JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 118.196.44.152

118.196.44.152 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 0%: ?

ISP	Beijing Volcano Engine Technology Co., Ltd.
Usage Type	Fixed Line ISP
ASN	AS137718
Domain Name	bytedance.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 118.196.44.152

Whois 118.196.44.152

IP Abuse Reports for 118.196.44.152:

This IP address has been reported a total of 140 times from 88 distinct sources. 118.196.44.152 was first reported on March 2nd 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-03-31 00:43:10 (2 months ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/118.196.44.152	SSH
Anonymous	2026-03-30 00:26:29 (2 months ago)	2026-03-30 02:11:33,227 fail2ban.actions [3196941]: NOTICE [sshd] Ban 118.196.44.152 2026-03 ... show more 2026-03-30 02:11:33,227 fail2ban.actions [3196941]: NOTICE [sshd] Ban 118.196.44.152 2026-03-30 02:26:28,991 fail2ban.actions [3196941]: NOTICE [sshd] Ban 118.196.44.152 ... show less	Brute-Force Exploited Host
🇺🇸 Maya Bsir	2026-03-30 00:21:12 (2 months ago)	2026-03-30T00:13:38.046084+00:00 vps-usa sshd[557139]: Failed password for root from 118.196.44.152 ... show more 2026-03-30T00:13:38.046084+00:00 vps-usa sshd[557139]: Failed password for root from 118.196.44.152 port 47198 ssh2 2026-03-30T00:17:23.728693+00:00 vps-usa sshd[557168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-30T00:17:25.877594+00:00 vps-usa sshd[557168]: Failed password for root from 118.196.44.152 port 45138 ssh2 2026-03-30T00:21:10.084051+00:00 vps-usa sshd[557190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-30T00:21:12.062189+00:00 vps-usa sshd[557190]: Failed password for root from 118.196.44.152 port 40792 ssh2 ... show less	Brute-Force SSH
🇨🇿 lp	2026-03-30 00:18:52 (2 months ago)	SSH Brute force: 2 attempts were recorded from 118.196.44.152 2026-03-30T01:59:39+02:00 Disconnected ... show more SSH Brute force: 2 attempts were recorded from 118.196.44.152 2026-03-30T01:59:39+02:00 Disconnected from authenticating user root 118.196.44.152 port 35704 [preauth] 2026-03-30T02:09:44+02:00 Disconnected from authenticating user root 118.196.44.152 port 52410 [preauth] show less	Brute-Force SSH
🇺🇸 actuallyreliable	2026-03-30 00:17:33 (2 months ago)	2026-03-30T00:09:31.945529+00:00 sector-1 sshd-session[317431]: User root from 118.196.44.152 not al ... show more 2026-03-30T00:09:31.945529+00:00 sector-1 sshd-session[317431]: User root from 118.196.44.152 not allowed because not listed in AllowUsers 2026-03-30T00:13:46.144633+00:00 sector-1 sshd-session[317933]: User root from 118.196.44.152 not allowed because not listed in AllowUsers 2026-03-30T00:17:33.186032+00:00 sector-1 sshd-session[318390]: User root from 118.196.44.152 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH
🇧🇷 paradoxnetworks	2026-03-30 00:17:09 (2 months ago)	2026-03-30T00:13:19.354886+00:00 edge-con-sao01.int.pdx.net.uk sshd[3460362]: Failed password for ro ... show more 2026-03-30T00:13:19.354886+00:00 edge-con-sao01.int.pdx.net.uk sshd[3460362]: Failed password for root from 118.196.44.152 port 38146 ssh2 2026-03-30T00:17:07.082921+00:00 edge-con-sao01.int.pdx.net.uk sshd[3460611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-30T00:17:09.232211+00:00 edge-con-sao01.int.pdx.net.uk sshd[3460611]: Failed password for root from 118.196.44.152 port 37480 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-30 00:08:51 (2 months ago)	118.196.44.152 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 118.196.44.152 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Mar 29 19:08:39 15624 sshd[20087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.240.183 user=root Mar 29 19:02:26 15624 sshd[19131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.240.183 user=root Mar 29 19:02:28 15624 sshd[19131]: Failed password for root from 152.32.240.183 port 43550 ssh2 Mar 29 18:59:24 15624 sshd[18817]: Failed password for root from 118.196.44.152 port 42900 ssh2 Mar 29 18:59:22 15624 sshd[18817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root IP Addresses Blocked: 152.32.240.183 (HK/Hong Kong/-) show less	Brute-Force SSH
🇩🇪 crnpekgoz	2026-03-30 00:02:39 (2 months ago)	[PortScan] Risk=100 ASN=4811 (portscan) Port=22 HoneypotTrap=true \| Reported by WardenIPS: https://g ... show more [PortScan] Risk=100 ASN=4811 (portscan) Port=22 HoneypotTrap=true \| Reported by WardenIPS: https://github.com/msncakma/WardenIPS show less	Port Scan
🇫🇮 pr0vieh	2026-03-29 23:18:42 (2 months ago)	2026-03-29T23:49:19.784805+01:00 Linux11 sshd-session[1152485]: pam_unix(sshd:auth): authentication ... show more 2026-03-29T23:49:19.784805+01:00 Linux11 sshd-session[1152485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T23:49:21.999033+01:00 Linux11 sshd-session[1152485]: Failed password for root from 118.196.44.152 port 45868 ssh2 2026-03-29T23:56:43.044669+01:00 Linux11 sshd-session[1180783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T23:56:45.497025+01:00 Linux11 sshd-session[1180783]: Failed password for root from 118.196.44.152 port 55914 ssh2 2026-03-30T00:04:01.920767+01:00 Linux11 sshd-session[1208229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-30T00:04:04.301979+01:00 Linux11 sshd-session[1208229]: Failed password for root from 118.196.44.152 port 38082 ssh2 2026-03-30T00:11:17.507324+01:00 Linux11 sshd-session[1235420]: pam_unix(sshd:auth): authen ... show less	Brute-Force SSH
🇳🇱 NussLi	2026-03-29 20:32:10 (2 months ago)	2026-03-29T20:28:59.545969+00:00 mailcow sshd[3285454]: pam_unix(sshd:auth): authentication failure; ... show more 2026-03-29T20:28:59.545969+00:00 mailcow sshd[3285454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T20:29:01.374714+00:00 mailcow sshd[3285454]: Failed password for root from 118.196.44.152 port 48708 ssh2 2026-03-29T20:32:08.535354+00:00 mailcow sshd[3287364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T20:32:10.309392+00:00 mailcow sshd[3287364]: Failed password for root from 118.196.44.152 port 42394 ssh2 ... show less	Brute-Force SSH
🇺🇸 mc4bbs	2026-03-29 20:17:29 (2 months ago)	Mar 29 16:17:27 ChazTelPlex sshd[346847]: pam_unix(sshd:auth): authentication failure; logname= uid= ... show more Mar 29 16:17:27 ChazTelPlex sshd[346847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root Mar 29 16:17:29 ChazTelPlex sshd[346847]: Failed password for root from 118.196.44.152 port 44834 ssh2 ... show less	Brute-Force SSH
🇳🇱 NussLi	2026-03-29 20:09:45 (2 months ago)	2026-03-29T20:06:30.720072+00:00 mailcow sshd[3272738]: pam_unix(sshd:auth): authentication failure; ... show more 2026-03-29T20:06:30.720072+00:00 mailcow sshd[3272738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T20:06:32.689102+00:00 mailcow sshd[3272738]: Failed password for root from 118.196.44.152 port 60350 ssh2 2026-03-29T20:09:42.244025+00:00 mailcow sshd[3274477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T20:09:44.569689+00:00 mailcow sshd[3274477]: Failed password for root from 118.196.44.152 port 55512 ssh2 ... show less	Brute-Force SSH
🇺🇸 mc4bbs	2026-03-29 19:56:45 (2 months ago)	Mar 29 15:56:43 ChazTelPlex sshd[346100]: pam_unix(sshd:auth): authentication failure; logname= uid= ... show more Mar 29 15:56:43 ChazTelPlex sshd[346100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root Mar 29 15:56:44 ChazTelPlex sshd[346100]: Failed password for root from 118.196.44.152 port 54748 ssh2 ... show less	Brute-Force SSH
🇫🇮 hzswdef	2026-03-29 19:41:35 (2 months ago)	2026-03-29T19:38:24.722904+00:00 s239416.love-is.nexus sshd-session[549952]: Failed password for roo ... show more 2026-03-29T19:38:24.722904+00:00 s239416.love-is.nexus sshd-session[549952]: Failed password for root from 118.196.44.152 port 51596 ssh2 2026-03-29T19:41:32.137251+00:00 s239416.love-is.nexus sshd-session[552499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root 2026-03-29T19:41:34.035236+00:00 s239416.love-is.nexus sshd-session[552499]: Failed password for root from 118.196.44.152 port 56888 ssh2 ... show less	Brute-Force
🇺🇸 mc4bbs	2026-03-29 19:37:40 (2 months ago)	Mar 29 15:37:37 ChazTelPlex sshd[345713]: pam_unix(sshd:auth): authentication failure; logname= uid= ... show more Mar 29 15:37:37 ChazTelPlex sshd[345713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.196.44.152 user=root Mar 29 15:37:40 ChazTelPlex sshd[345713]: Failed password for root from 118.196.44.152 port 35116 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.202

🇷🇴 92.118.39.32

🇺🇸 20.55.90.128

🇪🇬 197.246.107.201

🇦🇿 188.253.213.227

🇺🇸 165.154.172.73

🇧🇷 118.26.105.116

🇳🇱 95.85.226.199

🇫🇷 91.196.152.35

🇵🇷 72.50.5.168

🇩🇪 43.228.157.9

🇺🇸 43.162.112.238

🇬🇧 35.203.211.127

🇺🇸 20.168.7.169

🇺🇸 3.213.226.45

🇷🇴 2.57.122.177

🇦🇹 213.147.164.60

🇫🇮 204.168.191.223

🇲🇩 188.212.1.221

🇮🇳 182.66.213.59