JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.56.81.142

66.56.81.142 was found in our database!

This IP was reported 49 times. Confidence of Abuse is 22%: ?

22%

ISP	VPN Consumer Toronto, Canada
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	vpnconsumer.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.56.81.142

Whois 66.56.81.142

IP Abuse Reports for 66.56.81.142:

This IP address has been reported a total of 49 times from 23 distinct sources. 66.56.81.142 was first reported on July 8th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 maximonline.co.za	2026-04-21 03:50:03 (1 month ago)	Brute Force SMTP AUTH Attack	Brute-Force
🇺🇸 bigscoots.com	2026-04-21 03:42:58 (1 month ago)	(smtpauth) Failed SMTP AUTH login from 66.56.81.142 (CA/Canada/-): 5 in the last 3600 secs; Ports: 2 ... show more (smtpauth) Failed SMTP AUTH login from 66.56.81.142 (CA/Canada/-): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2026-04-20 23:42:29 dovecot_plain authenticator failed for H=([10.13.18.58]) [66.56.81.142]:21424: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:42:35 dovecot_login authenticator failed for H=([10.13.18.58]) [66.56.81.142]:21424: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:42:41 dovecot_plain authenticator failed for H=([10.13.18.58]) [66.56.81.142]:59082: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:42:47 dovecot_login authenticator failed for H=([10.13.18.58]) [66.56.81.142]:59082: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:42:55 dovecot_plain authenticator failed for H=([10.13.18.58]) [66.56.81.142]:11705: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇨🇿 lp	2026-04-21 03:19:52 (1 month ago)	Email account brute force: 4 attempts were recorded from 66.56.81.142 2026-04-21T04:55:36+02:00 warn ... show more Email account brute force: 4 attempts were recorded from 66.56.81.142 2026-04-21T04:55:36+02:00 warning: unknown[66.56.81.142]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-04-21T04:55:36+02:00 warning: unknown[66.56.81.142]: SASL LOGIN authentication failed: authentication failure, [email protected] 2026-04-21T04:55:37+02:00 warning: unknown[66.56.81.142]: SASL PLAIN authentication failed: authentication failure, [email protected] 2026-04-21T04:55:38+02:00 warning: unknown[66.56.81.142]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Brute-Force
Anonymous	2026-04-21 02:57:02 (1 month ago)	...	Brute-Force
🇧🇷 SvrAdmin	2026-04-21 02:50:13 (1 month ago)	[101] (smtpauth) Failed SMTP AUTH login from 66.56.81.142 (CA/Canada/-): 5 in the last 3600 secs; Po ... show more [101] (smtpauth) Failed SMTP AUTH login from 66.56.81.142 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-04-20 23:49:44 dovecot_plain authenticator failed for H=([10.13.18.58]) [66.56.81.142]:24406: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:49:50 dovecot_login authenticator failed for H=([10.13.18.58]) [66.56.81.142]:24406: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:49:57 dovecot_plain authenticator failed for H=([10.13.18.58]) [66.56.81.142]:38618: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:49:59 dovecot_login authenticator failed for H=([10.13.18.58]) [66.56.81.142]:38618: 535 Incorrect authentication data ([email protected]) 2026-04-20 23:50:09 dovecot_plain authenticator failed for H=([10.13.18.58]) [66.56.81.142]:41587: 535 Incorrect authentication data ([email protected]) show less	Port Scan Hacking Brute-Force Exploited Host
🇧🇷 hostseries	2026-04-17 16:51:48 (1 month ago)	Trigger: LF_SMTPAUTH	Brute-Force
🇺🇸 masterguru	2026-04-17 16:09:38 (1 month ago)	(smtpauth) Failed SMTP AUTH login from 66.56.81.142 (CA/Canada/-): 5 in the last 3600 secs (0-169)	Brute-Force
🇮🇹 VHosting	2026-04-15 20:02:43 (1 month ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇫🇷 Dorian GRANDHAY	2026-04-15 19:32:55 (1 month ago)	66.56.81.142 (CA/Canada/-), 5 distributed smtpauth attacks on account [[email protected]] in the last ... show more 66.56.81.142 (CA/Canada/-), 5 distributed smtpauth attacks on account [[email protected]] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: 2026-04-15 21:18:12 dovecot_plain authenticator failed for H=(fraring) [213.33.209.197]:35474: 535 Incorrect authentication data ([email protected]) 2026-04-15 21:32:48 dovecot_plain authenticator failed for H=([10.13.18.91]) [66.56.81.142]:2626: 535 Incorrect authentication data ([email protected]) 2026-04-15 21:32:42 dovecot_login authenticator failed for H=([10.13.18.91]) [66.56.81.142]:51819: 535 Incorrect authentication data ([email protected]) 2026-04-15 21:32:54 dovecot_login authenticator failed for H=([10.13.18.91]) [66.56.81.142]:2626: 535 Incorrect authentication data ([email protected]) 2026-04-15 21:32:36 dovecot_plain authenticator failed for H=([10.13.18.91]) [66.56.81.142]:51819: 535 Incorrect authentication data ([email protected]) IP Addresses Blocked: 213.33.209.197 (RU/Russia/-) show less	Port Scan
🇹🇷 rtbh.com.tr	2026-03-19 20:12:09 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-03-18 20:12:08 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 agenciahypelab.com.br	2026-03-17 18:27:10 (2 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇮🇩 aaKenshin	2026-03-17 15:58:36 (2 months ago)	Suspicious activity detected from IP 66.56.81.142 based on mailserver logs. Sample logs: 2026-03-17 ... show more Suspicious activity detected from IP 66.56.81.142 based on mailserver logs. Sample logs: 2026-03-17 23:58:13,658 INFO [qtp2102534528-154669] [name=*@.id;ip=172.16.0.182;oip=66.56.81.142;oport=58181;oproto=smtp;port=51578;soapId=2e7979ca;] soap - AuthRequest elapsed=3 2026-03-17 23:58:25,201 INFO [qtp2102534528-154687] [name=*@.id;ip=172.16.0.182;oip=66.56.81.142;oport=16189;oproto=smtp;port=58850;soapId=2e7979cb;] SoapEngine - handler exception: authentication failed for [], LDAP error: - unable to ldap authenticate: invalid credentials 2026-03-17 23:58:25,201 INFO [qtp2102534528-154687] [name=@.id;ip=172.16.0.182;oip=66.56.81.142;oport=16189;oproto=smtp;port=58850;soapId=2e7979cb;] soap - AuthRequest elapsed=1 2026-03-17 23:58:25,670 INFO [qtp2102534528-154651] [name=@.id;ip=172.16.0.182;oip=66.56.81.142;oport=16189;oproto=smtp;port=58866;soapId=2e7979cc;] SoapEngine - handler exception: authentication failed for [**], LDAP error: - unable to ldap authenticate: inval show less	Brute-Force
Anonymous	2026-03-08 00:05:40 (3 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-03-02 22:45:08 (3 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking

Showing 1 to 15 of 49 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.136

🇺🇸 172.105.147.126

🇺🇸 150.107.36.236

🇺🇸 135.119.96.68

🇨🇳 110.87.174.200

🇺🇸 107.150.97.147

🇨🇦 85.217.149.32

🇨🇦 85.217.149.4

🇳🇱 64.89.162.27

🇸🇬 43.156.82.40

🇨🇳 221.130.29.85

🇹🇼 221.120.74.68

🇩🇪 209.50.182.17

🇲🇽 201.149.53.243

🇳🇱 185.226.197.15

🇨🇳 123.233.238.128

🇵🇭 103.235.95.185

🇮🇳 103.38.219.22

🇳🇱 91.92.40.16

🇺🇸 71.6.134.234