JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.149.196.215

117.149.196.215 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 100%: ?

100%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS56041
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.149.196.215

Whois 117.149.196.215

IP Abuse Reports for 117.149.196.215:

This IP address has been reported a total of 20 times from 20 distinct sources. 117.149.196.215 was first reported on June 2nd 2026, and the most recent report was 43 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 tg_de	2026-06-04 08:56:25 (43 minutes ago)	348 attempts since 04.06.2026 08:20:44 CEST - last one: 2026-06-04T10:56:25.212909+02:00 alpha sshd- ... show more 348 attempts since 04.06.2026 08:20:44 CEST - last one: 2026-06-04T10:56:25.212909+02:00 alpha sshd-session[490882]: Connection closed by invalid user admin 117.149.196.215 port 52862 [preauth] show less	Brute-Force SSH
🇫🇮 Maxetow	2026-06-04 08:36:07 (1 hour ago)	Scan port: 22 \| 1 total \| size=64B	Port Scan
🇺🇸 MPL	2026-06-04 08:07:51 (1 hour ago)	tcp/22 (5 or more attempts)	Port Scan
🇩🇪 teltow-flaeming.it	2026-06-04 03:42:06 (5 hours ago)	SSH Brute Force ...	Brute-Force SSH
🇦🇺 dyln	2026-06-04 02:59:58 (6 hours ago)	Dyls honeypot brute-force: SSH (888 total hits)	Brute-Force SSH
🇩🇪 fynndows.de	2026-06-03 23:41:22 (9 hours ago)	2026-06-04T01:41:20.325872+02:00 debian-epyc sshd[1743060]: pam_unix(sshd:auth): authentication fail ... show more 2026-06-04T01:41:20.325872+02:00 debian-epyc sshd[1743060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root 2026-06-04T01:41:22.066696+02:00 debian-epyc sshd[1743060]: Failed password for root from 117.149.196.215 port 60314 ssh2 ... show less	Brute-Force SSH
🇰🇷 hanb.jp	2026-06-03 22:30:28 (11 hours ago)	Jun 3 12:46:42 v4bgp sshd[229053]: Failed password for root from 117.149.196.215 port 37676 ssh2 Ju ... show more Jun 3 12:46:42 v4bgp sshd[229053]: Failed password for root from 117.149.196.215 port 37676 ssh2 Jun 3 22:30:25 v4bgp sshd[246504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root Jun 3 22:30:27 v4bgp sshd[246504]: Failed password for root from 117.149.196.215 port 43976 ssh2 ... show less	Brute-Force SSH
🇮🇹 lavocedelsavuto.it	2026-06-03 21:31:48 (12 hours ago)	2026-06-03T23:31:22.474538+02:00 Server sshd[3170139]: Failed password for root from 117.149.196.215 ... show more 2026-06-03T23:31:22.474538+02:00 Server sshd[3170139]: Failed password for root from 117.149.196.215 port 41280 ssh2 2026-06-03T23:31:33.565654+02:00 Server sshd[3170311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root 2026-06-03T23:31:35.287685+02:00 Server sshd[3170311]: Failed password for root from 117.149.196.215 port 57792 ssh2 2026-06-03T23:31:45.630701+02:00 Server sshd[3170426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root 2026-06-03T23:31:47.668373+02:00 Server sshd[3170426]: Failed password for root from 117.149.196.215 port 51730 ssh2 ... show less	Brute-Force SSH
🇩🇪 Veslys	2026-06-03 19:55:11 (13 hours ago)	Jun 3 19:54:59 Veslys sshd[792301]: Failed password for root from 117.149.196.215 port 53000 ssh2 J ... show more Jun 3 19:54:59 Veslys sshd[792301]: Failed password for root from 117.149.196.215 port 53000 ssh2 Jun 3 19:55:08 Veslys sshd[797632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root Jun 3 19:55:10 Veslys sshd[797632]: Failed password for root from 117.149.196.215 port 32872 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-03 18:25:39 (15 hours ago)	117.149.196.215 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Po ... show more 117.149.196.215 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 3 12:32:06 14967 sshd[23566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.193.131 user=root Jun 3 12:32:08 14967 sshd[23566]: Failed password for root from 101.96.193.131 port 51716 ssh2 Jun 3 13:25:25 14967 sshd[29253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root Jun 3 12:28:23 14967 sshd[23123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.96.193.131 user=root Jun 3 12:28:25 14967 sshd[23123]: Failed password for root from 101.96.193.131 port 33860 ssh2 IP Addresses Blocked: 101.96.193.131 (CN/China/-) show less	Brute-Force SSH
🇬🇧 PeravixGroup	2026-06-03 14:51:55 (18 hours ago)	Honeypot detection: SSH brute-force authentication attempt on port 22. Severity: MEDIUM. Aaran.cloud	SSH Brute-Force
🇫🇷 mailox	2026-06-03 12:31:29 (21 hours ago)	Unauthorized SSH connection on tarpit ...	SSH
🇧🇬 MazenHost	2026-06-03 12:03:53 (21 hours ago)	2026-06-03T15:03:51.644220+03:00 betelgeuse.mazen.host sshd[430379]: pam_unix(sshd:auth): authentica ... show more 2026-06-03T15:03:51.644220+03:00 betelgeuse.mazen.host sshd[430379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root 2026-06-03T15:03:52.913099+03:00 betelgeuse.mazen.host sshd[430379]: Failed password for root from 117.149.196.215 port 58410 ssh2 ... show less	Brute-Force SSH
🇺🇸 Deltron3030	2026-06-03 05:44:04 (1 day ago)	SSH brute-force attempt from 117.149.196.215 blocked by Houston-Xeon-Dartnode.	Brute-Force SSH
🇺🇸 vertali	2026-06-02 23:24:10 (1 day ago)	CSF/LFD blocked 117.149.196.215 after LF_SSHD on * (inout, perm=1, ttl=1s). Reason: (sshd) Failed SS ... show more CSF/LFD blocked 117.149.196.215 after LF_SSHD on * (inout, perm=1, ttl=1s). Reason: (sshd) Failed SSH login from 117.149.196.215 (CN/China/-): 5 in the last 3600 secs. Evidence: Jun 2 18:23:44 paladin sshd[849957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.196.215 user=root show less	Brute-Force SSH

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.141

🇺🇸 195.210.107.83

🇬🇧 193.163.125.164

🇲🇽 187.218.57.50

🇦🇷 181.45.46.208

🇧🇼 168.167.228.74

🇫🇷 163.5.241.55

🇨🇳 118.145.238.60

🇦🇲 87.241.157.222

🇱🇹 81.30.98.158

🇮🇳 59.95.246.194

🇮🇪 52.178.176.182

🇮🇪 52.178.176.157

🇧🇩 45.118.68.59

🇿🇲 41.175.188.58

🇬🇧 34.39.61.250

🇮🇹 34.17.207.81

🇮🇳 3.108.40.245

🇺🇸 206.221.176.60

🇵🇭 203.177.9.57