JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.58.144.12

31.58.144.12 was found in our database!

This IP was reported 672 times. Confidence of Abuse is 100%: ?

100%

ISP	PT Goer Network Indonesia
Usage Type	Data Center/Web Hosting/Transit
ASN	AS215607
Domain Name	atharva.co.id
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.58.144.12

Whois 31.58.144.12

IP Abuse Reports for 31.58.144.12:

This IP address has been reported a total of 672 times from 141 distinct sources. 31.58.144.12 was first reported on June 18th 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇰🇷 2048	2026-05-28 13:02:15 (6 days ago)	2026-05-28T22:02:14.047641+09:00 no1 sshd[1975147]: Disconnected from authenticating user root 31.58 ... show more 2026-05-28T22:02:14.047641+09:00 no1 sshd[1975147]: Disconnected from authenticating user root 31.58.144.12 port 36480 [preauth] ... show less	Brute-Force SSH
🇺🇸 aboschke	2026-05-28 13:00:18 (6 days ago)	SSH brute force attempt. Tried invalid user: unknown	Brute-Force SSH
🇫🇮 FlamingMojo	2026-05-28 11:45:23 (6 days ago)	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2026-05-28T11:45:23Z	Brute-Force SSH
🇭🇺 sRichy	2026-05-28 10:41:57 (6 days ago)	May 28 12:41:56 racetecweb sshd[346128]: User root from 31.58.144.12 not allowed because not listed ... show more May 28 12:41:56 racetecweb sshd[346128]: User root from 31.58.144.12 not allowed because not listed in AllowUsers May 28 12:41:56 racetecweb sshd[346128]: User root from 31.58.144.12 not allowed because not listed in AllowUsers May 28 12:41:56 racetecweb sshd[346128]: error: maximum authentication attempts exceeded for invalid user root from 31.58.144.12 port 50404 ssh2 [preauth] ... show less	Brute-Force SSH
🇩🇪 dispaisyenterprises	2026-05-28 09:58:30 (6 days ago)	Honeypot [fra-de-honeypot]: Brute-force attack detected on 22/SSH • Credential used: root:undefined ... show more Honeypot [fra-de-honeypot]: Brute-force attack detected on 22/SSH • Credential used: root:undefined • Number of login attempts: 1 • Client: SSH-2.0-libssh2_1.11.0 • SSH key fingerprints: 6d:1a:5c:9b:33:b8:f8:66:85:90:c2:88:30:c4:7d:d0 Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	SSH
🇩🇪 EarlyOwl	2026-05-28 09:08:10 (6 days ago)	2026-05-28T09:08:10.152393+00:00 mail sshd[87074]: User root from 31.58.144.12 not allowed because n ... show more 2026-05-28T09:08:10.152393+00:00 mail sshd[87074]: User root from 31.58.144.12 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇫🇷 Lat31320	2026-05-28 09:02:49 (6 days ago)	gate - SSH brute force ...	Brute-Force SSH
🇺🇸 NetGuard	2026-05-28 08:52:49 (6 days ago)	#honeypot #netguard247 #cowrie #sshtelnetprobe Captured by NetGuard 24/7 T-Pot honeypot (netguard24- ... show more #honeypot #netguard247 #cowrie #sshtelnetprobe Captured by NetGuard 24/7 T-Pot honeypot (netguard24-7.com). Timestamp: 2026-05-28T08:52:49.534+00:00 Attacker IP: 31.58.144.12 \| Port: N/A \| Country: United Arab Emirates Honeypot: cowrie \| Attack: ssh_telnet_probe Source: NetGuard 24/7 (netguard24-7.com) \| PhantomGrid Defense show less	Brute-Force SSH
🇺🇸 FurrIX vIX	2026-05-28 07:12:29 (6 days ago)	[FurrIX NOC, Automated, PHY TWO]: Bonked into empty SSH door. Whatcha looking for in there, eh?!	Brute-Force SSH
🇩🇪 EarlyOwl	2026-05-28 05:56:00 (1 week ago)	2026-05-28T05:55:59.480145+00:00 mail sshd[85523]: User root from 31.58.144.12 not allowed because n ... show more 2026-05-28T05:55:59.480145+00:00 mail sshd[85523]: User root from 31.58.144.12 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇺🇸 Babu Chang	2026-05-28 04:53:27 (1 week ago)	sshguard	SSH
🇨🇭 master.arknet.ch	2026-05-28 04:36:50 (1 week ago)	2026-05-27T05:37:20.391347+02:00 wels sshd[1380304]: Disconnected from authenticating user root 31.5 ... show more 2026-05-27T05:37:20.391347+02:00 wels sshd[1380304]: Disconnected from authenticating user root 31.58.144.12 port 54848 [preauth] 2026-05-28T00:32:16.478042+02:00 wels sshd[1382401]: Disconnected from authenticating user root 31.58.144.12 port 44488 [preauth] 2026-05-28T06:36:49.616212+02:00 wels sshd[1383073]: Disconnected from authenticating user root 31.58.144.12 port 60798 [preauth] ... show less	Brute-Force SSH
🇸🇪 Mailz1	2026-05-28 02:40:49 (1 week ago)	May 28 04:40:48 smtp sshd[1209230]: error: maximum authentication attempts exceeded for invalid user ... show more May 28 04:40:48 smtp sshd[1209230]: error: maximum authentication attempts exceeded for invalid user root from 31.58.144.12 port 58500 ssh2 [preauth] ... show less	Brute-Force SSH
🇦🇺 LiftUp Hosting	2026-05-28 00:04:54 (1 week ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:undefined • Number of lo ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:undefined • Number of login attempts: 1 • Client: SSH-2.0-libssh2_1.11.0 • SSH key fingerprints: f7:e5:71:0b:91:38:97:85:4c:20:bb:e3:33:dc:6d:d2 show less	SSH
🇳🇱 chilibi.ch	2026-05-27 23:59:31 (1 week ago)	2026-05-27 23:59:31 alb SSH	Brute-Force SSH

Showing 151 to 165 of 672 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.102

🇩🇪 194.88.98.115

🇻🇳 103.116.52.242

🇺🇸 74.125.75.17

🇺🇸 66.132.195.112

🇺🇿 195.158.14.232

🇨🇳 175.165.84.105

🇫🇮 147.185.133.90

🇮🇳 122.168.123.73

🇨🇳 115.190.92.70

🇧🇪 104.155.29.73

🇨🇳 101.126.54.36

🇺🇸 91.230.168.30

🇧🇪 34.78.29.97

🇨🇳 202.46.62.105

🇸🇾 185.225.41.192

🇻🇳 180.93.172.213

🇺🇸 172.217.46.250

🇮🇩 163.7.9.55

🇰🇪 154.159.238.213