JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 158.49.70.49

158.49.70.49 was found in our database!

This IP was reported 189 times. Confidence of Abuse is 100%: ?

100%

ISP	Universidad de Extremadura
Usage Type	Fixed Line ISP
ASN	AS766
Domain Name	unex.es
Country	🇪🇸 Spain
City	Badajoz, Extremadura

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 158.49.70.49

Whois 158.49.70.49

IP Abuse Reports for 158.49.70.49:

This IP address has been reported a total of 189 times from 121 distinct sources. 158.49.70.49 was first reported on May 22nd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-23 12:55:08 (1 week ago)	2026-05-23T12:55:05.615318+00:00 xmr sshd[134517]: pam_unix(sshd:auth): authentication failure; logn ... show more 2026-05-23T12:55:05.615318+00:00 xmr sshd[134517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 user=root 2026-05-23T12:55:07.858567+00:00 xmr sshd[134517]: Failed password for root from 158.49.70.49 port 47678 ssh2 ... show less	Brute-Force SSH
🇺🇸 knock	2026-05-23 12:48:53 (1 week ago)	Knock-Knock honeypot brute-force: SSH (11 total hits)	Brute-Force SSH
🇺🇸 Veslys	2026-05-23 12:39:09 (1 week ago)	2026-05-23T18:09:07.398150+05:30 ittifakordusu sshd-session[3537347]: Invalid user aroot from 158.49 ... show more 2026-05-23T18:09:07.398150+05:30 ittifakordusu sshd-session[3537347]: Invalid user aroot from 158.49.70.49 port 39170 2026-05-23T18:09:07.399693+05:30 ittifakordusu sshd-session[3537347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 2026-05-23T18:09:09.432099+05:30 ittifakordusu sshd-session[3537347]: Failed password for invalid user aroot from 158.49.70.49 port 39170 ssh2 ... show less	Brute-Force SSH
🇫🇮 SamJUK	2026-05-23 12:39:08 (1 week ago)	2026-05-23T12:35:53.067434+00:00 hostname sshd[383524]: pam_unix(sshd:auth): authentication failure; ... show more 2026-05-23T12:35:53.067434+00:00 hostname sshd[383524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 user=root 2026-05-23T12:35:54.828800+00:00 hostname sshd[383524]: Failed password for root from 158.49.70.49 port 56534 ssh2 2026-05-23T12:39:06.063741+00:00 hostname sshd[383613]: Invalid user aroot from 158.49.70.49 port 56806 2026-05-23T12:39:06.065935+00:00 hostname sshd[383613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 2026-05-23T12:39:07.988035+00:00 hostname sshd[383613]: Failed password for invalid user aroot from 158.49.70.49 port 56806 ssh2 ... show less	Brute-Force SSH
🇰🇷 hanb.jp	2026-05-23 12:23:17 (1 week ago)	May 23 12:19:51 v4bgp sshd[1746316]: Failed password for root from 158.49.70.49 port 44412 ssh2 May ... show more May 23 12:19:51 v4bgp sshd[1746316]: Failed password for root from 158.49.70.49 port 44412 ssh2 May 23 12:23:15 v4bgp sshd[1746396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 user=root May 23 12:23:17 v4bgp sshd[1746396]: Failed password for root from 158.49.70.49 port 60206 ssh2 ... show less	Brute-Force SSH
🇧🇷 helix	2026-05-23 12:22:41 (1 week ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇺🇸 Veslys	2026-05-23 12:22:36 (1 week ago)	2026-05-23T17:49:10.688261+05:30 ittifakordusu sshd-session[3524186]: Failed password for root from ... show more 2026-05-23T17:49:10.688261+05:30 ittifakordusu sshd-session[3524186]: Failed password for root from 158.49.70.49 port 35062 ssh2 2026-05-23T17:52:34.279679+05:30 ittifakordusu sshd-session[3526411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 user=root 2026-05-23T17:52:35.969803+05:30 ittifakordusu sshd-session[3526411]: Failed password for root from 158.49.70.49 port 54228 ssh2 ... show less	Brute-Force SSH
🇩🇪 NxtGenIT	2026-05-23 11:59:47 (1 week ago)	Cowrie Honeypot hit, Event Type: cowrie.login.failed, Username: user1, Password: user1234	Brute-Force
🇩🇪 AetherFox	2026-05-23 11:50:52 (1 week ago)	AetherFox VoidGuard detected: May 23 13:47:31 heimdall sshd[338703]: pam_unix(sshd:auth): authentica ... show more AetherFox VoidGuard detected: May 23 13:47:31 heimdall sshd[338703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 May 23 13:47:33 heimdall sshd[338703]: Failed password for invalid user smart from 158.49.70.49 port 41268 ssh2 May 23 13:50:49 heimdall sshd[338729]: Invalid user opc from 158.49.70.49 port 45284 May 23 13:50:49 heimdall sshd[338729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 May 23 13:50:51 heimdall sshd[338729]: Failed password for invalid user opc from 158.49.70.49 port 45284 ssh2 ... show less	Brute-Force SSH
🇪🇸 WebTejo	2026-05-23 11:35:30 (1 week ago)	Detected multiple authentication failures and invalid user attempts from IP address 158.49.70.49 on ... show more Detected multiple authentication failures and invalid user attempts from IP address 158.49.70.49 on [ES] Sapphire Node. show less	Brute-Force SSH
🇩🇪 AetherFox	2026-05-23 11:31:30 (1 week ago)	AetherFox VoidGuard detected: May 23 13:27:59 heimdall sshd[338497]: pam_unix(sshd:auth): authentica ... show more AetherFox VoidGuard detected: May 23 13:27:59 heimdall sshd[338497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 user=root May 23 13:28:02 heimdall sshd[338497]: Failed password for root from 158.49.70.49 port 46656 ssh2 May 23 13:31:27 heimdall sshd[338546]: Invalid user dino from 158.49.70.49 port 45818 May 23 13:31:27 heimdall sshd[338546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.49.70.49 May 23 13:31:29 heimdall sshd[338546]: Failed password for invalid user dino from 158.49.70.49 port 45818 ssh2 ... show less	Brute-Force SSH
🇮🇹 alph44	2026-05-23 11:30:11 (1 week ago)	SSH brute force attack detected: 6 failed attempts	Brute-Force
🇩🇪 NxtGenIT	2026-05-23 11:27:29 (1 week ago)	Cowrie Honeypot hit, Event Type: cowrie.command.input, Command: CMD: df -h \| head -n 2 \| awk 'FNR == ... show more Cowrie Honeypot hit, Event Type: cowrie.command.input, Command: CMD: df -h \| head -n 2 \| awk 'FNR == 2 {print $2;}' show less	Brute-Force
🇹🇷 Threat.live	2026-05-23 11:25:02 (1 week ago)	Suspicious Connection Attempts	Brute-Force
🇩🇪 Honeypot-EU-Fru	2026-05-23 11:24:00 (1 week ago)	May 23 13:16:44 [redacted] sshd[2931520]: Failed password for root from 158.49.70.49 port 46958 ssh2 ... show more May 23 13:16:44 [redacted] sshd[2931520]: Failed password for root from 158.49.70.49 port 46958 ssh2 May 23 13:23:59 [redacted] sshd[2934702]: Invalid user postgres from 158.49.70.49 port 49276 ... show less	Brute-Force SSH

Showing 31 to 45 of 189 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.116

🇮🇳 150.242.23.233

🇺🇸 147.185.132.23

🇩🇪 69.5.169.19

🇳🇱 45.148.10.230

🇳🇱 213.177.179.62

🇩🇪 194.88.98.102

🇮🇩 103.98.176.164

🇬🇧 87.236.176.196

🇺🇸 74.125.42.146

🇫🇷 51.159.149.103

🇷🇴 2.57.122.177

🇺🇸 209.141.47.217

🇦🇺 149.118.68.211

🇧🇬 95.169.202.102

🇮🇷 93.115.144.49

🇩🇪 80.158.109.51

🇸🇬 47.128.60.57

🇧🇬 5.188.206.46

🇸🇬 2404:6800:4003:c20::125