JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 24.152.55.35

24.152.55.35 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 9%: ?

ISP	TV CABLE UNIVERSAL S.A
Usage Type	Fixed Line ISP
ASN	AS269964
Domain Name	vosguatemala.com
Country	🇬🇹 Guatemala
City	Guatemala City, Guatemala

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 24.152.55.35

Whois 24.152.55.35

IP Abuse Reports for 24.152.55.35:

This IP address has been reported a total of 9 times from 8 distinct sources. 24.152.55.35 was first reported on February 5th 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 HandyTreff.de	2026-05-16 04:03:27 (2 weeks ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -58.37 (Bad < -10 / Very Bad < -20 / ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -58.37 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0. show less	Web App Attack Bad Web Bot
🇫🇮 notelseit	2026-04-20 05:53:35 (1 month ago)	2026-04-20T07:53:27.052544+02:00 mail dovecot: auth-worker(871613): conn unix:auth-worker (pid=78937 ... show more 2026-04-20T07:53:27.052544+02:00 mail dovecot: auth-worker(871613): conn unix:auth-worker (pid=789379,uid=110): auth-worker<17>: sql([email protected],24.152.55.35,<L2nO6t1P5sEYmDcj>): Password mismatch 2026-04-20T07:53:33.579586+02:00 mail dovecot: auth-worker(871613): conn unix:auth-worker (pid=789379,uid=110): auth-worker<18>: sql([email protected],24.152.55.35,<L2nO6t1P5sEYmDcj>): Password mismatch 2026-04-20T07:53:35.128670+02:00 mail dovecot: imap-login: Disconnected: Connection closed (auth failed, 2 attempts in 9 secs): user=<[email protected]>, method=PLAIN, rip=24.152.55.35, lip=65.21.131.50, TLS: Connection closed, session=<L2nO6t1P5sEYmDcj> ... show less	Brute-Force Email Spam
🇸🇬 mypatricks	2026-04-02 00:19:50 (2 months ago)	24.152.55.35 \| Port: 10168 \| DNS: 24.152.55.35 2026-04-02T08:19:49+08:00 America/Guatemala \| IPs Spa ... show more 24.152.55.35 \| Port: 10168 \| DNS: 24.152.55.35 2026-04-02T08:19:49+08:00 America/Guatemala \| IPs Spam list \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /hashtag/despicable-me/?54c9403e7e33cb19631ee30876d14d=USD&code=USD \| Ref: https://xxxxxx/hashtag/despicable-me/?31ee29876d14d=JPY&code=JPY \| Country: GT/Guatemala/−06:00 IP City: Guatemala City macOS 9e5baa086f5e1648-MIA/Miami, FL, United States 1 hits/0 secs Robots 4 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇺🇸 TPI-Abuse	2026-03-28 14:27:07 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 24.152.55.35 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 24.152.55.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 28 10:26:59.083181 2026] [security2:error] [pid 4003:tid 4003] [client 24.152.55.35:51644] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|opere.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "opere.com"] [uri "/content/scenografie e fondali digitali/il dilemma del prigioniero/Thumbs.db"] [unique_id "acflM6bzu6T8iaJxSWJGLgAAAAI"], referer: http://opere.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-24 01:00:42 (5 months ago)	scanning http requests from known botnet	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-02-18 09:29:46 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 SOC [GOLINE SA]	2025-02-15 15:03:21 (1 year ago)	DDoS Alert: Layer 7 attack detected from 24.152.55.35. Threshold exceeded: >30 req/sec. Automated bl ... show more DDoS Alert: Layer 7 attack detected from 24.152.55.35. Threshold exceeded: >30 req/sec. Automated block duration: 7200s. show less	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-02-11 21:23:59 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-02-05 20:52:06 (1 year ago)	Excessive connections to http/https ports	DDoS Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 175.137.106.245

🇯🇵 153.126.163.225

🇻🇳 123.30.233.13

🇸🇪 90.229.235.43

🇨🇦 85.217.149.54

🇸🇬 47.84.177.165

🇳🇱 45.148.10.200

🇬🇧 31.14.254.62

🇺🇸 20.186.232.151

🇲🇽 187.211.112.3

🇮🇩 165.154.151.176

🇻🇳 121.200.216.56

🇺🇸 107.174.155.67

🇭🇰 101.36.127.86

🇺🇸 68.235.57.43

🇿🇦 41.181.156.205

🇮🇶 37.238.64.23

🇨🇳 218.60.174.242

🇰🇷 211.251.245.88

🇬🇧 193.176.29.13