JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.253.248.55

192.253.248.55 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 100%: ?

100%

ISP	Secure Internet LLC (UK)
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213790
Domain Name	btcloud.ro
Country	🇳🇱 Netherlands
City	Kerkrade, Limburg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.253.248.55

Whois 192.253.248.55

IP Abuse Reports for 192.253.248.55:

This IP address has been reported a total of 50 times from 25 distinct sources. 192.253.248.55 was first reported on May 14th 2026, and the most recent report was 18 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 diego	2026-06-29 23:29:02 (18 seconds ago)	[rede-top188] 06/29/2026-20:29:02.006655, 192.253.248.55, Protocol: 6, ET DROP Spamhaus DROP Listed ... show more [rede-top188] 06/29/2026-20:29:02.006655, 192.253.248.55, Protocol: 6, ET DROP Spamhaus DROP Listed Traffic Inbound group 44 show less	Hacking
🇯🇵 S.O.B.A. Dev.	2026-06-29 23:13:39 (15 minutes ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇩🇪 EinfxchFinn	2026-06-29 21:56:56 (1 hour ago)	Unauthorized connection attempt to port 25 from 192.253.248.55	Port Scan
🇳🇱 BIV	2026-06-29 20:12:05 (3 hours ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 25. Automated tiered ( ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 25. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇨🇭 SOC [GOLINE SA]	2026-06-29 20:00:07 (3 hours ago)	IDS Alert: ET DROP Spamhaus DROP Listed Traffic Inbound group 44 === ATTACK === Signature: ET DROP S ... show more IDS Alert: ET DROP Spamhaus DROP Listed Traffic Inbound group 44 === ATTACK === Signature: ET DROP Spamhaus DROP Listed Traffic Inbound group 44 \| SID: 2400043 \| Severity: 2 \| Category: Misc Attack === SOURCE === IP: 192.253.248.55 (IPv4) \| Port: 50948 \| Country: Iran \| ISP: PUREVPN \| rDNS: None === TARGET === Host: insightvm.goline.ch \| IP: 185.54.80.24 \| Port: 25 \| Protocol: TCP \| App: N/A === RESPONSE === Time: 2026-06-29 22:00:06 \| Action: Blocked show less	Exploited Host Hacking
🇸🇰 KSBA	2026-06-29 18:38:59 (4 hours ago)	Automatic report from KSBA firewall log.	Port Scan Hacking Brute-Force
🇨🇭 Elysium Security	2026-06-29 17:23:45 (6 hours ago)	Mass port scanning on a whole network	Port Scan
🇧🇬 HighWay	2026-06-29 01:26:11 (22 hours ago)	{"log":"Jun 29 04:26:00 ff8f19a01cd6 postfix/postscreen[26199]: NOQUEUE: reject: RCPT from [192.253. ... show more {"log":"Jun 29 04:26:00 ff8f19a01cd6 postfix/postscreen[26199]: NOQUEUE: reject: RCPT from [192.253.248.55]:60294: 550 5.7.1 Service unavailable; client [192.253.248.55] blocked using bl.mailspike.net; from=\[email protected]\u003e, to=\[email protected]\u003e, proto=SMTP, helo=\u003cvalidator.local\u003e\n","stream":"stdout","time":"2026-06-29T01:26:00.293260354Z"} {"log":"Jun 29 04:26:05 ff8f19a01cd6 postfix/postscreen[26199]: NOQUEUE: reject: RCPT from [192.253.248.55]:60346: 550 5.7.1 Service unavailable; client [192.253.248.55] blocked using bl.mailspike.net; from=\[email protected]\u003e, to=\[email protected]\u003e, proto=SMTP, helo=\u003cvalidator.local\u003e\n","stream":"stdout","time":"2026-06-29T01:26:05.769549558Z"} {"log":"Jun 29 04:26:11 ff8f19a01cd6 postfix/postscreen[26199]: NOQUEUE: reject: RCPT from [192.253.248.55]:60398: 550 5.7.1 Service unavailable; client [192.253.248.55] blocked using bl.mailspike.net; from=\u003ccheck@validat ... show less	Brute-Force
🇩🇪 mueller-nils.com	2026-06-28 01:20:15 (1 day ago)	Jun 28 03:09:49 [host] postfix/smtpd[28785]: warning: unknown[192.253.248.55]: SASL LOGIN authentica ... show more Jun 28 03:09:49 [host] postfix/smtpd[28785]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 03:12:27 [host] postfix/smtpd[28977]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 03:15:00 [host] postfix/smtpd[29223]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 03:17:17 [host] postfix/smtpd[29451]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 03:20:14 [host] postfix/smtpd[29804]: warning: unknown[192.253.248.55]: SASL LOGIN authentica show less	Hacking Brute-Force
🇩🇪 mueller-nils.com	2026-06-28 00:23:38 (1 day ago)	Jun 28 02:12:15 [host] postfix/smtpd[23123]: warning: unknown[192.253.248.55]: SASL LOGIN authentica ... show more Jun 28 02:12:15 [host] postfix/smtpd[23123]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 02:14:53 [host] postfix/smtpd[23337]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 02:17:19 [host] postfix/smtpd[23583]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 02:20:57 [host] postfix/smtpd[23919]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 02:23:38 [host] postfix/smtpd[24140]: warning: unknown[192.253.248.55]: SASL LOGIN authentica show less	Hacking Brute-Force
🇺🇸 pixelmemory.us	2026-06-27 23:25:56 (2 days ago)	2026-06-27T14:10:14.935994-07:00 pixelmemory auth[1733541]: pam_unix(dovecot:auth): authentication f ... show more 2026-06-27T14:10:14.935994-07:00 pixelmemory auth[1733541]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=192.253.248.55 2026-06-27T15:20:35.172865-07:00 pixelmemory auth[1738894]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=192.253.248.55 2026-06-27T15:36:24.001417-07:00 pixelmemory auth[1739739]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=192.253.248.55 2026-06-27T16:25:55.522717-07:00 pixelmemory auth[1743011]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot [email protected] rhost=192.253.248.55 ... show less	Brute-Force
🇩🇪 mueller-nils.com	2026-06-27 23:25:30 (2 days ago)	Jun 28 01:12:22 [host] postfix/smtpd[15654]: warning: unknown[192.253.248.55]: SASL LOGIN authentica ... show more Jun 28 01:12:22 [host] postfix/smtpd[15654]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 01:15:30 [host] postfix/smtpd[16039]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 01:19:00 [host] postfix/smtpd[16288]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 01:22:21 [host] postfix/smtpd[16576]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 01:25:29 [host] postfix/smtpd[16732]: warning: unknown[192.253.248.55]: SASL LOGIN authentica show less	Hacking Brute-Force
🇩🇪 mueller-nils.com	2026-06-27 22:25:23 (2 days ago)	Jun 28 00:13:03 [host] postfix/smtpd[9012]: warning: unknown[192.253.248.55]: SASL LOGIN authenticat ... show more Jun 28 00:13:03 [host] postfix/smtpd[9012]: warning: unknown[192.253.248.55]: SASL LOGIN authenticat Jun 28 00:16:10 [host] postfix/smtpd[9369]: warning: unknown[192.253.248.55]: SASL LOGIN authenticat Jun 28 00:19:56 [host] postfix/smtpd[9901]: warning: unknown[192.253.248.55]: SASL LOGIN authenticat Jun 28 00:22:40 [host] postfix/smtpd[10168]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 28 00:25:23 [host] postfix/smtpd[10417]: warning: unknown[192.253.248.55]: SASL LOGIN authentica show less	Hacking Brute-Force
🇩🇪 mueller-nils.com	2026-06-27 21:25:57 (2 days ago)	Jun 27 23:15:29 [host] postfix/smtpd[14251]: warning: unknown[192.253.248.55]: SASL LOGIN authentica ... show more Jun 27 23:15:29 [host] postfix/smtpd[14251]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 27 23:19:02 [host] postfix/smtpd[14583]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 27 23:21:35 [host] postfix/smtpd[14816]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 27 23:24:12 [host] postfix/smtpd[15072]: warning: unknown[192.253.248.55]: SASL LOGIN authentica Jun 27 23:25:56 [host] postfix/smtpd[15290]: warning: unknown[192.253.248.55]: SASL LOGIN authentica show less	Hacking Brute-Force
Anonymous	2026-06-27 18:17:17 (2 days ago)	2026-06-27T20:17:15.819035 biopolis.pcconsultant.it postfix/smtpd[3210006]: warning: unknown[192.253 ... show more 2026-06-27T20:17:15.819035 biopolis.pcconsultant.it postfix/smtpd[3210006]: warning: unknown[192.253.248.55]: SASL LOGIN authentication failed: authentication failure, [email protected] ... show less	Brute-Force

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.245.36.214

🇮🇳 182.70.243.207

🇱🇹 91.224.92.17

🇵🇱 83.168.69.200

🇩🇪 69.5.169.148

🇮🇳 165.232.191.33

🇦🇷 138.36.221.184

🇨🇳 116.30.100.37

🇭🇰 103.243.26.174

🇫🇷 91.231.89.129

🇺🇸 50.2.50.10

🇳🇱 45.148.10.157

🇬🇧 35.203.210.132

🇬🇧 5.226.140.14

🇳🇱 195.178.110.228

🇺🇸 157.55.39.204

🇻🇳 116.96.44.56

🇨🇳 111.229.89.108

🇳🇱 91.92.40.4

🇹🇼 114.35.59.237