JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 181.214.189.248

181.214.189.248 was found in our database!

This IP was reported 1,197 times. Confidence of Abuse is 0%: ?

ISP	FEELB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS207992
Domain Name	feelb.io
Country	🇫🇷 France
City	Lyon, Rhone-Alpes

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 181.214.189.248

Whois 181.214.189.248

IP Abuse Reports for 181.214.189.248:

This IP address has been reported a total of 1,197 times from 441 distinct sources. 181.214.189.248 was first reported on August 8th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 QSC-Sentinel	2026-05-20 20:50:23 (1 month ago)	Banned by fail2ban jail sshd on etlab-research	Brute-Force SSH
🇵🇹 dnigamer	2025-11-10 00:00:00 (7 months ago)	[Fail2Ban] SSH brute force ban from 181.214.189.248	Brute-Force
🇩🇪 sh97	2025-10-11 09:45:30 (8 months ago)	DE02-HBRR-STOR: SSH Brute Force from 181.214.189.248 at 2025-10-11 15:15:29 IST	Brute-Force SSH
🇮🇳 92kmees	2025-10-07 19:18:05 (8 months ago)	Fail2Ban ban from SSH jail	Brute-Force SSH
🇹🇷 rtbh.com.tr	2025-10-04 20:09:10 (8 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-10-03 20:09:09 (8 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇮🇳 Parth Maniar	2025-10-03 15:33:15 (8 months ago)	This IP address carried out 148 port scanning attempts on 02-10-2025. For more information or to rep ... show more This IP address carried out 148 port scanning attempts on 02-10-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2025-10-03 11:39:26 (8 months ago)	This IP address carried out 37 SSH credential attack (attempts) on 02-10-2025. For more information ... show more This IP address carried out 37 SSH credential attack (attempts) on 02-10-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇹🇷 rtbh.com.tr	2025-10-02 20:09:08 (8 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 bigscoots.com	2025-10-02 16:14:01 (8 months ago)	(sshd) Failed SSH login from 181.214.189.248 (FR/France/-): 5 in the last 3600 secs; Ports: ; Direc ... show more (sshd) Failed SSH login from 181.214.189.248 (FR/France/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Oct 2 11:10:47 1319 sshd[23910]: Invalid user superadmin from 181.214.189.248 port 50272 Oct 2 11:10:49 1319 sshd[23910]: Failed password for invalid user superadmin from 181.214.189.248 port 50272 ssh2 Oct 2 11:12:18 1319 sshd[24186]: Invalid user platform from 181.214.189.248 port 41144 Oct 2 11:12:20 1319 sshd[24186]: Failed password for invalid user platform from 181.214.189.248 port 41144 ssh2 Oct 2 11:13:43 1319 sshd[24379]: Invalid user foundry from 181.214.189.248 port 41658 show less	Brute-Force SSH
🇯🇵 paradoxnetworks	2025-10-02 16:11:30 (8 months ago)	2025-10-02T16:08:45.558776+00:00 edge-tyo-con01.int.pdx.net.uk sshd[287771]: pam_unix(sshd:auth): au ... show more 2025-10-02T16:08:45.558776+00:00 edge-tyo-con01.int.pdx.net.uk sshd[287771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.214.189.248 2025-10-02T16:08:47.217194+00:00 edge-tyo-con01.int.pdx.net.uk sshd[287771]: Failed password for invalid user superadmin from 181.214.189.248 port 45550 ssh2 2025-10-02T16:11:29.927894+00:00 edge-tyo-con01.int.pdx.net.uk sshd[288456]: Invalid user platform from 181.214.189.248 port 42556 ... show less	Brute-Force SSH
🇯🇵 kipfel★	2025-10-02 15:06:46 (8 months ago)	2025-10-03T00:03:08.274220+09:00 hh-vm-cm24-16g-nrt sshd[3849001]: Invalid user juliana from 181.214 ... show more 2025-10-03T00:03:08.274220+09:00 hh-vm-cm24-16g-nrt sshd[3849001]: Invalid user juliana from 181.214.189.248 port 38870 2025-10-03T00:04:56.730954+09:00 hh-vm-cm24-16g-nrt sshd[3850695]: Invalid user sandra from 181.214.189.248 port 50376 2025-10-03T00:06:46.187833+09:00 hh-vm-cm24-16g-nrt sshd[3852485]: Invalid user satisfactory from 181.214.189.248 port 56870 ... show less	Brute-Force SSH
🇮🇹 VHosting	2025-10-02 15:05:06 (8 months ago)	Detected SSH brute force attack from 3 different servers	Brute-Force SSH
🇺🇸 bigscoots.com	2025-10-02 15:02:40 (8 months ago)	181.214.189.248 (FR/France/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; P ... show more 181.214.189.248 (FR/France/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Oct 2 09:59:36 17271 sshd[16632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.214.189.248 user=root Oct 2 09:58:43 17271 sshd[16557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.226.139.143 user=root Oct 2 09:58:44 17271 sshd[16557]: Failed password for root from 103.226.139.143 port 43316 ssh2 Oct 2 10:02:35 17271 sshd[16887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.244.130 user=root Oct 2 09:59:38 17271 sshd[16632]: Failed password for root from 181.214.189.248 port 49686 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
Anonymous	2025-10-02 15:02:02 (8 months ago)	Oct 2 14:58:58 f2b auth.info sshd[185738]: Failed password for root from 181.214.189.248 port 37862 ... show more Oct 2 14:58:58 f2b auth.info sshd[185738]: Failed password for root from 181.214.189.248 port 37862 ssh2 Oct 2 15:02:01 f2b auth.info sshd[185754]: Invalid user juliana from 181.214.189.248 port 40468 Oct 2 15:02:01 f2b auth.info sshd[185754]: Failed password for invalid user juliana from 181.214.189.248 port 40468 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 1197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 95.164.158.225

🇺🇸 95.164.158.143

🇱🇻 81.30.98.144

🇩🇪 69.5.169.174

🇫🇮 62.60.152.192

🇺🇸 45.56.72.13

🇸🇪 188.151.160.50

🇨🇳 183.14.30.59

🇨🇳 120.48.175.122

🇺🇸 95.164.158.102

🇺🇸 95.164.157.217

🇺🇸 95.164.157.95

🇺🇸 93.177.119.252

🇷🇺 81.177.101.45

🇮🇷 77.104.92.222

🇨🇭 35.216.254.237

🇨🇳 27.19.204.76

🇺🇸 23.105.151.33

🇭🇰 199.45.155.77

🇷🇺 195.88.120.62