JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 144.31.53.80

144.31.53.80 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 18%: ?

18%

ISP	VPSPay - vpspay.cloud
Usage Type	Data Center/Web Hosting/Transit
ASN	AS201988
Domain Name	vpspay.cloud
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 144.31.53.80

Whois 144.31.53.80

IP Abuse Reports for 144.31.53.80:

This IP address has been reported a total of 5 times from 5 distinct sources. 144.31.53.80 was first reported on May 16th 2026, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇹 komaldesai	2026-05-17 19:37:21 (4 weeks ago)	Fail2Ban (postfix-sasl): Ban 144.31.53.80 after 13 failures postfix/smtpd[3656]: warning: 144.31.53. ... show more Fail2Ban (postfix-sasl): Ban 144.31.53.80 after 13 failures postfix/smtpd[3656]: warning: 144.31.53.80: SASL LOGIN authentication failed: authentication failure postfix/smtpd[60804]: lost connection after AUTH from unknown[144.31.53.80] 16/May/2026:06:55:07 +0000 show less	Brute-Force
🇺🇸 smairjani03	2026-05-17 19:12:43 (4 weeks ago)	Fail2Ban (sshd): Ban 144.31.53.80 after 26 failures sshd[26996]: Failed password for invalid user po ... show more Fail2Ban (sshd): Ban 144.31.53.80 after 26 failures sshd[26996]: Failed password for invalid user postgres from 144.31.53.80 port 61432 ssh2 sshd[20223]: Failed password for test from 144.31.53.80 port 53231 ssh2 sshd[4101]: Failed password for invalid user jenkins from 144.31.53.80 port 40833 ssh2 show less	Brute-Force SSH
🇦🇺 Vinh Nguyen	2026-05-17 01:22:11 (4 weeks ago)	ModSecurity: Warning. Matched "Operator `Rx' with parameter `(?i:(?:select\|union\|insert\|update\|delet ... show more ModSecurity: Warning. Matched "Operator `Rx' with parameter `(?i:(?:select\|union\|insert\|update\|delete\|drop\|alter))' against variable `ARGS:id' [file "/etc/nginx/modsec/crs/rules.conf"] [line "1234"] [id "920350"] [msg "IP address found in Host header"] [data "Matched Data"] [severity "CRITICAL"] [ver "OWASP_CRS/4.0.0"] [maturity "5"] [accuracy "5"] 144.31.53.80 - - [16/May/2026:05:55:24 +0000] "GET /wp-config.php.bak HTTP/1.1" 403 223 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:126.0) Gecko/20100101 Firefox/126.0" show less	Hacking Web App Attack
🇷🇴 Adar P	2026-05-16 22:29:37 (4 weeks ago)	ModSecurity: Access denied with code 403 (phase 2). [id "920350"] [msg "IP address found in Host hea ... show more ModSecurity: Access denied with code 403 (phase 2). [id "920350"] [msg "IP address found in Host header"] [severity "CRITICAL"] [tag "OWASP_CRS"] [ver "OWASP_CRS/4.0.0"] 144.31.53.80 - - [16/May/2026:23:08:44 +0000] "GET /remote/logincheck HTTP/1.1" 403 1878 "-" "python-requests/2.31.0" Unique ID: 5f7ed8fc show less	Web App Attack
🇷🇴 Victor Hernandez	2026-05-16 22:14:47 (4 weeks ago)	Repeated SSH authentication failures from this IP. Over 50 attempts in 10 minutes.	Brute-Force SSH

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇰 220.247.224.226

🇳🇱 204.76.203.51

🇹🇼 198.235.24.30

🇨🇱 191.116.1.36

🇨🇳 111.9.22.102

🇵🇭 103.186.139.149

🇺🇸 91.230.168.149

🇫🇷 91.196.152.89

🇫🇷 91.196.152.6

🇺🇸 66.132.195.54

🇺🇸 64.62.197.62

🇺🇸 50.231.243.28

🇬🇧 46.101.0.91

🇰🇪 41.60.234.97

🇺🇸 20.228.179.34

🇺🇸 2001:470:1:c84::1a4

🇩🇪 212.227.140.112

🇯🇵 202.32.0.89

🇮🇳 182.73.186.142

🇨🇳 180.167.128.202