← Back to feed

172.104.11.4

Threat Confidence
51%
Location
🇺🇸 US / Cedar Knolls
ASN
AS63949 · Akamai Connected Cloud
Cloud Provider
Akamai/Linode
Total Events
10
Below average by volume
Agent Count
2
First / Last Seen
2026-03-20 04:01 — 2026-03-27 19:11
Attack Types
http:scan ssh:bruteforce
External Corroboration
DShield Top Attackers
Reported 2026-03-27 19:40
dshield:top_attacker
Blocklist.de
Reported 2026-03-27 19:33
blocklist_de:reported
Campaigns
Multi-Agent Scan
SCAN · 111 IPs · 84707 events
Multi-Agent Scan
SCAN · 113 IPs · 86223 events
Multi-Agent Scan
SCAN · 128 IPs · 94988 events
Multi-Agent Scan
SCAN · 127 IPs · 94058 events
Multi-Agent Scan
SCAN · 148 IPs · 102426 events
Multi-Agent Scan
SCAN · 144 IPs · 91507 events
Multi-Agent Scan
SCAN · 133 IPs · 76826 events
Multi-Agent Scan
SCAN · 152 IPs · 103448 events
Multi-Agent Scan
SCAN · 141 IPs · 81680 events
Multi-Agent Scan
SCAN · 149 IPs · 110253 events
Multi-Agent Scan
SCAN · 138 IPs · 107289 events
Multi-Agent Scan
SCAN · 136 IPs · 107220 events
Multi-Agent Scan
SCAN · 135 IPs · 102371 events
Multi-Agent Scan
SCAN · 134 IPs · 102869 events
Multi-Agent Scan
SCAN · 135 IPs · 102745 events
Multi-Agent Scan
SCAN · 139 IPs · 101702 events
Multi-Agent Scan
SCAN · 134 IPs · 97799 events
Multi-Agent Scan
SCAN · 132 IPs · 97869 events
Multi-Agent Scan
SCAN · 131 IPs · 97690 events
Multi-Agent Scan
SCAN · 136 IPs · 103638 events
Multi-Agent Scan
SCAN · 129 IPs · 94461 events
Multi-Agent Scan
SCAN · 134 IPs · 97571 events
Multi-Agent Scan
SCAN · 132 IPs · 97780 events
Multi-Agent Scan
SCAN · 110 IPs · 85354 events
Multi-Agent Scan
SCAN · 84 IPs · 19868 events
Multi-Agent Scan
SCAN · 122 IPs · 84528 events
Multi-Agent Scan
SCAN · 76 IPs · 16237 events
Multi-Agent Scan
SCAN · 137 IPs · 102793 events
Multi-Agent Scan
SCAN · 57 IPs · 9247 events
Multi-Agent Scan
SCAN · 126 IPs · 85464 events
Multi-Agent Scan
SCAN · 137 IPs · 98404 events
Multi-Agent Scan
SCAN · 134 IPs · 101963 events
Multi-Agent Scan
SCAN · 144 IPs · 84106 events
Multi-Agent Scan
SCAN · 126 IPs · 90725 events
Multi-Agent Scan
SCAN · 133 IPs · 88143 events
Multi-Agent Scan
SCAN · 133 IPs · 88337 events
Multi-Agent Scan
SCAN · 130 IPs · 89582 events
Multi-Agent Scan
SCAN · 128 IPs · 89264 events
Multi-Agent Scan
SCAN · 133 IPs · 88353 events
Multi-Agent Scan
SCAN · 134 IPs · 92545 events
Multi-Agent Scan
SCAN · 133 IPs · 88646 events
Multi-Agent Scan
SCAN · 149 IPs · 103112 events
Multi-Agent Scan
SCAN · 16 IPs · 1803 events
Multi-Agent Scan
SCAN · 117 IPs · 83707 events
Multi-Agent Scan
SCAN · 131 IPs · 85103 events
Multi-Agent Scan
SCAN · 115 IPs · 82708 events
Multi-Agent Scan
SCAN · 66 IPs · 11549 events
Multi-Agent Scan
SCAN · 83 IPs · 11780 events
Multi-Agent Scan
SCAN · 134 IPs · 97739 events
Multi-Agent Scan
SCAN · 59 IPs · 5335 events
Multi-Agent Scan
SCAN · 78 IPs · 13805 events
Multi-Agent Scan
SCAN · 136 IPs · 103760 events
Multi-Agent Scan
SCAN · 74 IPs · 16609 events
Multi-Agent Scan
SCAN · 127 IPs · 86512 events
Multi-Agent Scan
SCAN · 140 IPs · 107470 events
Multi-Agent Scan
SCAN · 86 IPs · 21071 events
Multi-Agent Scan
SCAN · 49 IPs · 7714 events
Multi-Agent Scan
SCAN · 97 IPs · 22746 events
Multi-Agent Scan
SCAN · 92 IPs · 22999 events
Multi-Agent Scan
SCAN · 131 IPs · 90581 events
Multi-Agent Scan
SCAN · 90 IPs · 19817 events
Multi-Agent Scan
SCAN · 88 IPs · 16214 events
Multi-Agent Scan
SCAN · 67 IPs · 13182 events
Multi-Agent Scan
SCAN · 100 IPs · 20994 events
Multi-Agent Scan
SCAN · 60 IPs · 13067 events
Multi-Agent Scan
SCAN · 56 IPs · 7586 events
Multi-Agent Scan
SCAN · 135 IPs · 96524 events
Multi-Agent Scan
SCAN · 105 IPs · 27339 events
Multi-Agent Scan
SCAN · 142 IPs · 91417 events
Multi-Agent Scan
SCAN · 103 IPs · 23513 events
Multi-Agent Scan
SCAN · 130 IPs · 85266 events
Multi-Agent Scan
SCAN · 117 IPs · 82953 events
Multi-Agent Scan
SCAN · 105 IPs · 23629 events
Multi-Agent Scan
SCAN · 104 IPs · 21879 events
Multi-Agent Scan
SCAN · 54 IPs · 7710 events
Multi-Agent Scan
SCAN · 62 IPs · 11491 events
Multi-Agent Scan
SCAN · 129 IPs · 91214 events
Multi-Agent Scan
SCAN · 124 IPs · 88602 events
Multi-Agent Scan
SCAN · 90 IPs · 12079 events
Multi-Agent Scan
SCAN · 111 IPs · 84712 events
Multi-Agent Scan
SCAN · 115 IPs · 86675 events
Multi-Agent Scan
SCAN · 123 IPs · 81963 events
Multi-Agent Scan
SCAN · 120 IPs · 81352 events
Multi-Agent Scan
SCAN · 118 IPs · 79658 events
Multi-Agent Scan
SCAN · 79 IPs · 13447 events
Multi-Agent Scan
SCAN · 125 IPs · 81858 events
Multi-Agent Scan
SCAN · 115 IPs · 83154 events
Multi-Agent Scan
SCAN · 61 IPs · 9598 events
Multi-Agent Scan
SCAN · 76 IPs · 19240 events
Multi-Agent Scan
SCAN · 134 IPs · 96182 events
Multi-Agent Scan
SCAN · 84 IPs · 23675 events
Multi-Agent Scan
SCAN · 73 IPs · 15723 events
Multi-Agent Scan
SCAN · 83 IPs · 17929 events
Multi-Agent Scan
SCAN · 69 IPs · 13682 events
Multi-Agent Scan
SCAN · 119 IPs · 83825 events
Multi-Agent Scan
SCAN · 146 IPs · 102638 events
Multi-Agent Scan
SCAN · 100 IPs · 22099 events
Multi-Agent Scan
SCAN · 138 IPs · 103407 events
Multi-Agent Scan
SCAN · 97 IPs · 22035 events
Multi-Agent Scan
SCAN · 53 IPs · 5370 events
Multi-Agent Scan
SCAN · 81 IPs · 13412 events
Multi-Agent Scan
SCAN · 85 IPs · 13285 events
Multi-Agent Scan
SCAN · 136 IPs · 101732 events
Multi-Agent Scan
SCAN · 79 IPs · 13908 events
Multi-Agent Scan
SCAN · 23 IPs · 2338 events
Multi-Agent Scan
SCAN · 82 IPs · 11016 events
Multi-Agent Scan
SCAN · 133 IPs · 97568 events
Multi-Agent Scan
SCAN · 128 IPs · 90477 events
Multi-Agent Scan
SCAN · 124 IPs · 82081 events
Multi-Agent Scan
SCAN · 96 IPs · 19377 events
Multi-Agent Scan
SCAN · 74 IPs · 9001 events
Multi-Agent Scan
SCAN · 72 IPs · 9924 events
Multi-Agent Scan
SCAN · 144 IPs · 94722 events
Multi-Agent Scan
SCAN · 45 IPs · 6713 events
Multi-Agent Scan
SCAN · 77 IPs · 10693 events
Multi-Agent Scan
SCAN · 55 IPs · 6238 events
Multi-Agent Scan
SCAN · 141 IPs · 102120 events
Multi-Agent Scan
SCAN · 129 IPs · 101192 events
Multi-Agent Scan
SCAN · 93 IPs · 22957 events
Multi-Agent Scan
SCAN · 134 IPs · 88819 events
Multi-Agent Scan
SCAN · 137 IPs · 103565 events
Multi-Agent Scan
SCAN · 118 IPs · 82546 events
Multi-Agent Scan
SCAN · 108 IPs · 84801 events
Multi-Agent Scan
SCAN · 129 IPs · 91216 events
Multi-Agent Scan
SCAN · 31 IPs · 3379 events
Multi-Agent Scan
SCAN · 143 IPs · 107756 events
Multi-Agent Scan
SCAN · 61 IPs · 7355 events
Multi-Agent Scan
SCAN · 103 IPs · 20949 events
Multi-Agent Scan
SCAN · 132 IPs · 96724 events
Multi-Agent Scan
SCAN · 43 IPs · 4020 events
Multi-Agent Scan
SCAN · 49 IPs · 8307 events
Subnet 172.104.11.0/24
SUBNET · 4 IPs · 30 events
Multi-Agent Scan
SCAN · 50 IPs · 7711 events
Multi-Agent Scan
SCAN · 124 IPs · 81719 events
Multi-Agent Scan
SCAN · 15 IPs · 1601 events
Multi-Agent Scan
SCAN · 126 IPs · 86496 events
Multi-Agent Scan
SCAN · 138 IPs · 101759 events
Multi-Agent Scan
SCAN · 128 IPs · 89408 events
Multi-Agent Scan
SCAN · 52 IPs · 5683 events
Multi-Agent Scan
SCAN · 87 IPs · 12167 events
Multi-Agent Scan
SCAN · 61 IPs · 6981 events
Multi-Agent Scan
SCAN · 64 IPs · 9348 events
Multi-Agent Scan
SCAN · 62 IPs · 7233 events
Multi-Agent Scan
SCAN · 66 IPs · 11165 events
Multi-Agent Scan
SCAN · 50 IPs · 5331 events
Session Forensics
scanner ×2 unknown ×4
Sessions
6
Avg Depth Score
0.12
Commands Executed
0
Files Downloaded
0
Fingerprints
SSH Client
{w[ \xadj{'\x9eǕz͌:u^3 \xab% \xf0-\x93\xc4\xf2\xdbc\xc0/\xc0+\xc0\xc0\xc0\xc0 \xc0\xc0GET / HTTP/1.1
Recent Events (last 50)
Timestamp Port Proto Event Location
2026-03-27 19:11:22 :80 http HTTP GET request sea
2026-03-24 04:33:20 :80 http HTTP GET request sea
2026-03-21 14:12:54 :22 ssh cowrie.session.closed sea
2026-03-21 14:12:54 :22 ssh cowrie.client.version sea
2026-03-21 14:12:54 :22 ssh cowrie.session.connect sea
2026-03-21 14:12:53 :22 ssh cowrie.session.closed sea
2026-03-21 14:12:53 :22 ssh cowrie.client.version sea
2026-03-21 14:12:53 :22 ssh cowrie.session.connect sea
2026-03-21 00:27:42 :80 http HTTP GET request sea
2026-03-20 04:01:13 :80 http HTTP GET request sin