JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 134.209.221.75

134.209.221.75 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 45%: ?

45%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 134.209.221.75

Whois 134.209.221.75

IP Abuse Reports for 134.209.221.75:

This IP address has been reported a total of 8 times from 8 distinct sources. 134.209.221.75 was first reported on March 3rd 2026, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-18 01:36:27 (6 hours ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 Lino Project	2026-06-18 01:30:35 (6 hours ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/postfix-non-smtp-command	Hacking
🇦🇹 centurion	2026-06-18 01:27:12 (6 hours ago)	Unauthorized attempt on coresecret [1177/tcp] Source port: 61002 TTL: 246 Packet length: 44 TOS: 0x0 ... show more Unauthorized attempt on coresecret [1177/tcp] Source port: 61002 TTL: 246 Packet length: 44 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sumnone	2026-06-18 01:09:47 (6 hours ago)	Port probing on unauthorized port 4000	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-06-18 00:57:18 (6 hours ago)	tcp/8000	Port Scan
🇺🇸 xmission.com	2026-06-18 00:40:32 (6 hours ago)	Blocked by UFW (TCP on 18789) Source port: 61000 TTL: 241 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 18789) Source port: 61000 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 134.209.221.75) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇰🇷 Woodie	2026-03-20 15:01:49 (2 months ago)	2026-03-20T10:01:41.689872-05:00 debian sshd[845967]: pam_unix(sshd:auth): authentication failure; l ... show more 2026-03-20T10:01:41.689872-05:00 debian sshd[845967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.221.75 user=root 2026-03-20T10:01:43.626141-05:00 debian sshd[845967]: Failed password for root from 134.209.221.75 port 52252 ssh2 2026-03-20T10:01:43.122824-05:00 debian sshd[845974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.221.75 user=root 2026-03-20T10:01:45.666124-05:00 debian sshd[845974]: Failed password for root from 134.209.221.75 port 33412 ssh2 2026-03-20T10:01:48.489013-05:00 debian sshd[845982]: Invalid user admin from 134.209.221.75 port 52280 ... show less	Brute-Force SSH
🇫🇷 masterguru	2026-03-03 11:22:52 (3 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 134.209.221.75 (US/United States/-): ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 134.209.221.75 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 164.90.238.217

🇳🇱 89.21.67.164

🇺🇸 66.132.186.207

🇩🇪 193.124.20.254

🇧🇷 192.178.95.27

🇮🇳 165.22.221.213

🇭🇰 144.48.241.162

🇨🇳 111.61.177.190

🇺🇸 108.71.191.136

🇺🇸 104.252.175.172

🇮🇳 103.251.143.14

🇱🇹 81.30.98.236

🇺🇸 66.132.172.36

🇳🇱 45.148.10.151

🇨🇳 43.138.214.20

🇫🇷 193.251.68.89

🇺🇸 165.227.209.27

🇺🇸 137.184.27.190

🇻🇳 123.19.194.68

🇨🇳 119.167.206.194