JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.78.185.54

149.78.185.54 was found in our database!

This IP was reported 36 times. Confidence of Abuse is 0%: ?

ISP	QNAX LTDA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS268581
Domain Name	ufinet.com
Country	🇧🇷 Brazil
City	Barueri, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.78.185.54

Whois 149.78.185.54

IP Abuse Reports for 149.78.185.54:

This IP address has been reported a total of 36 times from 27 distinct sources. 149.78.185.54 was first reported on July 8th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Pingger Shikkoken	2023-11-03 21:49:18 (2 years ago)	Participating in DDoS Amplification Attack Nov 3 21:49:18 dnsmasq[3771336]: query[TXT] apple.com fr ... show more Participating in DDoS Amplification Attack Nov 3 21:49:18 dnsmasq[3771336]: query[TXT] apple.com from 149.78.185.54 show less	DNS Poisoning DDoS Attack Hacking Brute-Force Exploited Host
🇨🇳 ThreatBook.io	2023-07-13 22:07:07 (2 years ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/149.78.185.54 2023-07- ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/149.78.185.54 2023-07-13 23:32:19 ["uname -a"] 2023-07-13 23:32:30 ["uname -a"] 2023-07-13 23:32:15 ["uname -a"] 2023-07-13 23:32:33 ["uname -a"] 2023-07-13 23:32:26 ["uname -a"] 2023-07-13 23:32:10 ["uname -a"] 2023-07-13 23:32:49 ["uname -a"] 2023-07-13 23:32:45 ["uname -a"] show less	Brute-Force
🇩🇪 aorth	2023-07-13 18:06:42 (2 years ago)	Jul 13 18:59:42 Failed password for invalid user root from 149.78.185.54 port 59196	Brute-Force SSH
Anonymous	2023-07-13 17:40:02 (2 years ago)	Hit honeypot r.	Port Scan Hacking Exploited Host
Anonymous	2023-07-13 17:36:18 (2 years ago)	Jul 14 01:36:15 OLS sshd[22631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ... show more Jul 14 01:36:15 OLS sshd[22631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.78.185.54 user=root Jul 14 01:36:17 OLS sshd[22631]: Failed password for root from 149.78.185.54 port 58316 ssh2 Jul 14 01:36:18 OLS sshd[22633]: Invalid user oracle from 149.78.185.54 port 49346 ... show less	Brute-Force SSH
🇩🇪 wlt-blocker	2023-07-13 17:08:25 (2 years ago)	Attempts to access SSH server with wrong credentials	SSH
🇩🇪 dwmp	2023-07-13 16:59:39 (2 years ago)	Jul 13 18:59:33 trace sshd[910656]: refused connect from 149.78.185.54 (149.78.185.54) Jul 13 18:59: ... show more Jul 13 18:59:33 trace sshd[910656]: refused connect from 149.78.185.54 (149.78.185.54) Jul 13 18:59:33 trace sshd[910657]: refused connect from 149.78.185.54 (149.78.185.54) Jul 13 18:59:39 trace sshd[910659]: refused connect from 149.78.185.54 (149.78.185.54) ... show less	Brute-Force SSH
🇺🇸 AzurCrystal	2023-07-13 16:42:05 (2 years ago)	Jul 13 12:42:04 kh-cfw-1 sshd[936058]: Invalid user oracle from 149.78.185.54 port 55392 ...	Brute-Force SSH
🇬🇧 NotCool	2023-07-13 16:33:26 (2 years ago)	(sshd) Failed SSH login from 149.78.185.54 (BR/Brazil/-): 10 in the last 3600 secs; Ports: ; Direct ... show more (sshd) Failed SSH login from 149.78.185.54 (BR/Brazil/-): 10 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER show less	Brute-Force
🇺🇸 Cobalt IT Inc	2023-07-13 16:22:18 (2 years ago)	Jul 13 09:22:11 server01 sshd[25073]: Failed password for root from 149.78.185.54 port 39198 ssh2 Ju ... show more Jul 13 09:22:11 server01 sshd[25073]: Failed password for root from 149.78.185.54 port 39198 ssh2 Jul 13 09:22:16 server01 sshd[25077]: Failed password for root from 149.78.185.54 port 60874 ssh2 ... show less	Brute-Force SSH
🇩🇪 www.blocklist.de	2023-07-13 16:20:58 (2 years ago)	Jul 13 18:04:23 merkur05 sshd[34305]: Did not receive identification string from 149.78.185.54 port ... show more Jul 13 18:04:23 merkur05 sshd[34305]: Did not receive identification string from 149.78.185.54 port 48500 Jul 13 18:04:24 merkur05 sshd[34306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.78.185.54 user=r.r Jul 13 18:04:26 merkur05 sshd[34306]: Failed password for r.r from 149.78.185.54 port 51328 ssh2 Jul 13 18:04:28 merkur05 sshd[34498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.78.185.54 user=r.r Jul 13 18:04:30 merkur05 sshd[34498]: Failed password for r.r from 149.78.185.54 port 48394 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=149.78.185.54 show less	FTP Brute-Force Hacking
🇮🇩 sireno	2023-07-13 16:10:56 (2 years ago)	Jul 13 16:10:46 localhost sshd[900935]: Failed password for root from 149.78.185.54 port 42786 ssh2 ... show more Jul 13 16:10:46 localhost sshd[900935]: Failed password for root from 149.78.185.54 port 42786 ssh2 Jul 13 16:10:49 localhost sshd[900937]: Invalid user oracle from 149.78.185.54 port 50588 Jul 13 16:10:49 localhost sshd[900937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.78.185.54 Jul 13 16:10:51 localhost sshd[900937]: Failed password for invalid user oracle from 149.78.185.54 port 50588 ssh2 Jul 13 16:10:55 localhost sshd[900939]: Invalid user oracle from 149.78.185.54 port 59292 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2023-07-13 16:06:28 (2 years ago)	Malicious activity detected from 149.78.185.54.	Brute-Force
🇩🇪 ipcop.net	2023-07-13 16:06:28 (2 years ago)	Malicious activity detected from 149.78.185.54.	Brute-Force
🇩🇪 ipcop.net	2023-07-13 16:06:28 (2 years ago)	Malicious activity detected from 149.78.185.54.	Brute-Force

Showing 1 to 15 of 36 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.181.108.159

🇹🇼 198.235.24.3

🇺🇸 107.167.34.125

🇵🇰 103.191.118.42

🇫🇷 91.231.89.253

🇻🇳 58.186.20.143

🇵🇱 194.180.48.31

🇺🇸 165.154.163.52

🇺🇸 157.230.12.97

🇺🇸 147.185.132.181

🇦🇪 145.241.123.102

🇮🇳 103.204.167.14

🇻🇳 103.90.227.203

🇹🇭 101.108.131.56

🇬🇧 2a06:4880:8000::b3

🇭🇰 220.246.47.146

🇺🇸 192.178.112.144

🇲🇾 175.144.238.198

🇱🇹 141.98.11.117

🇨🇳 117.72.10.130