JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 202.70.80.153

202.70.80.153 was found in our database!

This IP was reported 106 times. Confidence of Abuse is 11%: ?

11%

ISP	Nepal Telecommunications Corporation
Usage Type	Fixed Line ISP
ASN	AS23752
Domain Name	ntc.net.np
Country	🇳🇵 Nepal
City	Kathmandu, Bagmati Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 202.70.80.153

Whois 202.70.80.153

IP Abuse Reports for 202.70.80.153:

This IP address has been reported a total of 106 times from 56 distinct sources. 202.70.80.153 was first reported on December 28th 2021, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 Deynekin.com	2026-06-04 10:07:09 (4 days ago)	This IP address has been identified as part of a botnet infrastructure used by threat actors, indica ... show more This IP address has been identified as part of a botnet infrastructure used by threat actors, indicating automated and malicious activity. show less	Fraud Orders Web App Attack SSH Web Spam FTP Brute-Force Phishing Email Spam Port Scan Brute-Force Exploited Host Hacking SQL Injection
Anonymous	2026-05-11 18:30:04 (4 weeks ago)	May 11 21:30:04 m postfix/smtpd[68937]: warning: unknown[202.70.80.153]: SASL LOGIN authentication f ... show more May 11 21:30:04 m postfix/smtpd[68937]: warning: unknown[202.70.80.153]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=janis.purvs ... show less	Brute-Force
🇨🇭 Origon	2026-03-03 11:23:42 (3 months ago)	NOQUEUE - IP: 202.70.80.153 - Mar 3 12:23:42 plesk postfix/smtpd[559751]: NOQUEUE: reject: RCPT fro ... show more NOQUEUE - IP: 202.70.80.153 - Mar 3 12:23:42 plesk postfix/smtpd[559751]: NOQUEUE: reject: RCPT from unknown[202.70.80.153]: 554 5.7.1 Service unavailable; Client host [202.70.80.153] blocked using dnsbl-1.uceprotect.net; IP 202.70.80.153 is UCEPROTECT-Level 1 listed. See http://www.uceprotect.net/rblcheck.php?ipr=202.70.80.153; from=<REDACTED@REDACTED> to=<REDACTED@REDACTED> proto=ESMTP helo=<202.70.80.153> show less	Email Spam
Anonymous	2026-02-26 14:20:05 (3 months ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack
🇮🇹 VHosting	2026-02-24 10:34:28 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇨🇭 Origon	2026-02-03 08:02:19 (4 months ago)	NOQUEUE - IP: 202.70.80.153 - Feb 3 09:02:19 plesk postfix/smtpd[583158]: NOQUEUE: reject: RCPT fro ... show more NOQUEUE - IP: 202.70.80.153 - Feb 3 09:02:19 plesk postfix/smtpd[583158]: NOQUEUE: reject: RCPT from unknown[202.70.80.153]: 554 5.7.1 Service unavailable; Client host [202.70.80.153] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?202.70.80.153; from=<[email protected]> to=<REDACTED@REDACTED> proto=ESMTP helo=<nv.com.mx> show less	Email Spam
🇩🇪 evilazrael.de	2026-01-24 16:37:20 (4 months ago)	SPF Fail sender not permitted to send mail for @evilazrael.de / Mail sent to address hacked/leaked f ... show more SPF Fail sender not permitted to send mail for @evilazrael.de / Mail sent to address hacked/leaked from atari.st show less	Email Spam
🇮🇹 VHosting	2026-01-18 14:36:11 (4 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇨🇭 Modules	2025-12-17 13:15:08 (5 months ago)	Open proxy socks4://202.70.80.153:5678 (RT:10661ms,Loc:Nepal,ASN:AS23752)	Open Proxy
🇧🇬 cheatmaster.store	2025-11-15 03:28:58 (6 months ago)	Detected proxy server at 202.70.80.153	Brute-Force SSH
🇲🇾 syokadmin	2025-11-09 20:13:17 (6 months ago)	202.70.80.153 (NP/Nepal/-), 2 distributed smtpauth attacks on account [[email protected]] in the l ... show more 202.70.80.153 (NP/Nepal/-), 2 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force
🇲🇾 syokadmin	2025-11-05 10:29:00 (7 months ago)	202.70.80.153 (NP/Nepal/-), 2 distributed smtpauth attacks on account [[email protected]] in the l ... show more 202.70.80.153 (NP/Nepal/-), 2 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs show less	Brute-Force
🇨🇭 backslash	2025-11-04 11:20:37 (7 months ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇬🇧 Silly Development	2025-09-28 15:16:37 (8 months ago)	Malicious activity detected from 23752 NPTELECOM-NP-AS Nepal Telecommunications Corporation, Interne ... show more Malicious activity detected from 23752 NPTELECOM-NP-AS Nepal Telecommunications Corporation, Internet Services towards host paid.sillydev.co.uk (GET HTTP/1.1) @ 2025-09-28T15:16:37Z (2 occurrences) show less	DDoS Attack Exploited Host
🇬🇧 Silly Development	2025-09-20 22:57:20 (8 months ago)	Malicious activity detected from 23752 NPTELECOM-NP-AS Nepal Telecommunications Corporation, Interne ... show more Malicious activity detected from 23752 NPTELECOM-NP-AS Nepal Telecommunications Corporation, Internet Services towards host panel.sillydev.co.uk (GET HTTP/2) @ 2025-09-20T22:57:20Z (11 occurrences) show less	DDoS Attack Exploited Host

Showing 1 to 15 of 106 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.62.87.27

🇰🇷 183.103.217.221

🇺🇸 100.24.58.108

🇨🇴 190.26.187.17

🇵🇰 165.101.126.88

🇺🇸 157.245.8.190

🇩🇪 151.243.11.248

🇮🇳 128.185.207.150

🇩🇪 89.106.64.46

🇳🇱 81.19.216.87

🇺🇸 47.254.15.85

🇬🇧 35.203.210.252

🇦🇪 20.203.42.204

🇰🇷 210.123.87.143

🇫🇷 185.189.72.135

🇷🇺 178.17.136.140

🇵🇰 124.29.214.246

🇮🇳 122.185.185.190

🇳🇱 77.91.71.10

🇺🇸 72.128.203.13