JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.253.160.148

185.253.160.148 was found in our database!

This IP was reported 244 times. Confidence of Abuse is 11%: ?

11%

ISP	M247 LTD Armenia Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	m247.com
Country	🇧🇬 Bulgaria
City	Sofia, Sofia-Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.253.160.148

Whois 185.253.160.148

IP Abuse Reports for 185.253.160.148:

This IP address has been reported a total of 244 times from 113 distinct sources. 185.253.160.148 was first reported on November 9th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-10 20:31:41 (1 week ago)	6 incidents: malicious activity. First: 2026-05-27 14:31, Last: 2026-06-10 16:31 UTC. Triggers: ufw- ... show more 6 incidents: malicious activity. First: 2026-05-27 14:31, Last: 2026-06-10 16:31 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-20 17:33:20 (4 weeks ago)	4 incidents: malicious activity. First: 2026-05-13 12:32, Last: 2026-05-20 13:33 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-05-13 12:32, Last: 2026-05-20 13:33 UTC. Triggers: ufw-repeater. show less	Port Scan
🇧🇷 diego	2026-05-14 00:05:35 (1 month ago)	[rede-164-29] Port Scan detected from 185.253.160.148 (AM/Armenia/-). 11 hits in the last 181 seco ... show more [rede-164-29] Port Scan detected from 185.253.160.148 (AM/Armenia/-). 11 hits in the last 181 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: May 13 21:02:41 kernel: [7911802.463957] Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.253.160.148 DST=0.0.0.x LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=34931 DF PROTO=TCP SPT=30855 DPT=51087 WINDOW=64860 RES=0x00 SYN URGP=0 May 13 21:02:42 kernel: [7911803.461049] Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=185.253.160.148 DST=0.0.0.x LEN=52 TOS=0x00 PREC=0x00 TTL=118 ID=34932 DF PROTO=TCP SPT=30 show less	Port Scan
🇺🇸 micropedro	2026-05-06 15:33:56 (1 month ago)	3 incidents: malicious activity. First: 2026-04-29 10:36, Last: 2026-05-06 11:33 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-04-29 10:36, Last: 2026-05-06 11:33 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-04-15 12:36:11 (2 months ago)	5 incidents: malicious activity. First: 2026-04-01 06:51, Last: 2026-04-15 08:36 UTC. Triggers: ufw- ... show more 5 incidents: malicious activity. First: 2026-04-01 06:51, Last: 2026-04-15 08:36 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-03-26 14:07:42 (2 months ago)	3 incidents: malicious activity. First: 2026-03-13 19:34, Last: 2026-03-26 10:07 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-03-13 19:34, Last: 2026-03-26 10:07 UTC. Triggers: ufw-repeater. show less	Port Scan
🇦🇹 Pingger Shikkoken	2026-03-04 06:25:34 (3 months ago)	2026-03-04T06:25:34+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC ... show more 2026-03-04T06:25:34+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.253.160.148 DST=10.1.1.2 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=60729 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 2026-03-04T06:25:38+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.253.160.148 DST=10.1.1.2 LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=0 DF PROTO=TCP SPT=60729 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 2026-03-04T06:25:38+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT=ServerBridge MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.253.160.148 DST=10.1.1.11 LEN=60 TOS=0x00 PREC=0x00 TTL=45 ID=0 DF PROTO=TCP SPT=53756 DPT=8080 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Hacking Bad Web Bot Port Scan Brute-Force Email Spam
🇪🇸 librebit	2026-03-04 04:20:57 (3 months ago)	Brute force	Brute-Force
🇩🇪 Roper123	2026-03-03 02:18:45 (3 months ago)	Unauthorized DNS request	Brute-Force
🇫🇷 pm33	2026-03-02 22:03:27 (3 months ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇪🇸 librebit	2026-03-02 03:01:13 (3 months ago)	Brute force	Brute-Force
🇫🇷 ✨	2026-03-02 02:16:13 (3 months ago)	Rule : FTP 2026-03-02 02:09:38 185.253.160.148 - *hidden-privacy* 21 NOOP - 530 776 0 65 6 0 2c6 ... show more Rule : FTP 2026-03-02 02:09:38 185.253.160.148 - *hidden-privacy* 21 NOOP - 530 776 0 65 6 0 2c6f79a2-f1b5-4913-927e-fffc094b4963 - show less	FTP Brute-Force
Anonymous	2026-03-01 05:36:38 (3 months ago)	2026-03-01T06:36:37.361496+01:00 rendez-vous dovecot[899]: imap-login: Disconnected: Connection clos ... show more 2026-03-01T06:36:37.361496+01:00 rendez-vous dovecot[899]: imap-login: Disconnected: Connection closed (no auth attempts in 2 secs): user=<>, rip=185.253.160.148, lip=*, session=<M6Se2u9LJKW5/aCU> show less	Brute-Force
🇮🇳 Mr.Singh	2026-02-28 18:30:15 (3 months ago)	NFT blocked 185.253.160.148 on 01-Mar-2026..	Port Scan Brute-Force
🇬🇧 OptimusGO	2026-02-28 10:51:45 (3 months ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-02-28 10:51:45 UTC Log evidence: 02/28/2026-10:49:59.267802 [] [1:1000101:2] SECURITY Port Scan Detected - Multiple Unauthorized Ports [] [Classification: Attempted Information Leak] [Priority: 1] {TCP} 185.253.160.148:56993 -> 185.127.18.66:6081 show less	Port Scan Brute-Force

Showing 1 to 15 of 244 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇶🇦 178.153.202.174

🇺🇸 91.230.168.189

🇩🇪 82.24.197.203

🇺🇸 216.25.89.137

🇧🇷 201.59.49.106

🇨🇳 183.66.166.30

🇺🇸 162.216.149.65

🇺🇸 137.184.228.138

🇭🇰 103.149.26.230

🇳🇱 45.148.10.147

🇯🇵 43.153.185.56

🇺🇸 35.131.121.154

🇺🇸 2a04:c300:400::1ec

🇺🇸 162.216.149.167

🇭🇰 152.32.189.59

🇯🇵 103.163.220.9

🇿🇲 102.220.158.204

🇮🇪 34.244.132.46

🇳🇱 176.65.148.228

🇻🇳 116.99.173.91