JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.239.154.182

193.239.154.182 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 17%: ?

17%

ISP	HDTIDC LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136038
Domain Name	f57.net
Country	🇭🇰 Hong Kong
City	Tung Chung, Islands

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.239.154.182

Whois 193.239.154.182

IP Abuse Reports for 193.239.154.182:

This IP address has been reported a total of 9 times from 8 distinct sources. 193.239.154.182 was first reported on August 30th 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 filstal.org	2026-06-08 00:36:02 (9 hours ago)	CrowdSec: crowdsecurity/postfix-relay-denied	Email Spam Brute-Force
🇯🇵 hirajo	2026-05-28 14:08:34 (1 week ago)	Source of spoofed email forging From: @atsoho.com domain. Observed via aggregated DMARC RUA reports. ... show more Source of spoofed email forging From: @atsoho.com domain. Observed via aggregated DMARC RUA reports. Between 2026-05-13 and 2026-05-17, this IP and 250+ neighbors in 193.239.154.0/24 (AS136038 HDTIDC LIMITED / AS136526 ALLCLOUD LIMITED) sent over 11,000 spoofed emails forging the From header as our domain "atsoho.com". All messages fail SPF and DKIM authentication against atsoho.com (DMARC enforced: p=quarantine). Legitimate atsoho.com mail is sent exclusively from Google Workspace, SocketLabs, and XServer. Reporting receivers (sample): Mail.Ru, Microsoft (Enterprise Outlook), seznam.cz, JCOM, au.com, Yahoo, GMO Pepabo, GMO Internet. WHOIS abuse-mailbox ([email protected]) is non-functional (550 5.1.1 rejection). APNIC and RIPE NCC have been notified of the invalid abuse contact. show less	Phishing Email Spam Spoofing
🇺🇸 AWSGIEMSAN7	2026-05-21 01:37:38 (2 weeks ago)	2026-05-20T20:37:35.721530 mail.compusimple.com postfix/smtpd[461914]: NOQUEUE: reject: RCPT from un ... show more 2026-05-20T20:37:35.721530 mail.compusimple.com postfix/smtpd[461914]: NOQUEUE: reject: RCPT from unknown[193.239.154.182]: 554 5.7.1 Service unavailable; Client host [193.239.154.182] blocked using Abusix Mail Intelligence; https://lookup.abusix.com/search?q=193.239.154.182; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<mx39087-miyagi703.miyagi.itscom.jp> ... show less	Email Spam
🇸🇮 dsmidge	2025-12-05 19:45:23 (6 months ago)	Dec 5 20:45:22 server postfix/smtpd[2524459]: connect from unknown[193.239.154.182] Dec 5 20:45:23 ... show more Dec 5 20:45:22 server postfix/smtpd[2524459]: connect from unknown[193.239.154.182] Dec 5 20:45:23 server postfix/smtpd[2524459]: NOQUEUE: reject: RCPT from unknown[193.239.154.182]: 554 5.7.1 Service unavailable; Client host [193.239.154.182] blocked using zen.spamhaus.org; Listed by DROP, see https://check.spamhaus.org/sbl/query/SBL520298 / Listed by CSS, see https://check.spamhaus.org/query/ip/193.239.154.182 / Listed by XBL, see https://check.spamhaus.org/query/ip/193.239.154.182 / Listed by SBL, see https://check.spamhaus.org/sbl/query/SBL520298; from=<> to=<[email protected]> proto=ESMTP helo=<C202512051846632.local> ... show less	Email Spam
🇯🇵 C'Mell	2025-12-01 16:53:01 (6 months ago)	SMTP; spoofed sender address: APPLE.	Phishing Spoofing
Anonymous	2025-11-22 10:56:49 (6 months ago)	b70088e spam	DDoS Attack Email Spam Exploited Host
🇳🇱 Cloud86 B.V.	2025-11-20 08:15:13 (6 months ago)	Email spam	Email Spam
Anonymous	2025-10-13 00:15:00 (7 months ago)	aeonを騙るメールｆ202509231020 https://aeoon.ii3kb.cyou/	Phishing
🇸🇮 dsmidge	2025-08-30 02:27:51 (9 months ago)	Aug 30 04:27:49 server postfix/smtpd[3737350]: connect from unknown[193.239.154.182] Aug 30 04:27:50 ... show more Aug 30 04:27:49 server postfix/smtpd[3737350]: connect from unknown[193.239.154.182] Aug 30 04:27:50 server postfix/smtpd[3737350]: NOQUEUE: reject: RCPT from unknown[193.239.154.182]: 554 5.7.1 Service unavailable; Client host [193.239.154.182] blocked using zen.spamhaus.org; Listed by CSS, see https://check.spamhaus.org/query/ip/193.239.154.182 / Listed by SBL, see https://check.spamhaus.org/sbl/query/SBL520298; from=<> to=<[email protected]> proto=ESMTP helo=<C202508301544518.local> ... show less	Email Spam

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.15

🇸🇦 77.31.222.157

🇧🇷 45.205.1.242

🇧🇪 35.187.172.41

🇳🇱 5.83.143.132

🇵🇰 203.128.10.138

🇬🇧 185.216.145.172

🇸🇬 103.250.11.116

🇪🇸 88.21.166.76

🇺🇸 66.132.186.138

🇷🇺 62.112.126.114

🇱🇹 45.227.254.170

🇩🇪 43.228.157.8

🇺🇸 34.75.223.138

🇺🇸 2604:a880:400:d1:0:4:8bed:8001

🇬🇧 193.163.125.141

🇲🇩 176.123.2.115

🇺🇸 172.59.72.163

🇺🇸 162.243.138.30

🇨🇳 119.48.134.120