JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 181.214.206.80

181.214.206.80 was found in our database!

This IP was reported 106 times. Confidence of Abuse is 1%: ?

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Fixed Line ISP
ASN	AS3257
Domain Name	netutils.io
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 181.214.206.80

Whois 181.214.206.80

IP Abuse Reports for 181.214.206.80:

This IP address has been reported a total of 106 times from 49 distinct sources. 181.214.206.80 was first reported on August 3rd 2021, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-05-26 12:11:38 (4 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Freenex1911	2025-11-22 16:15:33 (7 months ago)	2025-11-22T16:15:32Z - RDP login from 181.214.206.80 failed multiple times.	Brute-Force
🇩🇪 Freenex1911	2025-11-21 16:14:48 (7 months ago)	2025-11-21T16:14:48Z - RDP login from 181.214.206.80 failed multiple times.	Brute-Force
🇩🇪 Freenex1911	2025-11-18 03:32:03 (7 months ago)	2025-11-18T03:32:02Z - RDP login from 181.214.206.80 failed multiple times.	Brute-Force
🇲🇾 Rizzy	2025-09-27 13:43:17 (8 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇫🇷 ecowan.fr	2025-07-22 16:54:38 (11 months ago)	181.214.206.80&categories=<categories>&comment=Fail2ban: portscan ban - IP 181.214.206.80 detected w ... show more 181.214.206.80&categories=<categories>&comment=Fail2ban: portscan ban - IP 181.214.206.80 detected with 2 attempts show less	Port Scan
🇲🇾 Rizzy	2024-08-06 08:15:56 (1 year ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-08-06 07:14:15 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 06 03:14:08.075072 2024] [security2:error] [pid 18312:tid 18312] [client 181.214.206.80:55014] [client 181.214.206.80] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weldtestcoupons.com"] [uri "/wp-config.php"] [unique_id "ZrHNQL1NdB6P-t5g6-vVFQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2024-08-06 04:42:51 (1 year ago)	LF_APACHE_403: 181.214.206.80 (NL/The Netherlands/-), more than 10 Apache 403 hits in the last 3600 ... show more LF_APACHE_403: 181.214.206.80 (NL/The Netherlands/-), more than 10 Apache 403 hits in the last 3600 secs show less	Web App Attack
🇺🇸 rsa	2024-08-05 23:09:00 (1 year ago)	GET /wp-content/uploads/themes.php HTTP/1.1	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2024-08-04 23:20:29 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 19:20:25.537581 2024] [security2:error] [pid 1452:tid 1452] [client 181.214.206.80:55087] [client 181.214.206.80] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mavikalem.org"] [uri "/wp-config.php"] [unique_id "ZrAMub1rihCMzjJJYrZ8yQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-04 11:47:28 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 04 07:47:24.380646 2024] [security2:error] [pid 13450:tid 13450] [client 181.214.206.80:60232] [client 181.214.206.80] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martinvjohnson.com"] [uri "/wp-config.php"] [unique_id "Zq9qTOcu1G-wwsxoKYRc1wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-03 10:18:43 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 03 06:18:38.106472 2024] [security2:error] [pid 18818:tid 18818] [client 181.214.206.80:59304] [client 181.214.206.80] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.diepeveen.net"] [uri "/wp-config.php"] [unique_id "Zq4D_srg2tFx8TmX8hCP4AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 R.G.	2024-08-03 05:43:18 (1 year ago)	(ScanningForFiles) Scanning for files triggerd 181.214.206.80 (NL/The Netherlands/-): 10 in the last ... show more (ScanningForFiles) Scanning for files triggerd 181.214.206.80 (NL/The Netherlands/-): 10 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2024-08-03 03:16:09 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 181.214.206.80 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 02 23:16:04.566692 2024] [security2:error] [pid 10257:tid 10257] [client 181.214.206.80:60513] [client 181.214.206.80] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "faithhopeandrecovery.com"] [uri "/wp-config.php"] [unique_id "Zq2g9NCD54EFVaJf7rvQoAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 106 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 147.90.209.8

🇰🇷 110.14.190.221

🇺🇸 74.82.47.44

🇺🇸 98.80.4.91

🇪🇸 80.24.1.119

🇩🇪 69.5.169.159

🇮🇳 103.54.101.248

🇺🇸 52.180.144.125

🇺🇸 17.246.19.15

🇮🇩 202.145.0.18

🇺🇸 195.184.76.75

🇮🇳 154.84.242.115

🇳🇱 128.90.141.18

🇫🇷 109.199.103.240

🇵🇰 103.141.5.129

🇳🇱 40.126.32.138

🇨🇦 20.151.203.184

🇺🇸 198.199.85.66

🇳🇱 176.65.149.212

🇺🇸 66.132.172.133