JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 118.196.102.200

118.196.102.200 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Volcano Engine Technology Co., Ltd.
Usage Type	Fixed Line ISP
ASN	AS137718
Domain Name	bytedance.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 118.196.102.200

Whois 118.196.102.200

IP Abuse Reports for 118.196.102.200:

This IP address has been reported a total of 73 times from 55 distinct sources. 118.196.102.200 was first reported on April 22nd 2026, and the most recent report was 21 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 rafled	2026-06-12 18:53:28 (21 minutes ago)	Jun 12 18:53:28 internal-mail-rafled-com sshd[1414556]: Invalid user oracle from 118.196.102.200 por ... show more Jun 12 18:53:28 internal-mail-rafled-com sshd[1414556]: Invalid user oracle from 118.196.102.200 port 44170 ... show less	Brute-Force SSH
🇹🇷 Threat.live	2026-06-12 14:10:03 (5 hours ago)	Suspicious Connection Attempts	Brute-Force
🇩🇪 Enki	2026-06-11 19:12:02 (1 day ago)	Invalid user pi from 118.196.102.200 port 25360	Brute-Force SSH
🇺🇸 oralunal	2026-06-11 11:18:51 (1 day ago)	IP banned by Fail2Ban in jail sshd auth.log mvfnds ...	SSH
🇺🇸 NetGuard	2026-06-11 08:18:27 (1 day ago)	#honeypot #netguard247 #cowrie #sshtelnetprobe Captured by NetGuard 24/7 T-Pot honeypot (netguard24- ... show more #honeypot #netguard247 #cowrie #sshtelnetprobe Captured by NetGuard 24/7 T-Pot honeypot (netguard24-7.com). Timestamp: 2026-06-11T08:18:27.169+00:00 Attacker IP: 118.196.102.200 \| Port: N/A \| Country: China Honeypot: cowrie \| Attack: ssh_telnet_probe Source: NetGuard 24/7 (netguard24-7.com) \| PhantomGrid Defense show less	Brute-Force SSH
🇨🇭 ScanThe.Net	2026-06-11 04:43:35 (1 day ago)	ID: 4049153344 \| PORT: 38458 \| https://118-196-102-200.scanthe.net	Port Scan
🇨🇿 gszasz	2026-06-11 04:10:40 (1 day ago)	2026-06-11T06:10:35.571766+02:00 thor sshd-session[369659]: pam_unix(sshd:auth): authentication fail ... show more 2026-06-11T06:10:35.571766+02:00 thor sshd-session[369659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.102.200 2026-06-11T06:10:38.163754+02:00 thor sshd-session[369659]: Failed password for invalid user lc from 118.196.102.200 port 62460 ssh2 2026-06-11T06:10:40.039375+02:00 thor sshd-session[369659]: Disconnected from invalid user lc 118.196.102.200 port 62460 [preauth] ... show less	Brute-Force SSH
🇿🇦 agentics	2026-06-10 02:42:10 (2 days ago)	118.196.102.200 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scal ... show more 118.196.102.200 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 118.196.102.200 - Anycast false - City N/A - Region N/A - Region Code N/A - Country N/A (N/A) - Continent N/A (N/A) - Range N/A - Provider N/A - Organisation N/A - Proxy N/A - Type N/A show less	Brute-Force SSH
🇨🇿 lp	2026-06-09 21:18:49 (2 days ago)	SSH Brute force: 2 attempts were recorded from 118.196.102.200 2026-06-09T22:26:56+02:00 Disconnecte ... show more SSH Brute force: 2 attempts were recorded from 118.196.102.200 2026-06-09T22:26:56+02:00 Disconnected from authenticating user root 118.196.102.200 port 5854 [preauth] 2026-06-09T23:01:09+02:00 Invalid user abhi from 118.196.102.200 port 1208 show less	Brute-Force SSH
🇬🇧 HyperSpeed	2026-06-09 21:03:35 (2 days ago)	Jun 9 20:56:14 UK1 sshd[3592735]: Failed password for invalid user amir from 118.196.102.200 port 3 ... show more Jun 9 20:56:14 UK1 sshd[3592735]: Failed password for invalid user amir from 118.196.102.200 port 31130 ssh2 Jun 9 21:03:33 UK1 sshd[3592789]: Invalid user abhi from 118.196.102.200 port 16272 Jun 9 21:03:33 UK1 sshd[3592789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.102.200 Jun 9 21:03:33 UK1 sshd[3592789]: Invalid user abhi from 118.196.102.200 port 16272 Jun 9 21:03:34 UK1 sshd[3592789]: Failed password for invalid user abhi from 118.196.102.200 port 16272 ssh2 ... show less	Brute-Force SSH
🇩🇪 Viveronese	2026-06-09 20:34:37 (2 days ago)	SSH brute force attacks	Brute-Force SSH
🇨🇭 ScanThe.Net	2026-06-09 15:42:00 (3 days ago)	ID: 4004063086 \| PORT: 63440 \| https://118-196-102-200.scanthe.net	Port Scan
🇨🇭 ScanThe.Net	2026-06-08 20:11:08 (3 days ago)	ID: 3980133710 \| PORT: 31427 \| https://118-196-102-200.scanthe.net	Port Scan
Anonymous	2026-06-08 19:40:59 (3 days ago)	Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:123456789010 • Number of ... show more Honeypot hit: Brute-force attack detected on 22/SSH • Credential used: root:123456789010 • Number of login attempts: 1 • Client: SSH-2.0-libssh_0.9.6 Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	SSH
Anonymous	2026-06-08 14:41:09 (4 days ago)	2026-06-08T16:41:08.455953 mail2.akcurate.de sshd-session[120891]: Connection reset by 118.196.102.2 ... show more 2026-06-08T16:41:08.455953 mail2.akcurate.de sshd-session[120891]: Connection reset by 118.196.102.200 port 23100 [preauth] ... show less	Brute-Force SSH

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 216.26.255.137

🇨🇦 216.26.251.68

🇨🇦 216.26.250.254

🇨🇦 209.50.188.111

🇻🇪 189.127.166.18

🇮🇳 182.95.61.82

🇺🇸 178.156.217.71

🇩🇪 151.123.177.226

🇧🇷 138.186.117.124

🇺🇸 104.207.46.80

🇺🇸 104.207.45.129

🇺🇸 91.230.168.165

🇸🇪 81.170.248.221

🇺🇸 45.79.211.97

🇬🇧 35.203.210.214

🇧🇷 14.102.230.4

🇷🇺 5.129.252.94

🇰🇷 175.126.37.156

🇧🇩 163.227.6.243

🇺🇸 145.223.7.7