JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.74.54.199

112.74.54.199 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 0%: ?

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.74.54.199

Whois 112.74.54.199

IP Abuse Reports for 112.74.54.199:

This IP address has been reported a total of 77 times from 40 distinct sources. 112.74.54.199 was first reported on May 1st 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 inpec.fr	2024-10-24 14:06:51 (1 year ago)	$f2bV_matches	Brute-Force
🇨🇦 KIsmay	2024-10-22 13:56:48 (1 year ago)	Oct 22 09:56:37 www4 sshd[1334941]: Failed password for invalid user ansadmin from 112.74.54.199 por ... show more Oct 22 09:56:37 www4 sshd[1334941]: Failed password for invalid user ansadmin from 112.74.54.199 port 47238 ssh2 Oct 22 09:56:40 www4 sshd[1334950]: Invalid user dspace from 112.74.54.199 port 59318 Oct 22 09:56:40 www4 sshd[1334950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.74.54.199 Oct 22 09:56:42 www4 sshd[1334950]: Failed password for invalid user dspace from 112.74.54.199 port 59318 ssh2 Oct 22 09:56:47 www4 sshd[1334963]: Invalid user Admin from 112.74.54.199 port 43154 ... show less	Brute-Force SSH
🇺🇸 PulseServers	2024-06-16 07:15:21 (1 year ago)	Probing a webserver hosted by PulseServers.com for vulnerabilities - Site	Hacking Web App Attack
🇫🇮 nNordic	2024-05-21 09:12:58 (2 years ago)	Connection blocked by IDS/IPS from IP 112.74.54.199	Hacking
Anonymous	2024-05-21 09:04:07 (2 years ago)	Automatic report - Vulnerability scan /websql/scripts/setup.php	Web App Attack
🇫🇷 GoodOldTOS	2024-05-19 23:09:05 (2 years ago)	Highly suspect IP	Hacking Web App Attack
🇷🇴 FullStackHost	2024-05-19 13:07:48 (2 years ago)	Attempted port scan. Scanned port(s): 8000	Port Scan
🇫🇮 Mr-Money	2024-05-19 10:53:01 (2 years ago)	112.74.54.199 - - [19/May/2024:12:53:00 +0200] "GET http://65.109.22.68:80/phpMyAdmin/scripts/setup. ... show more 112.74.54.199 - - [19/May/2024:12:53:00 +0200] "GET http://65.109.22.68:80/phpMyAdmin/scripts/setup.php HTTP/1.0" 404 454 "-" "-" 112.74.54.199 - - [19/May/2024:12:53:00 +0200] "GET http://65.109.22.68:80/phpmyadmin/scripts/setup.php HTTP/1.0" 404 454 "-" "-" 112.74.54.199 - - [19/May/2024:12:53:01 +0200] "GET http://65.109.22.68:80/phpMyAdmin-2.11.4/scripts/setup.php HTTP/1.0" 404 454 "-" "-" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇺🇸 MPL	2024-05-18 18:44:16 (2 years ago)	tcp ports: 8080,80 (4 or more attempts)	Port Scan
🇺🇸 Major Hostility	2024-05-18 10:33:19 (2 years ago)	"GET http://[IP]:80/phpMyAdmin/scripts/setup.php HTTP/1.0" 404 "GET http://[IP]:80/phpmyadmin/script ... show more "GET http://[IP]:80/phpMyAdmin/scripts/setup.php HTTP/1.0" 404 "GET http://[IP]:80/phpmyadmin/scripts/setup.php HTTP/1.0" 404 show less	Web App Attack
🇸🇪 peterh	2024-05-17 05:55:00 (2 years ago)	112.74.54.199 - - [17/May/2024:01:29:42 +0200] "GET http://46.246.38.70:80/phpMyAdmin/scripts/setup. ... show more 112.74.54.199 - - [17/May/2024:01:29:42 +0200] "GET http://46.246.38.70:80/phpMyAdmin/scripts/setup.php HTTP/1.0 show less	Hacking Brute-Force
🇸🇪 Juha Jurvanen	2024-05-16 21:53:15 (2 years ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 MPL	2024-05-16 09:32:02 (2 years ago)	tcp port scan (16 or more attempts)	Port Scan
🇺🇸 RAP	2024-05-15 03:30:29 (2 years ago)	2024-05-15 03:30:29 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇫🇮 Mr-Money	2024-05-15 01:28:02 (2 years ago)	112.74.54.199 - - [15/May/2024:03:28:01 +0200] "GET http://65.109.22.68:80/phpMyAdmin/scripts/setup. ... show more 112.74.54.199 - - [15/May/2024:03:28:01 +0200] "GET http://65.109.22.68:80/phpMyAdmin/scripts/setup.php HTTP/1.0" 404 454 "-" "-" 112.74.54.199 - - [15/May/2024:03:28:01 +0200] "GET http://65.109.22.68:80/phpmyadmin/scripts/setup.php HTTP/1.0" 404 454 "-" "-" 112.74.54.199 - - [15/May/2024:03:28:02 +0200] "GET http://65.109.22.68:80/phpMyAdmin-2.11.4/scripts/setup.php HTTP/1.0" 404 454 "-" "-" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.163.85

🇬🇧 104.248.161.154

🇷🇴 92.118.39.236

🇫🇷 91.231.89.8

🇳🇱 45.148.10.147

🇮🇷 5.234.36.173

🇺🇸 205.185.120.21

🇳🇱 176.65.139.239

🇩🇪 165.232.119.148

🇩🇪 165.232.74.252

🇺🇸 150.107.38.67

🇷🇺 80.69.186.68

🇺🇸 66.132.186.136

🇲🇽 46.250.175.128

🇳🇱 45.148.10.141

🇳🇱 34.90.177.98

🇮🇪 3.248.255.133

🇩🇪 209.50.190.170

🇺🇸 192.185.4.147

🇩🇪 165.232.112.14