JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 23.94.190.50

23.94.190.50 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 0%: ?

ISP	Saswata Mukherjee
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	23-94-190-50-host.colocrossing.com
Domain Name	saswatamukherjee.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 23.94.190.50

Whois 23.94.190.50

IP Abuse Reports for 23.94.190.50:

This IP address has been reported a total of 24 times from 20 distinct sources. 23.94.190.50 was first reported on December 28th 2024, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 stom	2025-08-14 09:59:25 (10 months ago)	2025-08-14T09:59:23.722685ls1.tom2.co.uk postfix/smtpd[25655]: NOQUEUE: reject: RCPT from unknown[23 ... show more 2025-08-14T09:59:23.722685ls1.tom2.co.uk postfix/smtpd[25655]: NOQUEUE: reject: RCPT from unknown[23.94.190.50]: 554 5.7.1 Service unavailable; Client host [23.94.190.50] blocked using zen.spamhaus.org; Listed by XBL, see https://check.spamhaus.org/query/ip/23.94.190.50 / Listed by CSS, see https://check.spamhaus.org/query/ip/23.94.190.50; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<studioecos.com.br> ... show less	Email Spam Brute-Force
🇦🇺 Bayview252	2025-08-12 02:18:57 (10 months ago)	Port scan detected from [23.94.190.50]	Port Scan
Anonymous	2025-08-11 06:08:12 (10 months ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇩🇪 LRob.fr	2025-08-10 23:30:15 (10 months ago)	SMTP brute-force detected by Fail2Ban in plesk-postfix jail	Email Spam Brute-Force
🇧🇷 hostseries	2025-08-10 15:12:20 (10 months ago)	Trigger: LF_SMTPAUTH	Brute-Force
🇪🇪 MSaluste	2025-08-09 17:56:00 (10 months ago)	Scam, sender spoofing From: [email protected] Sent on: Saturday, August 9, 2025 5:06: ... show more Scam, sender spoofing From: [email protected] Sent on: Saturday, August 9, 2025 5:06:42 PM Subject: ✉️ Accountspayable + 1 sent a message in Microsoft team show less	Email Spam Spoofing
🇦🇺 weblite	2025-08-09 13:32:38 (10 months ago)	SMTP_BRUTE_FORCE	Brute-Force
🇦🇺 screwlooseit.com.au	2025-08-09 12:31:58 (10 months ago)	Blocked by CSF 13 firewall - Rule: mysaslmatch US/United States/23-94-190-50-host.colocrossing.com	Web App Attack
🇦🇺 aglenday	2025-08-09 12:27:55 (10 months ago)	(smtpauth) Failed SMTP AUTH login from 23.94.190.50 (US/United States/23-94-190-50-host.colocrossing ... show more (smtpauth) Failed SMTP AUTH login from 23.94.190.50 (US/United States/23-94-190-50-host.colocrossing.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2025-08-09T22:27:54.078918+10:00 mail postfix/submission/smtpd[1530559]: warning: unknown[23.94.190.50]: SASL PLAIN authentication failed: (reason unavailable), [email protected] show less	Port Scan
🇺🇸 bigscoots.com	2025-08-09 05:24:26 (10 months ago)	(smtpauth) Failed SMTP AUTH login from 23.94.190.50 (US/United States/23-94-190-50-host.colocrossing ... show more (smtpauth) Failed SMTP AUTH login from 23.94.190.50 (US/United States/23-94-190-50-host.colocrossing.com): 5 in the last 3600 secs; Ports: 25,465,587; Direction: 0; Trigger: LF_SMTPAUTH; Logs: 2025-08-09 00:38:03 dovecot_plain authenticator failed for ([23.94.190.50]) [23.94.190.50]:51773: 535 Incorrect authentication data ([email protected]) 2025-08-09 00:38:09 dovecot_login authenticator failed for ([23.94.190.50]) [23.94.190.50]:51773: 535 Incorrect authentication data ([email protected]) 2025-08-09 00:40:14 dovecot_plain authenticator failed for ([23.94.190.50]) [23.94.190.50]:64544: 535 Incorrect authentication data ([email protected]) 2025-08-09 00:40:20 dovecot_login authenticator failed for ([23.94.190.50]) [23.94.190.50]:64544: 535 Incorrect authentication data ([email protected]) 2025-08-09 01:24:23 dovecot_plain authenticator failed for ([23.94.190.50]) [23.94.190.50]:59503: 535 Incorrect authentication data ([email protected]) show less	Brute-Force SSH
🇨🇿 lp	2025-08-09 04:55:56 (10 months ago)	Email account brute force: 4 attempts were recorded from 23.94.190.50 2025-08-09T05:54:24+02:00 warn ... show more Email account brute force: 4 attempts were recorded from 23.94.190.50 2025-08-09T05:54:24+02:00 warning: unknown[23.94.190.50]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-08-09T05:54:24+02:00 warning: unknown[23.94.190.50]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-08-09T06:00:31+02:00 warning: unknown[23.94.190.50]: SASL PLAIN authentication failed: authentication failure, [email protected] 2025-08-09T06:00:31+02:00 warning: unknown[23.94.190.50]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Brute-Force
🇸🇰 DSSYSTEMS	2025-08-09 03:02:14 (10 months ago)	Automatic report from DSS firewall log.	Port Scan Hacking Brute-Force
🇸🇰 DSSYSTEMS	2025-08-09 03:02:12 (10 months ago)	RdpGuard detected brute-force attempt on SMTP	Brute-Force
🇮🇹 Progetto1	2025-08-09 02:13:02 (10 months ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
🇺🇸 TPI-Abuse	2025-02-06 07:23:38 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 23.94.190.50 (23-94-190-50-host.colocrossing.co ... show more (mod_security) mod_security (id:211190) triggered by 23.94.190.50 (23-94-190-50-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 06 02:23:35.032548 2025] [security2:error] [pid 17573:tid 17573] [client 23.94.190.50:61704] [client 23.94.190.50] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|www.shukrisharawico.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /module.php?type=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.shukrisharawico.com"] [uri "/module.php"] [unique_id "Z6Rjd3j5E4m7IUAPzfvarQAAABM"], referer: https://www.shukrisharawico.com/module.php?type=/etc/passwd show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇦 197.234.242.158

🇧🇷 177.77.135.103

🇯🇵 162.158.119.230

🇨🇳 144.123.77.20

🇸🇬 114.119.154.203

🇳🇱 45.198.224.5

🇳🇱 45.148.10.147

🇭🇰 199.45.154.132

🇯🇵 172.69.63.11

🇫🇮 147.185.133.65

🇧🇬 79.124.40.110

🇺🇸 47.251.121.162

🇳🇱 45.148.10.151

🇸🇬 45.78.198.199

🇺🇸 35.226.15.76

🇮🇳 182.78.87.2

🇯🇵 172.71.100.206

🇧🇩 172.69.159.148

🇮🇳 154.221.35.72

🇺🇸 147.185.132.100