JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.88.80.79

149.88.80.79 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 62%: ?

62%

ISP	Cogent Communications, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS401696
Domain Name	cogentco.com
Country	🇭🇰 Hong Kong
City	Kwai Chung, Kwai Tsing District

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.88.80.79

Whois 149.88.80.79

IP Abuse Reports for 149.88.80.79:

This IP address has been reported a total of 12 times from 11 distinct sources. 149.88.80.79 was first reported on June 5th 2026, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 CTK	2026-06-09 02:44:42 (23 hours ago)	Customer Site (Grieskirchen FP)	Brute-Force
🇳🇱 knock	2026-06-09 02:35:57 (1 day ago)	Knock-Knock honeypot brute-force: RDP (2 total hits)	Brute-Force
🇫🇷 Kimax	2026-06-09 02:35:50 (1 day ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force
🇫🇮 ValtonTahiri	2026-06-09 02:34:18 (1 day ago)	Windows IPBan blocked brute-force / failed login activity. Source=RDP; Username=6; Count=; LogonType ... show more Windows IPBan blocked brute-force / failed login activity. Source=RDP; Username=6; Count=; LogonType=3; SourcePort=0; Status=0xc000006d; SubStatus=0xc000006a; Auth=NTLM show less	Port Scan Brute-Force
🇫🇷 eduardomelendezjr	2026-06-06 05:39:10 (3 days ago)	Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator ... show more Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator - 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM workstation - - 0 0x0 - 149.88.80.79 0 show less	SSH Brute-Force
🇦🇺 dyln	2026-06-06 04:22:29 (3 days ago)	Dyls honeypot brute-force: RDP (1 total hits)	Brute-Force
🇳🇱 EGP Abuse Dept	2026-06-06 03:30:54 (3 days ago)	Unauthorized connection to RDP port 3389	Port Scan Hacking
🇬🇧 knock	2026-06-06 03:12:29 (3 days ago)	Knock-Knock honeypot brute-force: RDP (1 total hits)	Brute-Force
🇸🇬 drewf.ink	2026-06-06 02:55:00 (3 days ago)	[02:55] Port scanning. Port(s) scanned: TCP/3389	Port Scan
🇺🇸 donarev419	2026-06-06 02:44:32 (3 days ago)	Connection to port 3389 with data transfer. Data preview:	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 23:54:29 (4 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 wristhulk	2026-06-05 01:53:01 (5 days ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: '173'.	Brute-Force

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇪 46.245.238.18

🇧🇷 205.210.31.221

🇺🇸 205.210.31.99

🇸🇪 185.217.1.246

🇧🇷 177.200.230.231

🇫🇷 173.249.0.223

🇫🇷 173.212.218.121

🇺🇸 172.178.117.215

🇺🇸 162.216.150.221

🇺🇸 143.110.206.229

🇮🇩 118.99.102.207

🇨🇳 101.37.31.149

🇬🇧 87.236.176.143

🇫🇷 85.217.140.51

🇱🇹 77.90.185.68

🇺🇸 64.62.156.80

🇺🇦 46.173.175.1

🇵🇭 27.110.166.67

🇺🇸 199.96.165.72

🇩🇿 197.207.105.5