JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 80.66.76.31

80.66.76.31 was found in our database!

This IP was reported 423 times. Confidence of Abuse is 100%: ?

100%

ISP	Gening Nikita Dmitrievich
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213010
Domain Name	net-host.online
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 80.66.76.31

Whois 80.66.76.31

IP Abuse Reports for 80.66.76.31:

This IP address has been reported a total of 423 times from 106 distinct sources. 80.66.76.31 was first reported on September 4th 2021, and the most recent report was 23 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 phil2k	2026-06-06 09:30:37 (23 minutes ago)	Firewall: Within 2026-06-01 23:27:41 - 2026-06-03 13:40:18 CEST(+0200) identified: port scan from 80 ... show more Firewall: Within 2026-06-01 23:27:41 - 2026-06-03 13:40:18 CEST(+0200) identified: port scan from 80.66.76.31 on uncommon port/s: 9540(tcp:9540),1541(tcp:1541),2541(tcp:2541),1540(tcp:1540),7540(tcp:7540),2540(tcp:2540),6540(tcp:6540),4540(tcp:4540),8540(tcp:8540),3540(tcp:3540) (10 trials) Fail2ban: Within 2026-06-01 23:27:41 - 2026-06-03 13:40:18 CEST(+0200) banned: 19 times by fail2ban[firewall]; 19 times by fail2ban[recidive] show less	Port Scan
🇲🇹 neilcaruana	2026-06-06 06:40:36 (3 hours ago)	Sentinel detected an attack on port [2540]	Hacking
🇬🇧 andypiper	2026-06-06 01:01:33 (8 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇬🇧 gbzret4d	2026-06-06 00:57:54 (8 hours ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 4540 [5], 1540 [5], 9540 [5], 2540 ... show more Honeypot [uk-production01]: Empty payload (likely service probe); 4540 [5], 1540 [5], 9540 [5], 2540 [5], 3540 [5], 6540 [5] TCP show less	Port Scan
🇯🇵 mkaraki	2026-06-06 00:14:00 (9 hours ago)	1780704839 # Service_probe # SIGNATURE_SEND # source_ip:80.66.76.31 # dst_port:1541 ...	Port Scan
🇩🇪 EnthecSolutions	2026-06-05 22:01:06 (11 hours ago)	Detected by Enthec Solutions. \| Attempts: 55 in 24h \| Target port: 1540	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-05 17:29:36 (16 hours ago)	Honeypot hit: Empty payload (likely service probe); 1541 [5], 3540 [5], 1540 [5], 9540 [5], 8540 [5] ... show more Honeypot hit: Empty payload (likely service probe); 1541 [5], 3540 [5], 1540 [5], 9540 [5], 8540 [5], 6540 [5] TCP show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-05 16:15:47 (17 hours ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2540 [5], 5540 [5], 6540 [5], 7540 ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2540 [5], 5540 [5], 6540 [5], 7540 [5], 1541 [5], 8540 [5] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇪🇸 librebit	2026-06-05 06:08:31 (1 day ago)	Brute force	Brute-Force
🇩🇪 excill	2026-06-05 03:08:31 (1 day ago)	Honeypot mesh observed 897 attack events in 24h — cowrie/dionaea/heralding/suricata	Port Scan Hacking Brute-Force SSH
🇧🇾 StatsMe	2026-06-04 21:30:07 (1 day ago)	2026-06-04T02:55:57.887637+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇩🇪 psauxit	2026-06-04 15:58:05 (1 day ago)	Fail2Ban - UFW port probing on unauthorized port	Port Scan
🇩🇪 EnthecSolutions	2026-06-04 14:01:05 (1 day ago)	Detected by Enthec Solutions. \| Attempts: 55 in 24h \| Target port: 1540	Port Scan Hacking
🇺🇸 MPL	2026-06-04 05:58:10 (2 days ago)	tcp ports: 1541,2540 (5 or more attempts)	Port Scan
🇩🇪 bescared	2026-06-04 05:18:09 (2 days ago)	F2B - Malicious activity detected. Excessive port scans. -151302cd-	Port Scan

Showing 1 to 15 of 423 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇪 197.248.207.183

🇧🇷 189.41.247.33

🇲🇽 187.212.10.12

🇪🇪 165.231.159.240

🇸🇬 162.158.170.37

🇮🇳 152.52.246.178

🇨🇳 125.124.226.217

🇩🇪 84.32.10.175

🇺🇸 54.193.110.49

🇺🇸 45.156.129.70

🇮🇷 2.180.32.104

🇳🇱 193.176.31.215

🇷🇺 188.233.117.151

🇹🇷 185.226.93.242

🇳🇱 176.65.148.176

🇺🇸 172.56.40.76

🇹🇷 95.70.247.105

🇿🇼 74.244.195.185

🇳🇱 46.151.178.13

🇺🇸 18.220.95.243