JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 198.245.53.220

198.245.53.220 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 2%: ?

ISP	OVH Hosting, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	19824553220.suntechbaginc.com
Domain Name	ovh.net
Country	🇨🇦 Canada
City	Montreal, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 198.245.53.220

Whois 198.245.53.220

IP Abuse Reports for 198.245.53.220:

This IP address has been reported a total of 16 times from 7 distinct sources. 198.245.53.220 was first reported on December 10th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 H. Hampel	2026-06-05 09:13:37 (1 week ago)	SMTP hacking.	Email Spam Spoofing Hacking
🇨🇭 Origon	2026-01-07 21:17:20 (5 months ago)	NOQUEUE - IP: 198.245.53.220 - Jan 7 22:17:20 plesk postfix/smtpd[2952305]: NOQUEUE: reject: RCPT f ... show more NOQUEUE - IP: 198.245.53.220 - Jan 7 22:17:20 plesk postfix/smtpd[2952305]: NOQUEUE: reject: RCPT from 19824553220.suntechbaginc.com[198.245.53.220]: 554 5.7.1 Service unavailable; Client host [198.245.53.220] blocked using dnsbl-3.uceprotect.net; Your ISP OVH, FR/AS16276 is UCEPROTECT-Level3 listed because of a spamscore of 153.2. See: http://www.uceprotect.net/rblcheck.php?ipr=198.245.53.220; from=<[email protected]> to=<REDACTED@REDACTED> proto=ESMTP helo=<19824553220.suntechbaginc.com> show less	Email Spam
🇩🇪 WhiteShark	2025-11-25 00:17:39 (6 months ago)	suntechbaginc.com blocked due to abusive behavior	Email Spam
🇨🇭 Origon	2025-10-30 10:41:45 (7 months ago)	NOQUEUE - IP: 198.245.53.220 - Oct 30 11:41:44 plesk postfix/smtpd[3355084]: NOQUEUE: reject: RCPT ... show more NOQUEUE - IP: 198.245.53.220 - Oct 30 11:41:44 plesk postfix/smtpd[3355084]: NOQUEUE: reject: RCPT from 19824553220.suntechbaginc.com[198.245.53.220]: 554 5.7.1 Service unavailable; Client host [198.245.53.220] blocked using dnsbl-1.uceprotect.net; IP 198.245.53.220 is UCEPROTECT-Level 1 listed. See http://www.uceprotect.net/rblcheck.php?ipr=198.245.53.220; from=<[email protected]> to=<REDACTED@REDACTED> proto=ESMTP helo=<19824553220.suntechbaginc.com> show less	Email Spam
🇺🇸 DiodeDave	2025-10-21 21:18:29 (7 months ago)	Attempted access after blacklisting	Email Spam
🇺🇸 TPI-Abuse	2025-09-06 03:38:21 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): ... show more (mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 05 23:38:13.159661 2025] [security2:error] [pid 8256:tid 8256] [client 198.245.53.220:43025] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.brbcash.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.brbcash.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected]"] [unique_id "aLuspf-51eXxhrLHbmamjAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 WhiteShark	2025-08-29 07:08:50 (9 months ago)	suntechbaginc.com blocked due to abusive behavior	Email Spam
🇺🇸 TPI-Abuse	2025-08-21 07:35:54 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): ... show more (mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Aug 21 03:35:51.400260 2025] [security2:error] [pid 9529:tid 9529] [client 198.245.53.220:60247] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.dwightbrown.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.dwightbrown.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected]"] [unique_id "aKbMV1n0erjapq3BJNBMeQAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-30 13:41:56 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): ... show more (mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 30 09:41:50.017255 2025] [security2:error] [pid 17676:tid 17676] [client 198.245.53.220:38257] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.dietzengineers.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.dietzengineers.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected]"] [unique_id "aIohHlCT9p6thlm0N795QgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-20 23:02:39 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): ... show more (mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 19:02:32.486226 2025] [security2:error] [pid 1877342:tid 1877342] [client 198.245.53.220:41445] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.thereddoorlounge.com\|F\|2"] [data "[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.thereddoorlounge.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected]"] [unique_id "aFXoiPNWGEmProgFTDmTXwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-20 00:46:40 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): ... show more (mod_security) mod_security (id:210730) triggered by 198.245.53.220 (19824553220.suntechbaginc.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 19 20:46:34.329791 2025] [security2:error] [pid 3506225:tid 3506225] [client 198.245.53.220:54947] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.star-discgolf.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.star-discgolf.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected]"] [unique_id "aFSvavldr8cwSxwd9r7g4AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 WhiteShark	2025-06-15 23:23:50 (11 months ago)	suntechbaginc.com blocked due to abusive behavior	Email Spam
Anonymous	2025-04-11 14:35:30 (1 year ago)	Spam from suntechbaginc.com	Email Spam
🇩🇪 WhiteShark	2025-03-14 12:42:00 (1 year ago)	suntechbaginc.com blocked due to abusive behavior	Email Spam
🇩🇪 H. Hampel	2025-02-02 21:27:02 (1 year ago)	SMTP hacking.	Email Spam Hacking Spoofing

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.205

🇨🇳 180.110.149.157

🇨🇳 125.39.148.106

🇮🇳 125.19.182.118

🇨🇳 120.240.178.210

🇩🇪 45.82.122.124

🇨🇳 182.150.31.156

🇸🇬 172.217.47.28

🇻🇳 171.231.181.252

🇸🇪 171.25.158.80

🇸🇬 156.245.144.121

🇮🇳 122.187.230.213

🇵🇰 115.42.70.26

🇩🇪 104.23.239.64

🇬🇧 89.37.172.153

🇺🇸 74.235.121.114

🇺🇸 65.110.40.33

🇺🇸 64.62.156.207

🇺🇸 52.238.199.198

🇳🇱 45.148.10.147