JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.42.196.130

152.42.196.130 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.42.196.130

Whois 152.42.196.130

IP Abuse Reports for 152.42.196.130:

This IP address has been reported a total of 161 times from 118 distinct sources. 152.42.196.130 was first reported on February 4th 2026, and the most recent report was 3 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 Epic29	2026-06-28 20:45:41 (3 minutes ago)	2026-06-29T06:40:00.865986+10:00 sleep-salami sshd[1123951]: Disconnected from authenticating user r ... show more 2026-06-29T06:40:00.865986+10:00 sleep-salami sshd[1123951]: Disconnected from authenticating user root 152.42.196.130 port 38572 [preauth] 2026-06-29T06:41:54.546499+10:00 sleep-salami sshd[1123977]: Invalid user test from 152.42.196.130 port 60220 2026-06-29T06:41:54.646068+10:00 sleep-salami sshd[1123977]: Disconnected from invalid user test 152.42.196.130 port 60220 [preauth] 2026-06-29T06:43:51.026876+10:00 sleep-salami sshd[1123985]: Disconnected from authenticating user root 152.42.196.130 port 50670 [preauth] 2026-06-29T06:45:40.185909+10:00 sleep-salami sshd[1124011]: Disconnected from authenticating user root 152.42.196.130 port 49204 [preauth] ... show less	Brute-Force SSH
🇺🇸 jennij	2026-06-28 20:41:45 (7 minutes ago)	Fail2Ban sshd ban on luckymc.gg ...	Brute-Force SSH
Anonymous	2026-06-28 20:38:02 (11 minutes ago)	SSH brute force attempt. User: root, Pass: [REDACTED]	Brute-Force SSH
🇯🇵 Fire Name	2026-06-28 19:22:47 (1 hour ago)	Jun 28 19:17:28 Japan sshd[1019062]: Invalid user teamspeak from 152.42.196.130 port 35616 Jun 28 19 ... show more Jun 28 19:17:28 Japan sshd[1019062]: Invalid user teamspeak from 152.42.196.130 port 35616 Jun 28 19:19:16 Japan sshd[1019179]: Invalid user developer from 152.42.196.130 port 54098 Jun 28 19:22:43 Japan sshd[1019431]: Invalid user amir from 152.42.196.130 port 40574 ... show less	Brute-Force SSH
🇺🇸 kuj	2026-06-28 19:22:43 (1 hour ago)	2026-06-28T13:17:28.477383-06:00 derp sshd-session[375694]: Invalid user teamspeak from 152.42.196.1 ... show more 2026-06-28T13:17:28.477383-06:00 derp sshd-session[375694]: Invalid user teamspeak from 152.42.196.130 port 57478 2026-06-28T13:19:15.832448-06:00 derp sshd-session[375702]: Invalid user developer from 152.42.196.130 port 46004 2026-06-28T13:22:42.883024-06:00 derp sshd-session[375719]: Invalid user amir from 152.42.196.130 port 43218 ... show less	Brute-Force SSH
🇧🇷 helix	2026-06-28 19:17:15 (1 hour ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇺🇸 mfilser	2026-06-28 19:15:43 (1 hour ago)	2026-06-28T21:15:40.095605+02:00 my-vps sshd[1983063]: pam_unix(sshd:auth): authentication failure; ... show more 2026-06-28T21:15:40.095605+02:00 my-vps sshd[1983063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.196.130 user=root 2026-06-28T21:15:42.267665+02:00 my-vps sshd[1983063]: Failed password for root from 152.42.196.130 port 40826 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-28 18:47:55 (2 hours ago)	2026-06-28 20:34:54,710 fail2ban.actions [757]: NOTICE [sshd] Ban 152.42.196.130 2026-06-28 ... show more 2026-06-28 20:34:54,710 fail2ban.actions [757]: NOTICE [sshd] Ban 152.42.196.130 2026-06-28 20:47:55,342 fail2ban.actions [757]: NOTICE [sshd] Ban 152.42.196.130 ... show less	Brute-Force Exploited Host
Anonymous	2026-06-28 18:34:51 (2 hours ago)	2026-06-28T18:32:57.358405+00:00 hel01-01-oc sshd[445781]: Failed password for root from 152.42.196. ... show more 2026-06-28T18:32:57.358405+00:00 hel01-01-oc sshd[445781]: Failed password for root from 152.42.196.130 port 33326 ssh2 2026-06-28T18:34:49.227475+00:00 hel01-01-oc sshd[445784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.196.130 user=root 2026-06-28T18:34:51.252706+00:00 hel01-01-oc sshd[445784]: Failed password for root from 152.42.196.130 port 34320 ssh2 ... show less	Brute-Force
🇺🇸 egulatee	2026-06-28 17:48:04 (3 hours ago)	sshd jail triggered on ip-142-248-80-134.my-advin.com	Brute-Force SSH
🇨🇦 KIsmay	2026-06-28 17:46:45 (3 hours ago)	Jun 28 13:44:16 www3 sshd[237934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more Jun 28 13:44:16 www3 sshd[237934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.196.130 Jun 28 13:44:18 www3 sshd[237934]: Failed password for invalid user ftpuser2 from 152.42.196.130 port 58970 ssh2 Jun 28 13:46:43 www3 sshd[238543]: Invalid user admin from 152.42.196.130 port 49888 Jun 28 13:46:43 www3 sshd[238543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.196.130 Jun 28 13:46:45 www3 sshd[238543]: Failed password for invalid user admin from 152.42.196.130 port 49888 ssh2 ... show less	Brute-Force SSH
🇪🇸 yvoictra	2026-06-28 17:36:26 (3 hours ago)	2026-06-28T19:36:25.696546+02:00 neo sshd-session[662483]: Invalid user deploy from 152.42.196.130 p ... show more 2026-06-28T19:36:25.696546+02:00 neo sshd-session[662483]: Invalid user deploy from 152.42.196.130 port 40590 ... show less	Brute-Force SSH
🇮🇱 virtbase	2026-06-28 17:17:51 (3 hours ago)	2026-06-28T19:16:02.275322+02:00 ryzen01 sshd-session[1590388]: Connection from 152.42.196.130 port ... show more 2026-06-28T19:16:02.275322+02:00 ryzen01 sshd-session[1590388]: Connection from 152.42.196.130 port 60206 on 5.231.248.131 port 22 rdomain "" 2026-06-28T19:16:03.203324+02:00 ryzen01 sshd-session[1590388]: Invalid user bubbles from 152.42.196.130 port 60206 2026-06-28T19:17:49.071220+02:00 ryzen01 sshd-session[1591377]: Connection from 152.42.196.130 port 43510 on 5.231.248.131 port 22 rdomain "" 2026-06-28T19:17:49.967257+02:00 ryzen01 sshd-session[1591377]: Invalid user sf from 152.42.196.130 port 43510 ... show less	Brute-Force SSH
🇮🇱 virtbase	2026-06-28 17:01:41 (3 hours ago)	2026-06-28T18:59:54.046354+02:00 ryzen01 sshd-session[1582744]: Connection from 152.42.196.130 port ... show more 2026-06-28T18:59:54.046354+02:00 ryzen01 sshd-session[1582744]: Connection from 152.42.196.130 port 59028 on 5.231.248.131 port 22 rdomain "" 2026-06-28T18:59:54.972889+02:00 ryzen01 sshd-session[1582744]: Invalid user betty from 152.42.196.130 port 59028 2026-06-28T19:01:39.757962+02:00 ryzen01 sshd-session[1583522]: Connection from 152.42.196.130 port 44406 on 5.231.248.131 port 22 rdomain "" 2026-06-28T19:01:40.655359+02:00 ryzen01 sshd-session[1583522]: Invalid user ipam from 152.42.196.130 port 44406 ... show less	Brute-Force SSH
🇨🇭 Boxis.net NOC	2026-06-28 17:01:40 (3 hours ago)	(sshd) Failed SSH login from 152.42.196.130 (US/United States/-): 5 in the last 3600 secs; Ports: ; ... show more (sshd) Failed SSH login from 152.42.196.130 (US/United States/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Jun 28 18:43:17 da057 sshd[2201742]: Invalid user rancid from 152.42.196.130 port 56648 Jun 28 18:55:58 da057 sshd[2218659]: Invalid user balancer from 152.42.196.130 port 42392 Jun 28 18:57:48 da057 sshd[2220163]: Invalid user irm from 152.42.196.130 port 45172 Jun 28 18:59:40 da057 sshd[2221622]: Invalid user betty from 152.42.196.130 port 45212 Jun 28 19:01:27 da057 sshd[2224535]: Invalid user ipam from 152.42.196.130 port 44682 show less	Port Scan

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇬 196.168.30.194

🇨🇱 186.10.86.130

🇺🇸 141.11.88.116

🇹🇷 89.252.157.42

🇺🇸 66.132.172.192

🇰🇷 1.235.192.214

🇰🇷 211.43.100.45

🇮🇳 165.101.134.130

🇨🇳 113.67.8.114

🇺🇸 107.152.44.215

🇺🇸 72.63.20.203

🇳🇱 45.148.10.141

🇺🇸 23.95.8.134

🇺🇸 20.102.98.53

🇬🇧 2a06:4880:a000::b7

🇧🇷 205.210.31.254

🇺🇸 172.59.67.0

🇦🇺 158.178.141.16

🇺🇸 147.185.132.252

🇿🇦 102.209.87.196