JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.253.248.180

192.253.248.180 was found in our database!

This IP was reported 2,232 times. Confidence of Abuse is 100%: ?

100%

ISP	Secure Internet LLC (UK)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213790
Domain Name	btcloud.ro
Country	🇳🇱 Netherlands
City	Kerkrade, Limburg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.253.248.180

Whois 192.253.248.180

IP Abuse Reports for 192.253.248.180:

This IP address has been reported a total of 2,232 times from 265 distinct sources. 192.253.248.180 was first reported on March 22nd 2026, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 drewf.ink	2026-06-01 11:07:07 (2 days ago)	[11:07] Port scanning. Port(s) scanned: TCP/5000	Port Scan
🇩🇪 Axel	2026-06-01 11:01:48 (2 days ago)	[2026-06-01 11:01:48 UTC] Honeypot Flask connection attempt \| AXFRA HONEYPOT	Web App Attack
🇪🇸 el-brujo	2026-06-01 11:00:30 (2 days ago)	06/01/2026-13:00:30.235834 192.253.248.180 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound ... show more 06/01/2026-13:00:30.235834 192.253.248.180 Protocol: 6 ET DROP Spamhaus DROP Listed Traffic Inbound group 42 show less	Hacking
🇵🇱 axiomofchoice.xyz	2026-06-01 10:53:04 (2 days ago)	endlessh trap: attempts=2 total_time_stuck=40.042s	Port Scan SSH Hacking
Anonymous	2026-06-01 10:50:56 (2 days ago)	Malicious Probing/Bad Request	Bad Web Bot
🇦🇺 dyln	2026-06-01 10:43:52 (2 days ago)	Dyls honeypot brute-force: proto8 (2 total hits)	Brute-Force
🇺🇸 drewf.ink	2026-06-01 10:43:38 (2 days ago)	[10:43] Port scanning. Port(s) scanned: TCP/8888	Port Scan
🇩🇪 Axel	2026-06-01 10:33:10 (2 days ago)	[2026-06-01 10:33:10 UTC] Honeypot Web Admin connection attempt \| AXFRA HONEYPOT	Web App Attack
🇸🇬 WMK965	2026-06-01 10:31:52 (2 days ago)	192.253.248.180 - - [01/Jun/2026:15:27:37 +0800] "\x03\x00\x00/\xE0\x00\x00\x00\x00\x00Cookie: msts ... show more 192.253.248.180 - - [01/Jun/2026:15:27:37 +0800] "\x03\x00\x00/\xE0\x00\x00\x00\x00\x00Cookie: mstshash=Administr" 400 154 "-" "-" "-" 192.253.248.180 - - [01/Jun/2026:16:02:51 +0800] "\x03\x00\x00/\xE0\x00\x00\x00\x00\x00Cookie: mstshash=Administr" 400 154 "-" "-" "-" 192.253.248.180 - - [01/Jun/2026:18:31:51 +0800] "\x03\x00\x00/\xE0\x00\x00\x00\x00\x00Cookie: mstshash=Administr" 400 154 "-" "-" "-" show less	Port Scan Web App Attack
🇩🇪 pigro	2026-06-01 10:19:34 (2 days ago)	192.253.248.180 - - [01/Jun/2026:12:19:33 +0200] "\x03\x00\x00/\xE0\x00\x00\x00\x00\x00Cookie: msts ... show more 192.253.248.180 - - [01/Jun/2026:12:19:33 +0200] "\x03\x00\x00/\xE0\x00\x00\x00\x00\x00Cookie: mstshash=Administr" 400 157 "-" "-" ... show less	Web App Attack
🇫🇷 Soncraft	2026-06-01 10:16:43 (2 days ago)	Blocked by UFW on Jellyfin [30003/tcp] Source port: 61974 TTL: 119 Packet length: 87 TOS: 0x08 This ... show more Blocked by UFW on Jellyfin [30003/tcp] Source port: 61974 TTL: 119 Packet length: 87 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-01 10:10:15 (2 days ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇸🇬 drewf.ink	2026-06-01 10:03:43 (2 days ago)	[10:03] Port scanning. Port(s) scanned: TCP/8888, TCP/82	Port Scan
🇭🇰 sandra361	2026-06-01 10:00:02 (2 days ago)	Port scan detected: 9 attempts across 2 ports (443,80). \| Evidence: GHOST_SCAN:IN=eth0 OUT= SRC=192. ... show more Port scan detected: 9 attempts across 2 ports (443,80). \| Evidence: GHOST_SCAN:IN=eth0 OUT= SRC=192.253.248.180 LEN=52 TOS=0x14 PREC=0x00 TTL=113 ID=19836 DF PROTO=TCP SPT=62775 DPT=80 WINDOW=200 RES=0x00 CWR ECE SYN URGP=0 show less	Port Scan
Anonymous	2026-06-01 09:52:14 (2 days ago)	Reported from Nginx log analysis 6. Log: 192.253.248.180 - - [01/Jun/2026:xx:xx:xx 0200] "\x03\x00\ ... show more Reported from Nginx log analysis 6. Log: 192.253.248.180 - - [01/Jun/2026:xx:xx:xx 0200] "\x03\x00\x00/*\xE0\x00\x00\x00\x00\x00Cookie: mstshash=Administr" xxx xxx "-" "-" "-" "IR Iran -" "AS213790" "Limited Network LTD" show less	Port Scan Brute-Force SSH

Showing 61 to 75 of 2232 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.3.53.8

🇺🇸 185.255.100.250

🇨🇳 153.37.227.44

🇮🇳 122.187.230.162

🇫🇷 88.138.20.172

🇲🇾 47.250.155.223

🇳🇱 45.148.10.121

🇨🇳 27.18.68.250

🇳🇱 213.177.179.127

🇧🇷 200.165.15.78

🇬🇧 185.247.137.196

🇺🇸 167.172.223.199

🇫🇮 147.185.133.225

🇰🇷 121.66.124.147

🇸🇬 121.6.81.59

🇨🇳 117.80.152.104

🇷🇺 94.25.40.30

🇨🇳 61.146.129.133

🇫🇮 45.154.244.2

🇮🇳 36.50.167.81