JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.56.80.172

66.56.80.172 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 19%: ?

19%

ISP	VPN Consumer Toronto, Canada
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.56.80.172

Whois 66.56.80.172

IP Abuse Reports for 66.56.80.172:

This IP address has been reported a total of 40 times from 24 distinct sources. 66.56.80.172 was first reported on July 6th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 mxpgmbh	2026-04-23 01:49:53 (1 month ago)	2026-04-23T03:49:46.280460+02:00 ** postfix/submission/smtpd[57622]: warning: unknown[66.56.80.172 ... show more 2026-04-23T03:49:46.280460+02:00 postfix/submission/smtpd[57622]: warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: (reason unavailable), sasl_username=@.* 2026-04-23T03:49:50.482145+02:00 ** postfix/submission/smtpd[57626]: warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: (reason unavailable), sasl_username=@.* 2026-04-23T03:49:52.484759+02:00 ** postfix/submission/smtpd[57622]: warning: unknown[66.56.80.172]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=@.* show less	Brute-Force
🇧🇬 sanitariu	2026-04-23 01:22:29 (1 month ago)	Apr 23 04:22:28 dri postfix/smtpd[4084028]: warning: unknown[66.56.80.172]: SASL PLAIN authenticatio ... show more Apr 23 04:22:28 dri postfix/smtpd[4084028]: warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: (reason unavailable), sasl_username=nasko Apr 23 04:22:28 dri postfix/smtpd[4084024]: warn ... show less	Brute-Force
🇨🇦 zXero	2026-04-23 00:46:19 (1 month ago)	Fail2Ban automatic report - jail: dovecot-iptables	Brute-Force SSH DDoS Attack
🇧🇷 SvrAdmin	2026-04-22 23:40:35 (1 month ago)	[101] (smtpauth) Failed SMTP AUTH login from 66.56.80.172 (CA/Canada/-): 5 in the last 3600 secs; Po ... show more [101] (smtpauth) Failed SMTP AUTH login from 66.56.80.172 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-04-22 20:40:03 dovecot_plain authenticator failed for H=([10.2.18.108]) [66.56.80.172]:59526: 535 Incorrect authentication data ([email protected]) 2026-04-22 20:40:09 dovecot_login authenticator failed for H=([10.2.18.108]) [66.56.80.172]:59526: 535 Incorrect authentication data ([email protected]) 2026-04-22 20:40:16 dovecot_plain authenticator failed for H=([10.2.18.108]) [66.56.80.172]:4299: 535 Incorrect authentication data ([email protected]) 2026-04-22 20:40:18 dovecot_login authenticator failed for H=([10.2.18.108]) [66.56.80.172]:4299: 535 Incorrect authentication data ([email protected]) 2026-04-22 20:40:29 dovecot_plain authenticator failed for H=([10.2.18.108]) [66.56.80.172]:33163: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
Anonymous	2026-04-22 23:13:43 (1 month ago)	Authentication failure	Brute-Force
Anonymous	2026-04-22 23:11:35 (1 month ago)	Ports: 25,2525,110,143,993,995; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2026-04-22 21:19:01 (1 month ago)	...	Brute-Force
🇨🇿 lp	2026-03-24 01:21:13 (2 months ago)	Email account brute force: 5 attempts were recorded from 66.56.80.172 2026-03-24T00:52:19+01:00 warn ... show more Email account brute force: 5 attempts were recorded from 66.56.80.172 2026-03-24T00:52:19+01:00 warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-03-24T00:52:19+01:00 warning: unknown[66.56.80.172]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-03-24T00:52:20+01:00 warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-03-24T00:52:20+01:00 warning: unknown[66.56.80.172]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-03-24T00:52:28+01:00 warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: authentication failure, [email protected] show less	Brute-Force
Anonymous	2026-03-23 16:30:54 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇳🇱 maxxsense	2026-03-23 13:50:04 (2 months ago)	(smtpauth) Failed SMTP AUTH login from 66.56.80.172 (CA/Canada/-)	Brute-Force
🇺🇸 bigscoots.com	2026-03-23 12:18:21 (2 months ago)	(smtpauth) Failed SMTP AUTH login from 66.56.80.172 (CA/Canada/-): 5 in the last 3600 secs; Ports: 2 ... show more (smtpauth) Failed SMTP AUTH login from 66.56.80.172 (CA/Canada/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-03-23 08:17:28 dovecot_plain authenticator failed for H=([10.2.154.249]) [66.56.80.172]:35309: 535 Incorrect authentication data ([email protected]) 2026-03-23 08:17:34 dovecot_login authenticator failed for H=([10.2.154.249]) [66.56.80.172]:35309: 535 Incorrect authentication data ([email protected]) 2026-03-23 08:17:41 dovecot_plain authenticator failed for H=([10.2.154.249]) [66.56.80.172]:48840: 535 Incorrect authentication data ([email protected]) 2026-03-23 08:17:43 dovecot_login authenticator failed for H=([10.2.154.249]) [66.56.80.172]:48840: 535 Incorrect authentication data ([email protected]) 2026-03-23 08:18:17 dovecot_plain authenticator failed for H=([10.2.154.249]) [66.56.80.172]:20487: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇮🇩 aaKenshin	2026-03-23 11:35:17 (2 months ago)	Suspicious activity detected from IP 66.56.80.172 based on mailserver logs. Sample logs: 2026-03-23 ... show more Suspicious activity detected from IP 66.56.80.172 based on mailserver logs. Sample logs: 2026-03-23 19:34:59,802 INFO [qtp1106043431-2402] [name=*@.id;ip=172.16.0.182;oip=66.56.80.172;oport=37509;oproto=smtp;port=41738;soapId=10c0fd0a;] soap - AuthRequest elapsed=3 2026-03-23 19:35:11,948 INFO [qtp1106043431-2429] [name=*@.id;ip=172.16.0.182;oip=66.56.80.172;oport=2053;oproto=smtp;port=42650;soapId=10c0fd0b;] SoapEngine - handler exception: authentication failed for [], LDAP error: - unable to ldap authenticate: invalid credentials 2026-03-23 19:35:11,948 INFO [qtp1106043431-2429] [name=@.id;ip=172.16.0.182;oip=66.56.80.172;oport=2053;oproto=smtp;port=42650;soapId=10c0fd0b;] soap - AuthRequest elapsed=3 2026-03-23 19:35:12,419 INFO [qtp1106043431-2420] [name=@.id;ip=172.16.0.182;oip=66.56.80.172;oport=2053;oproto=smtp;port=42652;soapId=10c0fd0c;] SoapEngine - handler exception: authentication failed for [**], LDAP error: - unable to ldap authenticate: invalid credenti show less	Brute-Force
🇰🇿 yuki	2026-03-18 20:41:03 (3 months ago)	Blocked by UFW on homeserver [60703/tcp] • SPT: 9572, TTL: 114, LEN: 52, TOS: 0x00, PREC: 0x20 • Rep ... show more Blocked by UFW on homeserver [60703/tcp] • SPT: 9572, TTL: 114, LEN: 52, TOS: 0x00, PREC: 0x20 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 asemen	2026-03-17 06:32:24 (3 months ago)	Mar 17 07:32:09 mbox postfix/submission/smtpd[1994267]: warning: unknown[66.56.80.172]: SASL PLAIN a ... show more Mar 17 07:32:09 mbox postfix/submission/smtpd[1994267]: warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: Mar 17 07:32:15 mbox postfix/submission/smtpd[1994267]: warning: unknown[66.56.80.172]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 17 07:32:23 mbox postfix/submission/smtpd[1994273]: warning: unknown[66.56.80.172]: SASL PLAIN authentication failed: ... show less	Port Scan Brute-Force SSH
Anonymous	2026-03-17 05:58:01 (3 months ago)	...	Brute-Force

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 205.189.160.62

🇧🇷 200.222.71.218

🇺🇸 162.216.149.58

🇮🇳 103.182.132.154

🇳🇱 91.92.40.6

🇺🇸 64.44.177.238

🇭🇰 47.76.130.55

🇵🇪 38.252.155.59

🇨🇦 38.96.254.71

🇺🇸 23.254.214.250

🇮🇳 20.244.18.126

🇳🇱 2a06:a880:5:67e0::1

🇰🇷 220.119.37.141

🇺🇸 207.90.244.19

🇺🇸 207.90.244.18

🇺🇸 205.210.31.83

🇲🇽 201.121.245.164

🇺🇸 172.245.197.44

🇩🇪 167.94.145.17

🇧🇪 109.128.8.22