JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.197.74.49

185.197.74.49 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 0%: ?

ISP	AEZA GROUP LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS210644
Hostname(s)	wacky-fire.ptr.network
Domain Name	aeza.ru
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.197.74.49

Whois 185.197.74.49

IP Abuse Reports for 185.197.74.49:

This IP address has been reported a total of 94 times from 59 distinct sources. 185.197.74.49 was first reported on September 8th 2025, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2025-09-10 20:08:44 (8 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-09-10 00:08:42 (9 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-09-09 20:08:43 (9 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇮🇳 Parth Maniar	2025-09-09 09:02:03 (9 months ago)	This IP address carried out 524 port scanning attempts on 08-09-2025. For more information or to rep ... show more This IP address carried out 524 port scanning attempts on 08-09-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇪🇸 h3st4k3r	2025-09-09 08:38:34 (9 months ago)	Malicious activity detected from this IP during SSH attempts. VPN: No, Datacenter: No, Organization: ... show more Malicious activity detected from this IP during SSH attempts. VPN: No, Datacenter: No, Organization: AS210644 AEZA INTERNATIONAL LTD, Region: Stockholm, Log: 2025-09-09T10:38:32.812494 02:00 Administracion sshd[2265621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 , Abuse Score: 100, Total Reports: 91 show less	SSH
🇺🇸 bigscoots.com	2025-09-09 08:33:30 (9 months ago)	185.197.74.49 (SE/Sweden/wacky-fire.ptr.network), 5 distributed sshd attacks on account [root] in th ... show more 185.197.74.49 (SE/Sweden/wacky-fire.ptr.network), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Sep 9 03:27:10 17235 sshd[28377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.51.124.122 user=root Sep 9 03:27:12 17235 sshd[28377]: Failed password for root from 158.51.124.122 port 47054 ssh2 Sep 9 03:32:15 17235 sshd[28748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=root Sep 9 03:32:18 17235 sshd[28748]: Failed password for root from 185.197.74.49 port 42956 ssh2 Sep 9 03:33:25 17235 sshd[28852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.51.124.122 user=root IP Addresses Blocked: 158.51.124.122 (US/United States/158.51.124.122.hostodo.com) show less	Brute-Force SSH
🇩🇪 ranklord	2025-09-09 08:29:48 (9 months ago)	2025-09-09T10:29:44.781801+02:00 webo sshd[2595512]: pam_unix(sshd:auth): authentication failure; lo ... show more 2025-09-09T10:29:44.781801+02:00 webo sshd[2595512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 2025-09-09T10:29:47.258769+02:00 webo sshd[2595512]: Failed password for invalid user builder from 185.197.74.49 port 42330 ssh2 ... show less	Brute-Force SSH
🇩🇪 updown.io	2025-09-09 07:53:12 (9 months ago)	2025-09-09T07:43:49.057074+00:00 tls2 sshd[1703375]: Invalid user tomcat from 185.197.74.49 port 503 ... show more 2025-09-09T07:43:49.057074+00:00 tls2 sshd[1703375]: Invalid user tomcat from 185.197.74.49 port 50310 2025-09-09T07:48:10.228183+00:00 tls2 sshd[1703407]: Invalid user master from 185.197.74.49 port 48072 2025-09-09T07:49:24.507429+00:00 tls2 sshd[1703413]: Invalid user dbsql from 185.197.74.49 port 54602 2025-09-09T07:50:39.805836+00:00 tls2 sshd[1703423]: Invalid user glassfish from 185.197.74.49 port 33814 2025-09-09T07:53:12.179208+00:00 tls2 sshd[1703444]: Invalid user king from 185.197.74.49 port 53930 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-09-09 07:49:54 (9 months ago)	(sshd) Failed SSH login from 185.197.74.49 (SE/Sweden/wacky-fire.ptr.network): 5 in the last 3600 se ... show more (sshd) Failed SSH login from 185.197.74.49 (SE/Sweden/wacky-fire.ptr.network): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Sep 9 02:44:54 16702 sshd[12700]: Invalid user tomcat from 185.197.74.49 port 43204 Sep 9 02:44:56 16702 sshd[12700]: Failed password for invalid user tomcat from 185.197.74.49 port 43204 ssh2 Sep 9 02:48:25 16702 sshd[13068]: Invalid user master from 185.197.74.49 port 54712 Sep 9 02:48:27 16702 sshd[13068]: Failed password for invalid user master from 185.197.74.49 port 54712 ssh2 Sep 9 02:49:39 16702 sshd[13156]: Invalid user dbsql from 185.197.74.49 port 35744 show less	Brute-Force SSH
🇮🇳 Parth Maniar	2025-09-09 07:27:42 (9 months ago)	This IP address carried out 82 SSH credential attack (attempts) on 08-09-2025. For more information ... show more This IP address carried out 82 SSH credential attack (attempts) on 08-09-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-09-09 07:07:29 (9 months ago)	(sshd) Failed SSH login from 185.197.74.49 (SE/Sweden/wacky-fire.ptr.network): 5 in the last 3600 se ... show more (sshd) Failed SSH login from 185.197.74.49 (SE/Sweden/wacky-fire.ptr.network): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Sep 9 02:02:30 15370 sshd[6994]: Invalid user oracle from 185.197.74.49 port 39988 Sep 9 02:02:32 15370 sshd[6994]: Failed password for invalid user oracle from 185.197.74.49 port 39988 ssh2 Sep 9 02:06:00 15370 sshd[7235]: Invalid user http from 185.197.74.49 port 41024 Sep 9 02:06:02 15370 sshd[7235]: Failed password for invalid user http from 185.197.74.49 port 41024 ssh2 Sep 9 02:07:15 15370 sshd[7449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=nobody show less	Brute-Force SSH
🇨🇭 N3prena	2025-09-09 06:29:53 (9 months ago)	Sep 9 08:24:53 node106710-www2-cepv-ch sshd[649975]: Failed password for root from 185.197.74.49 po ... show more Sep 9 08:24:53 node106710-www2-cepv-ch sshd[649975]: Failed password for root from 185.197.74.49 port 39544 ssh2 Sep 9 08:27:23 node106710-www2-cepv-ch sshd[650081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=root Sep 9 08:27:24 node106710-www2-cepv-ch sshd[650081]: Failed password for root from 185.197.74.49 port 45592 ssh2 Sep 9 08:29:50 node106710-www2-cepv-ch sshd[650122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=root Sep 9 08:29:52 node106710-www2-cepv-ch sshd[650122]: Failed password for root from 185.197.74.49 port 39476 ssh2 ... show less	Brute-Force SSH
🇭🇰 bing	2025-09-09 06:25:12 (9 months ago)	2025-09-09T14:25:09.449940 vm20250415477 sshd[2233960]: pam_unix(sshd:auth): authentication failure; ... show more 2025-09-09T14:25:09.449940 vm20250415477 sshd[2233960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=root 2025-09-09T14:25:11.407523 vm20250415477 sshd[2233960]: Failed password for root from 185.197.74.49 port 54202 ssh2 ... show less	Brute-Force SSH
🇯🇵 kipfel★	2025-09-09 06:01:34 (9 months ago)	2025-09-09T14:42:46.683262+09:00 xtom-vm-cloud-2c1g-nrt sshd[1470692]: Invalid user proradis from 18 ... show more 2025-09-09T14:42:46.683262+09:00 xtom-vm-cloud-2c1g-nrt sshd[1470692]: Invalid user proradis from 185.197.74.49 port 48904 2025-09-09T14:50:16.273021+09:00 xtom-vm-cloud-2c1g-nrt sshd[1470746]: Invalid user Atlassoftweb from 185.197.74.49 port 43032 2025-09-09T15:01:34.134466+09:00 xtom-vm-cloud-2c1g-nrt sshd[1470895]: Invalid user gbot from 185.197.74.49 port 52356 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-09-09 05:40:29 (9 months ago)	185.197.74.49 (SE/Sweden/wacky-fire.ptr.network), 5 distributed sshd attacks on account [root] in th ... show more 185.197.74.49 (SE/Sweden/wacky-fire.ptr.network), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Sep 9 00:39:42 14204 sshd[1599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.103.141.170 user=root Sep 9 00:39:44 14204 sshd[1599]: Failed password for root from 14.103.141.170 port 45108 ssh2 Sep 9 00:37:50 14204 sshd[1468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=root Sep 9 00:37:53 14204 sshd[1468]: Failed password for root from 185.197.74.49 port 37228 ssh2 Sep 9 00:40:22 14204 sshd[1680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.49 user=root IP Addresses Blocked: 14.103.141.170 (CN/China/-) show less	Brute-Force SSH

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 160.30.160.208

🇺🇸 66.132.186.142

🇳🇱 2a10:1fc0:c:0:dc9c:a8ef:a967:4d7a

🇭🇰 199.45.154.182

🇺🇸 137.155.5.168

🇮🇳 103.70.167.17

🇩🇪 69.5.169.252

🇵🇰 59.103.99.44

🇬🇧 45.82.76.132

🇬🇧 45.82.76.120

🇵🇱 20.215.68.154

🇺🇸 20.169.83.101

🇺🇸 216.73.216.200

🇸🇬 172.217.47.26

🇨🇳 117.35.104.170

🇻🇳 115.79.25.115

🇨🇳 106.38.188.77

🇹🇷 85.105.255.56

🇭🇰 58.152.42.174

🇮🇪 54.78.105.235