AbuseIPDB » 222.76.248.54

222.76.248.54 was found in our database!

This IP was reported 6,040 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET fujian province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	China
City	Xiamen, Fujian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 222.76.248.54

Whois 222.76.248.54

IP Abuse Reports for 222.76.248.54:

This IP address has been reported a total of 6,040 times from 498 distinct sources. 222.76.248.54 was first reported on February 21st 2024, and the most recent report was 16 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
LRob.fr	2025-06-09 10:15:14 (6 days ago)	SMTP brute-force detected by Fail2Ban in plesk-postfix jail	Email Spam Brute-Force
Woodie	2025-06-09 09:32:42 (6 days ago)	2025-06-09T05:32:31.238733-04:00 debian sshd[3892356]: Invalid user ubnt from 222.76.248.54 port 553 ... show more2025-06-09T05:32:31.238733-04:00 debian sshd[3892356]: Invalid user ubnt from 222.76.248.54 port 55346 2025-06-09T05:32:31.241970-04:00 debian sshd[3892356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.76.248.54 2025-06-09T05:32:33.060240-04:00 debian sshd[3892356]: Failed password for invalid user ubnt from 222.76.248.54 port 55346 ssh2 2025-06-09T05:32:39.401101-04:00 debian sshd[3892468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.76.248.54 user=mysql 2025-06-09T05:32:41.987568-04:00 debian sshd[3892468]: Failed password for mysql from 222.76.248.54 port 54600 ssh2 ... show less	Brute-Force SSH
Woodie	2025-06-09 07:34:45 (6 days ago)	2025-06-09T03:27:58.435099-04:00 debian sshd[3745193]: Failed password for invalid user test from 22 ... show more2025-06-09T03:27:58.435099-04:00 debian sshd[3745193]: Failed password for invalid user test from 222.76.248.54 port 48282 ssh2 2025-06-09T03:33:57.832818-04:00 debian sshd[3751172]: Invalid user centos from 222.76.248.54 port 37554 2025-06-09T03:33:57.836366-04:00 debian sshd[3751172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.76.248.54 2025-06-09T03:34:00.695136-04:00 debian sshd[3751172]: Failed password for invalid user centos from 222.76.248.54 port 37554 ssh2 2025-06-09T03:34:43.977571-04:00 debian sshd[3751944]: Invalid user admin from 222.76.248.54 port 52114 ... show less	Brute-Force SSH
TheWojtek	2025-06-09 07:28:41 (6 days ago)	Jun 9 09:28:41 hq postfix/smtpd[2538288]: warning: unknown[222.76.248.54]: SASL LOGIN authenticatio ... show moreJun 9 09:28:41 hq postfix/smtpd[2538288]: warning: unknown[222.76.248.54]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... show less	Brute-Force
Swiptly	2025-06-09 07:24:06 (6 days ago)	Exim Login attempts ...	Email Spam Brute-Force
KZP	2025-06-09 07:01:18 (6 days ago)	Automatic report from KZP firewall log.	Port Scan Hacking Brute-Force
Widmo	2025-06-09 06:37:34 (6 days ago)	unknown[222.76.248.54]: SASL LOGIN authentication failed	Brute-Force
tecnicorioja	2025-06-09 02:00:38 (6 days ago)	SASL LOGIN authentication failed Jun 09 02:59:41	Brute-Force
stom	2025-06-09 01:31:04 (6 days ago)	2025-06-09T01:31:00.833563ls1.tom2.co.uk postfix/smtps/smtpd[21171]: warning: unknown[222.76.248.54] ... show more2025-06-09T01:31:00.833563ls1.tom2.co.uk postfix/smtps/smtpd[21171]: warning: unknown[222.76.248.54]: SASL LOGIN authentication failed: authentication failure ... show less	Email Spam Brute-Force
triplecode	2025-06-09 01:02:10 (6 days ago)	Reported from hMailServer	Email Spam
rd1742	2025-06-09 00:51:53 (6 days ago)	Jun 9 00:51:52 quad dovecot: auth-worker(2282301): sql([email protected],222.76.248.54): unknown user	Brute-Force Exploited Host
fpoulet	2025-06-08 23:22:09 (6 days ago)	Blocked by Fail2Ban (Postfix BruteForce)	Brute-Force SSH
Denis Chavez	2025-06-08 22:28:58 (6 days ago)	Fail2Ban detectó actividad sospechosa desde esta IP	Brute-Force SSH
GeorgieNAS77	2025-06-08 22:15:11 (6 days ago)	Jun 8 17:15:05 mail postfix/smtpd[9875]: warning: unknown[222.76.248.54]: SASL LOGIN authentication ... show moreJun 8 17:15:05 mail postfix/smtpd[9875]: warning: unknown[222.76.248.54]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
rtbh.com.tr	2025-06-08 20:07:02 (6 days ago)	list.rtbh.com.tr report: tcp/0	Brute-Force

Showing 91 to 105 of 6040 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

2.55.74.30

201.249.204.129

104.234.115.83

81.30.107.189

87.249.134.129

117.205.115.210

157.10.53.82

20.168.121.143

77.48.28.204

14.172.21.76

1.24.16.39

45.119.212.99

52.224.240.74

205.210.31.215

14.225.3.79

47.128.25.206

117.214.55.230

204.8.96.109

78.186.70.243

123.58.213.181