IP Address

185.250.235.150

IPv4 Public
CZ CZ
AS206548
ZCOM.cz s.r.o
555 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
60% Confidence
555 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
CZ
CZ Location
ZCOM.cz s.r.o ASN 206548
555 Reports
Honeypot Data Source

Maximum Danger

IP 185.250.235.150, registered to ZCOM.cz s.r.o in the Czech Republic under ASN 206548, presents a critical threat level of 10/10 based on automated honeypot detections, with this single IP accumulating 555 total abuse reports focused on SSH brute-force activity during September 2025. Despite the maximum threat classification, the reported activity frequency stands at zero, suggesting this address launches severe but intermittent attacks rather than sustained high-volume traffic.

All 20 most recent threat reports attributed to 185.250.235.150 consistently identify SSH brute-force attempts as the attack vector, detected exclusively through automated honeypot sensors across 20 independent report sources. The concentration of this activity within a single month indicates a deliberate, targeted campaign rather than opportunistic scanning, with Czech Republic network infrastructure serving as the origination point for what appears to be systematic credential-guessing operations against exposed SSH services worldwide.

SSH brute-force attacks represent one of the most common initial-access techniques employed by threat actors to compromise servers. By rapidly cycling through username and password combinations, this IP attempts to guess valid SSH credentials and gain unauthorized shell access to vulnerable systems. Successful compromise grants attackers persistent foothold, enabling data exfiltration, malware deployment, or use of the compromised host as a staging point for further network intrusion, making any exposed SSH service an immediate target for this address.

Administrators should block 185.250.235.150 at the network perimeter immediately and monitor logs for any matching connection attempts. Hardening SSH configurations is strongly advised: disable password-based authentication in favour of asymmetric key pairs, change the default port from 22, implement tools such as fail2ban to automatically ban repeat offenders, and ensure root login is disabled. Regular auditing of authentication logs and enforcement of strong, unique credentials across all SSH-accessible systems will significantly reduce exposure to credential-guessing campaigns originating from this or similar high-threat addresses.

More threatening than 90% of monitored IPs

Threat Categories

SSH 30

Technical Details

SSH attacks attempt to gain server access through password guessing or exploitation of SSH vulnerabilities.

Recommended Mitigations

Use key-based authentication, change default ports, implement fail2ban, and disable root login.

High-Risk Network Association

This IP belongs to a network (ASN 206548) with elevated threat levels. The ISP ZCOM.cz s.r.o hosts multiple reported malicious addresses, suggesting systemic security issues or permissive policies.

Network-wide patterns may indicate this is part of a larger malicious infrastructure.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 59% High Confidence

Confidence History

8. Sep 2025
60% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
10 of 555 shown

Technical Details

Basic Information

IP Address
185.250.235.150
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
CZ CZ
ASN
AS206548
ISP
ZCOM.cz s.r.o

DNS Information

Reverse DNS
mxt-hw1.zcom.cz
PTR Record
Yes
Connection Type
Static

Statistics

Total Reports
555
First Reported
8 Sep 2025
Last Reported
8 Sep 2025, 12:07

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS206548
ZCOM.cz s.r.o
CZ CZ

Network Threat Assessment

10/10
This network has a high threat level with significant malicious activity reported across multiple IPs.

Network Statistics

1
Total IPs Monitored
557
Total Reports
557
Reports per IP

Network Context

This IP address belongs to ZCOM.cz s.r.o (AS206548), which manages 1 IP addresses in our monitoring system. Out of these, 557 have been reported for suspicious activities, resulting in a network-wide threat level of 10/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

90 %

Global Threat Ranking

This IP is more threatening than 90% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 216,881 reported IPs worldwide

Threat Level 10/10 avg: 5.5 ++
Total Reports 555 avg: 22 ++

Geographic Comparison

Compared against 191 IPs in CZ

Threat Level 10/10 country avg: 5.7 ++
Total Reports 555 country avg: 20 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

203,327 threat incidents tracked globally • Last 24h: 19,059 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    42,015 20.7%
  2. 02
    IN
    India IN
    32,516 16%
  3. 03
    CN
    China CN
    27,367 13.5%
  4. 04
    BR
    Brazil BR
    10,998 5.4%
  5. 05
    DE
    Germany DE
    7,700 3.8%
  6. 06
    SG
    Singapore SG
    6,799 3.3%
  7. 07
    ID
    Indonesia ID
    6,013 3%
  8. 08
    PK
    Pakistan PK
    5,308 2.6%
  9. 09
    RU
    Russia RU
    5,155 2.5%
  10. 10
    NL
    Netherlands NL
    4,678 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs with similar threat level and confidence scores.

15 Related IPs
9.8/10 Avg Threat
60% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
85.105.205.63 10/10
Confidence 60%
Reports 5,965
Location TR TR
14 Feb 2026
146.70.178.116 10/10
Confidence 60%
Reports 2,593
Location DE DE
28 Dec 2025
181.49.161.173 10/10
Confidence 60%
Reports 1,692
Location CO CO
4 Mar 2026
185.11.61.252 10/10
Confidence 60%
Reports 1,291
Location RU RU
6 Jan 2026
207.46.224.85 10/10
Confidence 60%
Reports 1,045
Location SG SG
22 Jan 2026
77.83.39.131 7/10
Confidence 60%
Reports 1,040
Location UA UA
5 Mar 2026
27.79.41.119 10/10
Confidence 60%
Reports 953
Location VN VN
27 Dec 2025
15.235.122.237 10/10
Confidence 60%
Reports 887
Location CA CA
3 Sep 2025
45.142.193.122 10/10
Confidence 60%
Reports 853
Location RO RO
27 Jan 2026
198.23.159.62 10/10
Confidence 60%
Reports 838
Location US US
3 Sep 2025
213.209.150.239 10/10
Confidence 60%
Reports 761
Location DE DE
15 Sep 2025
209.15.168.138 10/10
Confidence 60%
Reports 626
Location CA CA
5 Sep 2025
80.95.195.71 10/10
Confidence 60%
Reports 606
Location GB GB
3 Sep 2025
87.121.84.6 10/10
Confidence 60%
Reports 573
Location US US
18 Feb 2026
34.68.34.64 10/10
Confidence 60%
Reports 562
Location US US
17 Mar 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "185.250.235.150",
    "threat_level": 10,
    "confidence_score": 60,
    "total_reports": 555,
    "country_code": "CZ",
    "isp_name": "ZCOM.cz s.r.o",
    "asn": "206548",
    "first_reported": "2025-09-08 06:17:48",
    "last_reported": "2025-09-08 12:07:00",
    "exported_at": "2026-06-17T19:03:38+02:00",
    "source": "https://reportedip.de/ip/185.250.235.150/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses