JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 61.185.190.42

61.185.190.42 was found in our database!

This IP was reported 1,409 times. Confidence of Abuse is 56%: ?

56%

ISP	CHINANET Shanxi(SN) province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	xa.sn.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 61.185.190.42

Whois 61.185.190.42

IP Abuse Reports for 61.185.190.42:

This IP address has been reported a total of 1,409 times from 564 distinct sources. 61.185.190.42 was first reported on February 19th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-23 06:15:15 (2 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇫🇷 gooko	2026-05-11 13:46:00 (4 weeks ago)	SSH brute-force attack detected by fail2ban jail 'sshd'	Brute-Force SSH
🇫🇷 Fasetech	2026-05-09 07:40:45 (1 month ago)	SecLedge detected suspicious activity. Score: 76.92. Sensor: T-Pot.	Brute-Force Web App Attack
🇫🇷 Fasetech	2026-04-24 09:18:08 (1 month ago)	SecLedge detected suspicious activity. Score: 76.92. Sensor: T-Pot.	Brute-Force Web App Attack
🇸🇬 sh97	2026-04-24 01:33:09 (1 month ago)	rooted: SSH Brute Force from 61.185.190.42 at 2026-04-24 07:03:09 IST	Brute-Force SSH
🇺🇸 slish	2026-04-23 17:22:35 (1 month ago)	SSH honeypot: ssh_auth	Brute-Force SSH
🇧🇷 helix	2026-04-23 06:20:31 (1 month ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇸🇬 sh97	2026-04-22 00:46:40 (1 month ago)	rooted: SSH Brute Force from 61.185.190.42 at 2026-04-22 06:16:39 IST	Brute-Force SSH
🇩🇪 KeksGauner	2026-04-21 09:03:51 (1 month ago)	2026-04-21T08:54:56.497594+00:00 NBG-VS01-WebServer sshd-session[2943446]: pam_unix(sshd:auth): auth ... show more 2026-04-21T08:54:56.497594+00:00 NBG-VS01-WebServer sshd-session[2943446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.185.190.42 2026-04-21T08:54:58.829960+00:00 NBG-VS01-WebServer sshd-session[2943446]: Failed password for invalid user deployer from 61.185.190.42 port 34622 ssh2 2026-04-21T09:03:50.577132+00:00 NBG-VS01-WebServer sshd-session[2946846]: Invalid user steam from 61.185.190.42 port 28217 ... show less	Brute-Force SSH
🇺🇸 Lian	2026-04-16 23:30:07 (1 month ago)	Reported by Fail2Ban: 2026-04-16 09:56:00,351 fail2ban.actions [900]: NOTICE [sshd] Ban 61.1 ... show more Reported by Fail2Ban: 2026-04-16 09:56:00,351 fail2ban.actions [900]: NOTICE [sshd] Ban 61.185.190.42 show less	Brute-Force SSH
🇺🇸 slish	2026-04-16 22:11:11 (1 month ago)	SSH honeypot: ssh_auth	Brute-Force SSH
🇺🇸 paradoxnetworks	2026-04-16 18:11:28 (1 month ago)	2026-04-16T18:04:20.115141+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[781530]: pam_unix(sshd:auth): au ... show more 2026-04-16T18:04:20.115141+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[781530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.185.190.42 2026-04-16T18:04:21.338504+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[781530]: Failed password for invalid user ubuntu from 61.185.190.42 port 4112 ssh2 2026-04-16T18:11:27.413606+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[782116]: Invalid user admin from 61.185.190.42 port 34261 ... show less	Brute-Force SSH
🇵🇱 Chris314	2026-04-16 16:49:19 (1 month ago)	Successful SSH login observed on Cowrie honeypot VPS-POLOGNE-01. Username=root.	Brute-Force SSH
🇳🇱 yvoictra	2026-04-16 16:36:27 (1 month ago)	Apr 16 18:36:26 ananke sshd[694048]: Invalid user dev from 61.185.190.42 port 30549 ...	Brute-Force SSH
Anonymous	2026-04-16 16:32:00 (1 month ago)	Failed login attempt detected by Fail2Ban in ssh jail	Brute-Force

Showing 1 to 15 of 1409 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 106.4.161.229

🇮🇹 91.80.169.174

🇩🇪 83.147.209.20

🇦🇱 79.106.35.227

🇺🇸 34.181.218.248

🇷🇴 2.57.122.238

🇰🇷 1.214.214.114

🇩🇪 209.50.190.28

🇬🇧 193.8.186.29

🇮🇩 103.146.202.84

🇫🇷 91.231.89.129

🇨🇳 60.29.128.122

🇮🇳 49.37.249.100

🇭🇰 45.196.236.141

🇩🇪 213.209.159.11

🇺🇸 193.36.224.180

🇧🇩 161.248.189.72

🇺🇸 138.68.243.18

🇭🇰 123.58.210.86

🇳🇱 88.210.63.122