JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.81.154.239

185.81.154.239 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 37%: ?

37%

ISP	Netbudur Telekomunikasyon Limited Sirketi
Usage Type	Data Center/Web Hosting/Transit
ASN	AS202505
Hostname(s)	static-185-81-154-239.ptr.name.tr
Domain Name	netbudur.com
Country	🇹🇷 Turkey
City	Istanbul, Istanbul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.81.154.239

Whois 185.81.154.239

IP Abuse Reports for 185.81.154.239:

This IP address has been reported a total of 12 times from 6 distinct sources. 185.81.154.239 was first reported on June 16th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 [email protected]	2026-06-20 06:42:35 (4 hours ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force
🇺🇸 ShadowWhisperer	2026-06-20 04:45:18 (6 hours ago)	RDP credential attempt.	Brute-Force Hacking
🇺🇸 wristhulk	2026-06-20 04:36:19 (6 hours ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: 'hello'.	Brute-Force
🇺🇸 sargetun	2026-06-20 00:02:22 (11 hours ago)	Honeypot: RDP probe on port 3389 at 2026-06-18 03:59:53.023971. Automated report from VPS honeypot.	Port Scan
🇺🇸 wristhulk	2026-06-19 03:32:38 (1 day ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: 'hello'.	Brute-Force
🇺🇸 sargetun	2026-06-19 00:01:40 (1 day ago)	Honeypot: RDP probe on port 3389 at 2026-06-18 03:59:53.023971. Automated report from VPS honeypot.	Port Scan
🇺🇸 wristhulk	2026-06-18 02:36:38 (2 days ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: 'hello'.	Brute-Force
🇺🇸 sargetun	2026-06-18 00:26:08 (2 days ago)	Honeypot: RDP probe on port 3389 at 2026-06-18 00:24:54.889087. Automated report from VPS honeypot.	Port Scan
🇺🇸 sargetun	2026-06-17 03:25:52 (3 days ago)	Honeypot: RDP probe on port 3389 at 2026-06-17 03:24:36.899636. Automated report from VPS honeypot.	Port Scan
🇺🇸 wristhulk	2026-06-17 02:22:59 (3 days ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: 'hello'.	Brute-Force
🇫🇷 Kimax	2026-06-16 02:33:15 (4 days ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force
🇩🇪 Luhte	2026-06-16 02:17:28 (4 days ago)	Unsolicited TCP connection from 185.81.154.239 to port 0 at 2026-06-16T02:17:28Z. Source IP complete ... show more Unsolicited TCP connection from 185.81.154.239 to port 0 at 2026-06-16T02:17:28Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 165.227.159.13

🇺🇸 4.227.177.11

🇲🇲 2400:ac40:634:469f:f837:ed54:9c8a:5d6a

🇨🇳 223.109.252.248

🇻🇪 200.71.154.142

🇵🇰 175.107.0.45

🇩🇪 156.236.31.86

🇮🇳 140.238.160.152

🇯🇵 128.1.49.46

🇫🇷 104.28.154.194

🇭🇰 101.79.165.43

🇺🇸 20.65.194.182

🇫🇮 2a00:1450:4010:c01::124

🇨🇳 124.117.194.125

🇩🇰 92.113.145.209

🇩🇪 167.94.146.62

🇨🇳 115.190.138.163

🇸🇬 114.119.147.13

🇮🇩 103.112.245.85

🇳🇱 91.92.40.11