JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.194.200.49

159.194.200.49 was found in our database!

This IP was reported 105 times. Confidence of Abuse is 100%: ?

100%

ISP	Beget LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS198610
Domain Name	beget.ru
Country	🇷🇺 Russian Federation
City	Saint Petersburg, St.-Petersburg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.194.200.49

Whois 159.194.200.49

IP Abuse Reports for 159.194.200.49:

This IP address has been reported a total of 105 times from 72 distinct sources. 159.194.200.49 was first reported on June 5th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇬 OHOST.BG	2026-06-06 01:44:52 (1 day ago)	2026-06-06T04:43:04.440462+03:00 fastdl sshd[755774]: Invalid user admin2 from 159.194.200.49 port 4 ... show more 2026-06-06T04:43:04.440462+03:00 fastdl sshd[755774]: Invalid user admin2 from 159.194.200.49 port 41844 2026-06-06T04:43:04.449746+03:00 fastdl sshd[755774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 2026-06-06T04:43:06.334673+03:00 fastdl sshd[755774]: Failed password for invalid user admin2 from 159.194.200.49 port 41844 ssh2 2026-06-06T04:44:48.800519+03:00 fastdl sshd[755881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 user=root 2026-06-06T04:44:51.298899+03:00 fastdl sshd[755881]: Failed password for root from 159.194.200.49 port 45098 ssh2 ... show less	Brute-Force SSH
🇩🇪 markawes	2026-06-06 01:44:28 (1 day ago)	[markis] Auto banned by Fail2Ban. Reason: SSH brute force / repeated failed login attempts. Evidence ... show more [markis] Auto banned by Fail2Ban. Reason: SSH brute force / repeated failed login attempts. Evidence: 2026-06-06T01:40:52.648720+00:00 sshd-session[1087704]: Failed password for invalid user administrator from 159.194.200.49 port 47306 ssh2 2026-06-06T01:42:39.329549+00:00 sshd-session[1087779]: Invalid user zenith from 159.194.200.49 port 33326 2026-06-06T01:42:39.333149+00:00 sshd-session[1087779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 2026-06-06T01:42:41.348087+00:00 sshd-session[1087779]: Failed password for invalid user zenith from 159.194.200.49 port 33326 ssh2 2026-06-06T01:44:26.142118+00:00 sshd-session[1087787]: Invalid user admin2 from 159.194.200.49 port 33922 show less	Brute-Force SSH
Anonymous	2026-06-06 01:42:15 (1 day ago)	2026-06-06T02:37:15.598573+01:00 vps sshd[2160565]: pam_unix(sshd:auth): authentication failure; log ... show more 2026-06-06T02:37:15.598573+01:00 vps sshd[2160565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 2026-06-06T02:37:17.236963+01:00 vps sshd[2160565]: Failed password for invalid user administrator from 159.194.200.49 port 41546 ssh2 2026-06-06T02:42:14.250874+01:00 vps sshd[2167300]: Invalid user zenith from 159.194.200.49 port 60694 ... show less	SSH
🇺🇸 m2jest1c	2026-06-06 01:30:42 (1 day ago)	Jun 6 01:30:41 instance1 sshd[1330421]: Disconnected from invalid user administrator 159.194.200.49 ... show more Jun 6 01:30:41 instance1 sshd[1330421]: Disconnected from invalid user administrator 159.194.200.49 port 45122 [preauth] ... show less	Brute-Force SSH
🇩🇪 marcel-knorr.de	2026-06-06 00:30:09 (1 day ago)	[MK-VM4] SSH login failed	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-06 00:28:18 (1 day ago)	(sshd) Failed SSH login from 159.194.200.49 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Direct ... show more (sshd) Failed SSH login from 159.194.200.49 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 5 19:22:15 13766 sshd[15157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 user=root Jun 5 19:22:17 13766 sshd[15157]: Failed password for root from 159.194.200.49 port 45014 ssh2 Jun 5 19:25:57 13766 sshd[16977]: Invalid user gecko from 159.194.200.49 port 35330 Jun 5 19:25:58 13766 sshd[16977]: Failed password for invalid user gecko from 159.194.200.49 port 35330 ssh2 Jun 5 19:28:09 13766 sshd[18276]: Invalid user sina from 159.194.200.49 port 50562 show less	Brute-Force SSH
🇩🇪 YumXac	2026-06-06 00:27:51 (1 day ago)	2026-06-06T02:25:40.699232+02:00 pve-osd-101 sshd[3335664]: Invalid user gecko from 159.194.200.49 p ... show more 2026-06-06T02:25:40.699232+02:00 pve-osd-101 sshd[3335664]: Invalid user gecko from 159.194.200.49 port 58100 2026-06-06T02:25:40.701217+02:00 pve-osd-101 sshd[3335664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 2026-06-06T02:25:40.706971+02:00 pve-osd-101 sshd[3335664]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 user=gecko 2026-06-06T02:25:42.716731+02:00 pve-osd-101 sshd[3335664]: Failed password for invalid user gecko from 159.194.200.49 port 58100 ssh2 2026-06-06T02:25:44.348827+02:00 pve-osd-101 sshd[3335664]: Disconnected from invalid user gecko 159.194.200.49 port 58100 [preauth] 2026-06-06T02:27:51.489018+02:00 pve-osd-101 sshd[3335716]: Invalid user sina from 159.194.200.49 port 34972 ... show less	Brute-Force SSH
🇷🇺 iStitch07	2026-06-06 00:26:48 (1 day ago)	[R] SSH Brute-force	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-05 23:24:43 (1 day ago)	(sshd) Failed SSH login from 159.194.200.49 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Direct ... show more (sshd) Failed SSH login from 159.194.200.49 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 5 23:13:38 23159 sshd[3448]: Invalid user git from 159.194.200.49 port 41434 Jun 5 23:13:40 23159 sshd[3448]: Failed password for invalid user git from 159.194.200.49 port 41434 ssh2 Jun 5 23:22:47 23159 sshd[8202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 user=root Jun 5 23:22:49 23159 sshd[8202]: Failed password for root from 159.194.200.49 port 60078 ssh2 Jun 5 23:24:29 23159 sshd[9140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 user=root show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-06-05 22:24:21 (1 day ago)	Jun 6 00:18:57 bongen-tmp-rt.local sshd[1326338]: Disconnected from authenticating user root 159.19 ... show more Jun 6 00:18:57 bongen-tmp-rt.local sshd[1326338]: Disconnected from authenticating user root 159.194.200.49 port 44928 [preauth] Jun 6 00:20:43 bongen-tmp-rt.local sshd[1326557]: Disconnected from authenticating user root 159.194.200.49 port 60536 [preauth] Jun 6 00:22:32 bongen-tmp-rt.local sshd[1326751]: Disconnected from authenticating user root 159.194.200.49 port 40590 [preauth] Jun 6 00:24:20 bongen-tmp-rt.local sshd[1326945]: Invalid user es from 159.194.200.49 port 35278 Jun 6 00:24:20 bongen-tmp-rt.local sshd[1326945]: Disconnected from invalid user es 159.194.200.49 port 35278 [preauth] show less	Brute-Force
🇺🇸 COMPLEX	2026-06-05 22:22:57 (1 day ago)	Banned by Multi Agent · node …fak2 · attempts=5 · SSH brute-force / scan	Brute-Force SSH
🇫🇷 adnscom.net	2026-06-05 22:06:16 (1 day ago)	IPS trigger: Brute force SSH scanning/attack	Brute-Force SSH
Anonymous	2026-06-05 22:01:29 (1 day ago)	Jun 5 22:01:26 scw-6657dc sshd[25453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Jun 5 22:01:26 scw-6657dc sshd[25453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 Jun 5 22:01:26 scw-6657dc sshd[25453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.200.49 Jun 5 22:01:28 scw-6657dc sshd[25453]: Failed password for invalid user home from 159.194.200.49 port 55052 ssh2 ... show less	Brute-Force SSH
🇫🇷 paradoxnetworks	2026-06-05 21:14:46 (1 day ago)	2026-06-05T21:09:26.764501+00:00 edge-thn-par02.int.pdx.net.uk sshd[139094]: Invalid user giulia fro ... show more 2026-06-05T21:09:26.764501+00:00 edge-thn-par02.int.pdx.net.uk sshd[139094]: Invalid user giulia from 159.194.200.49 port 49048 2026-06-05T21:11:13.949954+00:00 edge-thn-par02.int.pdx.net.uk sshd[139206]: Invalid user mohsen from 159.194.200.49 port 33886 2026-06-05T21:14:45.933049+00:00 edge-thn-par02.int.pdx.net.uk sshd[139439]: Invalid user testftp from 159.194.200.49 port 33242 ... show less	Brute-Force SSH
🇫🇮 Kotiacat_one	2026-06-05 21:04:59 (1 day ago)	2026-06-06T00:04:58.028684+03:00 kotia sshd-session[192062]: Invalid user tao from 159.194.200.49 po ... show more 2026-06-06T00:04:58.028684+03:00 kotia sshd-session[192062]: Invalid user tao from 159.194.200.49 port 38240 ... show less	Brute-Force SSH

Showing 1 to 15 of 105 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 129.222.203.206

🇳🇱 5.187.35.142

🇬🇧 2a02:4780:a:1856:0:f3c:4155:1

🇷🇴 193.32.162.16

🇨🇦 159.203.44.105

🇺🇸 43.173.66.18

🇺🇸 35.230.1.38

🇻🇳 14.177.216.91

🇭🇰 8.218.59.157

🇮🇳 171.61.20.182

🇧🇷 166.0.102.195

🇺🇸 100.29.192.11

🇷🇴 80.94.92.182

🇺🇸 74.129.77.90

🇺🇸 43.166.245.172

🇺🇸 43.153.73.200

🇫🇷 2a02:4780:27:1333:0:3492:be2a:1

🇮🇩 2a02:4780:6:1734:0:701:701a:1

🇨🇳 221.226.232.25

🇩🇪 217.24.238.120