JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.173.70.207

31.173.70.207 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 100%: ?

100%

ISP	PJSC MegaFon
Usage Type	Fixed Line ISP
ASN	AS25159
Domain Name	megafon.ru
Country	🇷🇺 Russian Federation
City	Khimki, Moscow Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.173.70.207

Whois 31.173.70.207

IP Abuse Reports for 31.173.70.207:

This IP address has been reported a total of 92 times from 56 distinct sources. 31.173.70.207 was first reported on January 24th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 user-4736	2026-06-27 13:04:54 (2 hours ago)	Fail2Ban - SASL LOGIN authentication failed / Email auth brute force attack ...	Brute-Force
🇩🇪 kreativstrecke	2026-06-27 09:41:46 (5 hours ago)	2026-06-27T11:41:44.148580+02:00 srv02 postfix/submission/smtpd[2294320]: warning: unknown[31.173.70 ... show more 2026-06-27T11:41:44.148580+02:00 srv02 postfix/submission/smtpd[2294320]: warning: unknown[31.173.70.207]: SASL LOGIN authentication failed: (reason unavailable), [email protected] 2026-06-27T11:41:45.680885+02:00 srv02 postfix/submission/smtpd[2294320]: lost connection after AUTH from unknown[31.173.70.207] 2026-06-27T11:41:45.681033+02:00 srv02 postfix/submission/smtpd[2294320]: disconnect from unknown[31.173.70.207] ehlo=2 starttls=1 auth=0/1 commands=3/4 ... show less	Brute-Force
🇷🇴 clauss	2026-06-27 09:18:25 (6 hours ago)	IP reached maximum auth failures for a one day block	Brute-Force
🇸🇪 triplecode	2026-06-27 05:38:37 (9 hours ago)	Reported from hMailServer	Hacking
🇩🇪 EGP Abuse Dept	2026-06-27 04:06:18 (11 hours ago)	Scanning for port/service exploits on smtp1c.espresso-gridpoint.net	Port Scan Hacking
🇩🇪 Paul Smith	2026-06-26 19:08:10 (20 hours ago)	Email Auth Brute force attack 1/1 in last day	Brute-Force
🇮🇩 xveil	2026-06-26 14:11:22 (1 day ago)	2026-06-26T21:11:19.385658 mail-honeypot postfix/submission/smtpd[31418]: warning: unknown[31.173.70 ... show more 2026-06-26T21:11:19.385658 mail-honeypot postfix/submission/smtpd[31418]: warning: unknown[31.173.70.207]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
🇩🇪 rd1742	2026-06-26 10:11:49 (1 day ago)	Jun 26 10:11:48 quad dovecot: auth-worker(1775531): sql(l.schweikle,31.173.70.207): unknown user	Brute-Force Exploited Host
🇳🇱 globcom	2026-06-26 04:23:21 (1 day ago)	Mail-BruteForce	Email Spam Brute-Force
🇩🇪 FeG Deutschland	2026-06-26 03:12:08 (1 day ago)	Mail: - login with unknown user - bruteforce	Brute-Force
🇹🇼 tye	2026-06-26 02:38:40 (1 day ago)	Wazuh Alert Evidence: Jun 26 02:38:38 pico-gw1 postfix/smtpd[1564013]: warning: unknown[31.173.70.20 ... show more Wazuh Alert Evidence: Jun 26 02:38:38 pico-gw1 postfix/smtpd[1564013]: warning: unknown[31.173.70.207]: SASL LOGIN authentication failed: (reason unavailable), [email protected] show less	Brute-Force
Anonymous	2026-06-26 01:06:06 (1 day ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇮🇩 xveil	2026-06-26 00:07:01 (1 day ago)	2026-06-26T07:06:58.552151 mail-honeypot postfix/submission/smtpd[16669]: warning: unknown[31.173.70 ... show more 2026-06-26T07:06:58.552151 mail-honeypot postfix/submission/smtpd[16669]: warning: unknown[31.173.70.207]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
🇳🇱 big-cloud.nl	2026-06-25 23:05:07 (1 day ago)	Unauthorized SMTP connection attempt	Brute-Force
🇪🇸 Gem	2026-06-25 22:00:41 (1 day ago)	Mail server brute-force access attempt. 2 times	Brute-Force

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 223.197.178.95

🇭🇰 199.45.154.158

🇺🇸 152.32.234.97

🇸🇬 103.187.147.214

🇮🇳 103.98.189.104

🇺🇸 72.17.34.38

🇺🇸 44.94.185.93

🇶🇦 34.18.62.244

🇹🇭 203.170.192.251

🇬🇧 185.247.137.230

🇩🇪 140.248.75.197

🇩🇪 140.248.75.159

🇺🇸 44.250.130.66

🇺🇸 44.28.70.221

🇨🇳 223.91.14.41

🇭🇰 150.5.154.160

🇺🇸 147.185.132.14

🇲🇾 47.250.161.218

🇺🇸 44.206.197.172

🇺🇸 44.206.2.213