JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 144.31.220.41

144.31.220.41 was found in our database!

This IP was reported 97 times. Confidence of Abuse is 100%: ?

100%

ISP	aurorix networks
Usage Type	Data Center/Web Hosting/Transit
ASN	AS216039
Hostname(s)	protected-by.aurorix.net
Domain Name	aurorix.net
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 144.31.220.41

Whois 144.31.220.41

IP Abuse Reports for 144.31.220.41:

This IP address has been reported a total of 97 times from 71 distinct sources. 144.31.220.41 was first reported on June 22nd 2026, and the most recent report was 9 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 antlac1	2026-06-27 00:16:55 (9 minutes ago)	crowdsecurity/http-cve-2021-42013	Brute-Force Web App Attack
Anonymous	2026-06-26 23:58:47 (28 minutes ago)	2026-06-27T01:36:21.319276+02:00 mail.uninetlab.de sshd[690826]: Invalid user admin from 144.31.220. ... show more 2026-06-27T01:36:21.319276+02:00 mail.uninetlab.de sshd[690826]: Invalid user admin from 144.31.220.41 port 45992 2026-06-27T01:39:00.441936+02:00 mail.uninetlab.de sshd[692220]: Invalid user orangepi from 144.31.220.41 port 40970 2026-06-27T01:58:46.523251+02:00 mail.uninetlab.de sshd[703846]: Invalid user test from 144.31.220.41 port 44042 ... show less	Brute-Force SSH
🇳🇱 wolfemium	2026-06-26 23:19:19 (1 hour ago)	144.31.220.41 - - [27/Jun/2026:02:19:14 +0300] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin. ... show more 144.31.220.41 - - [27/Jun/2026:02:19:14 +0300] "GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 146 "-" "libredtail-http" 144.31.220.41 - - [27/Jun/2026:02:19:14 +0300] "GET /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 146 "-" "libredtail-http" 144.31.220.41 - - [27/Jun/2026:02:19:15 +0300] "GET /vendor/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 146 "-" "libredtail-http" 144.31.220.41 - - [27/Jun/2026:02:19:16 +0300] "GET /vendor/phpunit/Util/PHP/eval-stdin.php HTTP/1.1" 404 146 "-" "libredtail-http" 144.31.220.41 - - [27/Jun/2026:02:19:17 +0300] "GET /vendor/phpunit/phpunit/LICENSE/eval-stdin.php HTTP/1.1" 404 146 "-" "libredtail-http" 144.31.220.41 - - [27/Jun/2026:02:19:18 +0300] "GET /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 146 "-" "libredtail-http" ... show less	DDoS Attack
🇧🇬 OHOST.BG	2026-06-26 21:02:56 (3 hours ago)	2026-06-26T20:59:49.229464 server8.ohost.net sshd[1844845]: Invalid user orangepi from 144.31.220.41 ... show more 2026-06-26T20:59:49.229464 server8.ohost.net sshd[1844845]: Invalid user orangepi from 144.31.220.41 port 46264 2026-06-26T20:59:49.240426 server8.ohost.net sshd[1844845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.31.220.41 2026-06-26T20:59:51.194752 server8.ohost.net sshd[1844845]: Failed password for invalid user orangepi from 144.31.220.41 port 46264 ssh2 2026-06-26T21:02:53.498100 server8.ohost.net sshd[1847592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.31.220.41 user=root 2026-06-26T21:02:55.376749 server8.ohost.net sshd[1847592]: Failed password for root from 144.31.220.41 port 34056 ssh2 ... show less	Brute-Force SSH
🇰🇷 2048	2026-06-26 17:19:39 (7 hours ago)	SSH brute-force detected on ampere-1 Source IP: 144.31.220.41 Service: sshd Port: 22 Sample username ... show more SSH brute-force detected on ampere-1 Source IP: 144.31.220.41 Service: sshd Port: 22 Sample usernames: admin, orangepi show less	Brute-Force SSH
🇺🇸 RAP	2026-06-26 16:56:43 (7 hours ago)	2026-06-26 16:56:43 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇬🇧 thetomtaylor.co.uk	2026-06-26 16:07:01 (8 hours ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-26 14:56:06 (9 hours ago)	Try to connect to Port_Scan_2222_stealth	Port Scan
🇬🇧 SilverZippo	2026-06-26 10:59:40 (13 hours ago)	Web App Attack	Web App Attack
🇬🇧 lumi	2026-06-26 09:03:27 (15 hours ago)	2026-06-26T08:59:57.488977+00:00 habibi.infra.lumis.moe sshd-session[586552]: pam_unix(sshd:auth): a ... show more 2026-06-26T08:59:57.488977+00:00 habibi.infra.lumis.moe sshd-session[586552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.31.220.41 2026-06-26T08:59:59.668254+00:00 habibi.infra.lumis.moe sshd-session[586552]: Failed password for invalid user admin from 144.31.220.41 port 39640 ssh2 2026-06-26T09:03:25.914561+00:00 habibi.infra.lumis.moe sshd-session[586796]: Invalid user orangepi from 144.31.220.41 port 39802 ... show less	Brute-Force SSH
🇮🇩 Burayot	2026-06-26 07:28:22 (16 hours ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 144.31.220.41 (DE/Germany/protected ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 144.31.220.41 (DE/Germany/protected-by.aurorix.net): 1 in the last 3600 secs show less	Web App Attack
🇱🇻 lns.bz	2026-06-26 06:31:53 (17 hours ago)	SSH bruteforce [LV.MEL]	SSH
🇵🇱 dzpk	2026-06-26 05:39:14 (18 hours ago)	144.31.220.41 - - [26/Jun/2026:07:39:14 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2 ... show more 144.31.220.41 - - [26/Jun/2026:07:39:14 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" show less	Web App Attack
Anonymous	2026-06-26 05:04:46 (19 hours ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇩🇪 enjoyably	2026-06-26 05:01:43 (19 hours ago)	This IP was detected by CrowdSec triggering crowdsecurity/ssh-bf	SSH Brute-Force

Showing 1 to 15 of 97 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a06:4883:d000::ec

🇨🇦 198.50.239.95

🇳🇱 45.148.10.147

🇧🇪 198.235.24.185

🇺🇸 162.216.150.5

🇳🇱 91.92.42.19

🇫🇷 85.217.140.43

🇩🇪 69.5.169.74

🇺🇸 65.49.1.100

🇺🇸 54.164.255.237

🇨🇳 223.107.237.28

🇲🇽 187.233.125.211

🇺🇸 165.154.182.187

🇷🇺 159.253.170.164

🇺🇸 154.16.119.22

🇺🇸 77.91.118.50

🇱🇹 62.60.130.129

🇧🇷 45.5.222.112

🇸🇬 43.160.249.98

🇵🇰 39.34.186.56