 20:10:28 (5 months ago)	list.rtbh.com.tr report: tcp/445	Brute-Force
🇩🇪 Maike	2025-12-14 06:00:51 (5 months ago)	ports, 445/24H:1/7D:3	Port Scan

Showing 1 to 15 of 286 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 186.87.10.14

🇺🇸 172.234.25.243

🇫🇷 92.103.134.183

🇫🇷 85.217.140.25

🇫🇷 85.204.70.88

🇺🇸 72.18.83.212

🇬🇧 35.203.211.21

🇩🇪 213.209.159.236

🇳🇱 176.65.139.41

🇨🇦 148.113.130.52

🇺🇸 129.212.183.98

🇨🇳 114.237.146.67

🇪🇸 91.117.32.196

🇬🇧 193.163.125.166

🇧🇷 152.67.46.203

🇺🇸 152.32.235.107

🇮🇳 128.185.218.118

🇳🇱 45.148.10.147

🇻🇪 190.77.55.50

🇳🇱 172.94.9.73