JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 149.28.149.208

149.28.149.208 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 100%: ?

100%

ISP	Vultr Holdings, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS20473
Hostname(s)	149.28.149.208.vultrusercontent.com
Domain Name	vultr.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 149.28.149.208

Whois 149.28.149.208

IP Abuse Reports for 149.28.149.208:

This IP address has been reported a total of 31 times from 25 distinct sources. 149.28.149.208 was first reported on June 6th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 gtheo99	2026-06-13 02:32:01 (5 hours ago)	(sshd) Failed SSH login from 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com): 2 in ... show more (sshd) Failed SSH login from 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com): 2 in the last 900 secs show less	SSH Brute-Force
🇩🇪 BiancaNL	2026-06-13 02:15:57 (6 hours ago)	Fail2Ban: jail=sshd on <fqdn> (port=<port>)	Brute-Force
🇬🇧 andypiper	2026-06-13 01:02:03 (7 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇨🇿 lp	2026-06-13 00:19:08 (8 hours ago)	SSH Brute force: 6 attempts were recorded from 149.28.149.208 2026-06-13T00:45:54+02:00 Disconnected ... show more SSH Brute force: 6 attempts were recorded from 149.28.149.208 2026-06-13T00:45:54+02:00 Disconnected from authenticating user root 149.28.149.208 port 41648 [preauth] 2026-06-13T00:57:03+02:00 Disconnected from authenticating user root 149.28.149.208 port 34668 [preauth] 2026-06-13T01:04:39+02:00 Invalid user amule from 149.28.149.208 port 41262 2026-06-13T01:20:07+02:00 Invalid user testuser2 from 149.28.149.208 port 42088 2026-06-13T01:27:25+02:00 Invalid user informatica from 149.28.149.208 port 49834 2026-06-13T01:34:43+02:00 Disconnected from authenticating user root 149.28.149.208 port 59412 [preauth] show less	Brute-Force SSH
🇩🇪 schnism	2026-06-13 00:13:01 (8 hours ago)	2026-06-13T02:13:00.812126+02:00 sfdx sshd[141708]: Invalid user sri from 149.28.149.208 port 55958 ... show more 2026-06-13T02:13:00.812126+02:00 sfdx sshd[141708]: Invalid user sri from 149.28.149.208 port 55958 2026-06-13T02:13:01.008753+02:00 sfdx sshd[141708]: Disconnected from invalid user sri 149.28.149.208 port 55958 [preauth] ... show less	Brute-Force SSH
Anonymous	2026-06-13 00:12:41 (8 hours ago)	2026-06-13T02:12:37.315089+02:00 host.nilsbossaller.de sshd[968248]: pam_unix(sshd:auth): authentica ... show more 2026-06-13T02:12:37.315089+02:00 host.nilsbossaller.de sshd[968248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 2026-06-13T02:12:39.676733+02:00 host.nilsbossaller.de sshd[968248]: Failed password for invalid user sri from 149.28.149.208 port 44320 ssh2 2026-06-13T02:12:41.033902+02:00 host.nilsbossaller.de sshd[968248]: Disconnected from invalid user sri 149.28.149.208 port 44320 [preauth] ... show less	Brute-Force SSH
🇩🇪 gbzret4d	2026-06-13 00:08:50 (8 hours ago)	Blocked by CrowdSec. Scenario: crowdsecurity/ssh-bf	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-12 23:00:03 (9 hours ago)	(sshd) Failed SSH login from 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com): 5 in ... show more (sshd) Failed SSH login from 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 12 17:42:41 15616 sshd[27726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 user=root Jun 12 17:42:43 15616 sshd[27726]: Failed password for root from 149.28.149.208 port 46926 ssh2 Jun 12 17:56:18 15616 sshd[3650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 user=root Jun 12 17:56:20 15616 sshd[3650]: Failed password for root from 149.28.149.208 port 54858 ssh2 Jun 12 17:59:59 15616 sshd[5633]: Invalid user alex from 149.28.149.208 port 60992 show less	Brute-Force SSH
🇺🇸 Tect.host	2026-06-12 21:24:15 (11 hours ago)	Brute-force SSH server detected by Fail2ban	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-12 21:16:59 (11 hours ago)	Jun 12 15:02:41 b146-60 sshd[177724]: Failed password for root from 149.28.149.208 port 53644 ssh2 J ... show more Jun 12 15:02:41 b146-60 sshd[177724]: Failed password for root from 149.28.149.208 port 53644 ssh2 Jun 12 15:16:55 b146-60 sshd[177917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 user=root Jun 12 15:16:57 b146-60 sshd[177917]: Failed password for root from 149.28.149.208 port 60488 ssh2 ... show less	Brute-Force SSH
🇨🇭 Boxis.net NOC	2026-06-12 19:25:10 (13 hours ago)	(sshd) Failed SSH login from 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com): 5 in ... show more (sshd) Failed SSH login from 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 12 20:55:49 da057 sshd[1959332]: Invalid user patrick from 149.28.149.208 port 43630 Jun 12 21:06:47 da057 sshd[1972401]: Invalid user feedback from 149.28.149.208 port 44138 Jun 12 21:10:28 da057 sshd[1976938]: Invalid user tempuser from 149.28.149.208 port 49082 Jun 12 21:13:59 da057 sshd[1979346]: Invalid user frappeuser from 149.28.149.208 port 49336 Jun 12 21:25:01 da057 sshd[1993376]: Invalid user maximo from 149.28.149.208 port 50374 show less	Port Scan
🇩🇪 sh97	2026-06-12 19:09:14 (13 hours ago)	DE02-HBRR-STOR: SSH Brute Force from 149.28.149.208 at 2026-06-13 00:37:00 IST	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-12 18:45:19 (13 hours ago)	149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com), 5 distributed sshd attacks on acc ... show more 149.28.149.208 (SG/Singapore/149.28.149.208.vultrusercontent.com), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 12 13:37:22 14601 sshd[31103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 user=root Jun 12 13:37:25 14601 sshd[31103]: Failed password for root from 149.28.149.208 port 36176 ssh2 Jun 12 13:45:06 14601 sshd[3413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 user=root Jun 12 13:35:38 14601 sshd[30023]: Failed password for root from 113.172.124.25 port 56720 ssh2 Jun 12 13:35:36 14601 sshd[30023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.124.25 user=root IP Addresses Blocked: show less	Brute-Force SSH
Anonymous	2026-06-12 18:45:09 (13 hours ago)	Jun 12 18:37:33 f2b auth.info sshd[24791]: Failed password for root from 149.28.149.208 port 57138 s ... show more Jun 12 18:37:33 f2b auth.info sshd[24791]: Failed password for root from 149.28.149.208 port 57138 ssh2 Jun 12 18:41:23 f2b auth.info sshd[24797]: Failed password for root from 149.28.149.208 port 55028 ssh2 Jun 12 18:45:08 f2b auth.info sshd[24811]: Failed password for root from 149.28.149.208 port 56924 ssh2 ... show less	Brute-Force SSH
🇧🇷 aweher	2026-06-12 17:19:16 (15 hours ago)	2026-06-12T17:15:27.415162+00:00 r1.sp1.as64172.enrut.ar sshd[4008015]: pam_unix(sshd:auth): authent ... show more 2026-06-12T17:15:27.415162+00:00 r1.sp1.as64172.enrut.ar sshd[4008015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.28.149.208 2026-06-12T17:15:29.590335+00:00 r1.sp1.as64172.enrut.ar sshd[4008015]: Failed password for invalid user drupal7 from 149.28.149.208 port 51096 ssh2 2026-06-12T17:19:14.515783+00:00 r1.sp1.as64172.enrut.ar sshd[4008024]: Invalid user noc from 149.28.149.208 port 49420 ... show less	Brute-Force SSH

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 185.211.5.162

🇫🇷 143.244.57.90

🇧🇷 129.159.56.14

🇱🇹 81.30.98.44

🇯🇵 56.155.120.147

🇺🇸 38.141.62.68

🇺🇸 34.227.177.222

🇩🇪 34.179.178.103

🇨🇳 1.92.207.126

🇮🇳 223.223.136.248

🇧🇷 201.140.253.81

🇧🇦 185.65.107.14

🇸🇬 103.250.11.63

🇺🇸 66.132.172.132

🇺🇸 8.9.91.133

🇨🇦 85.217.149.4

🇷🇺 80.69.186.68

🇺🇸 52.34.17.200

🇧🇷 45.205.1.242

🇳🇱 45.156.87.252