JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.172.131.149

172.172.131.149 was found in our database!

This IP was reported 3,271 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇺🇸 United States of America
City	Washington, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.172.131.149

Whois 172.172.131.149

IP Abuse Reports for 172.172.131.149:

This IP address has been reported a total of 3,271 times from 850 distinct sources. 172.172.131.149 was first reported on February 13th 2026, and the most recent report was 17 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 KnightIndustries	2026-06-04 06:07:17 (17 minutes ago)	2026-06-04T07:41:14.238260+02:00 milkyway sshd[2424080]: pam_unix(sshd:auth): authentication failure ... show more 2026-06-04T07:41:14.238260+02:00 milkyway sshd[2424080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-04T07:41:15.795324+02:00 milkyway sshd[2424080]: Failed password for invalid user ftpuser from 172.172.131.149 port 57060 ssh2 2026-06-04T08:07:17.350233+02:00 milkyway sshd[2426250]: Invalid user eder from 172.172.131.149 port 44722 ... show less	Brute-Force SSH
🇪🇸 helix	2026-06-04 04:14:12 (2 hours ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (4 attempts). show less	Brute-Force SSH
🇨🇭 ScanThe.Net	2026-06-04 04:06:48 (2 hours ago)	ID: 3847569539 \| PORT: 22024 \| https://172-172-131-149.scanthe.net	Port Scan
🇳🇱 SchorelWeb	2026-06-03 22:58:53 (7 hours ago)	Cluster member (Omitted) (US/United States/-) said, DENY 172.172.131.149, Reason:[(sshd) Failed SSH ... show more Cluster member (Omitted) (US/United States/-) said, DENY 172.172.131.149, Reason:[(sshd) Failed SSH login from 172.172.131.149 (US/United States/-): 3 in the last 3600 secs] show less	Brute-Force SSH
🇨🇭 SOC [GOLINE SA]	2026-06-03 21:50:35 (8 hours ago)	SSH Brute Force Attack === ATTACK === Type: SSH Authentication Attack \| Pattern: Multiple failed log ... show more SSH Brute Force Attack === ATTACK === Type: SSH Authentication Attack \| Pattern: Multiple failed login attempts === SOURCE === IP: 172.172.131.149 (IPv4) \| Country: United States \| ISP: RIPE \| rDNS: None === TARGET === Host: lilys.ch \| Port: 22 \| Protocol: TCP === RESPONSE === Time: 2026-06-03 23:50:35 \| Action: Blocked show less	SSH Brute-Force
Anonymous	2026-06-03 21:21:22 (9 hours ago)	2026-06-03T21:21:19.219885+00:00 ephialtes2 sshd[299208]: Invalid user ubuntu from 172.172.131.149 p ... show more 2026-06-03T21:21:19.219885+00:00 ephialtes2 sshd[299208]: Invalid user ubuntu from 172.172.131.149 port 37130 2026-06-03T21:21:19.221132+00:00 ephialtes2 sshd[299208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-03T21:21:21.318937+00:00 ephialtes2 sshd[299208]: Failed password for invalid user ubuntu from 172.172.131.149 port 37130 ssh2 2026-06-03T21:21:19.221132+00:00 ephialtes2 sshd[299208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-03T21:21:21.318937+00:00 ephialtes2 sshd[299208]: Failed password for invalid user ubuntu from 172.172.131.149 port 37130 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-03 20:19:08 (10 hours ago)	2026-06-03T20:12:03.335771+00:00 ephialtes2 sshd[276744]: Failed password for root from 172.172.131. ... show more 2026-06-03T20:12:03.335771+00:00 ephialtes2 sshd[276744]: Failed password for root from 172.172.131.149 port 38276 ssh2 2026-06-03T20:19:05.865160+00:00 ephialtes2 sshd[278936]: Invalid user mysqluser from 172.172.131.149 port 54594 2026-06-03T20:19:05.865160+00:00 ephialtes2 sshd[278936]: Invalid user mysqluser from 172.172.131.149 port 54594 2026-06-03T20:19:05.866288+00:00 ephialtes2 sshd[278936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-03T20:19:07.683781+00:00 ephialtes2 sshd[278936]: Failed password for invalid user mysqluser from 172.172.131.149 port 54594 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-03 19:40:58 (10 hours ago)	2026-06-03T19:33:28.666752+00:00 ephialtes2 sshd[265056]: pam_unix(sshd:auth): authentication failur ... show more 2026-06-03T19:33:28.666752+00:00 ephialtes2 sshd[265056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-03T19:33:30.409177+00:00 ephialtes2 sshd[265056]: Failed password for invalid user pp from 172.172.131.149 port 45124 ssh2 2026-06-03T19:40:54.838697+00:00 ephialtes2 sshd[267292]: Invalid user admin from 172.172.131.149 port 35812 2026-06-03T19:40:54.840118+00:00 ephialtes2 sshd[267292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-03T19:40:56.812976+00:00 ephialtes2 sshd[267292]: Failed password for invalid user admin from 172.172.131.149 port 35812 ssh2 ... show less	Brute-Force SSH
🇵🇱 Wepted	2026-06-03 18:36:44 (11 hours ago)	2026-06-03T20:29:30.903078+02:00 axisverse sshd-session[577400]: Invalid user scott from 172.172.131 ... show more 2026-06-03T20:29:30.903078+02:00 axisverse sshd-session[577400]: Invalid user scott from 172.172.131.149 port 45654 2026-06-03T20:32:05.437266+02:00 axisverse sshd-session[580608]: Invalid user scott from 172.172.131.149 port 35866 2026-06-03T20:36:44.012952+02:00 axisverse sshd-session[587263]: Invalid user rancid from 172.172.131.149 port 32866 ... show less	Brute-Force SSH
🇨🇳 kipfel★	2026-06-03 18:31:21 (11 hours ago)	2026-06-04T02:02:24.805137+08:00 self-dedi-wyse-5070-tna sshd-session[3580748]: Invalid user gts fro ... show more 2026-06-04T02:02:24.805137+08:00 self-dedi-wyse-5070-tna sshd-session[3580748]: Invalid user gts from 172.172.131.149 port 42702 2026-06-04T02:17:21.859165+08:00 self-dedi-wyse-5070-tna sshd-session[3582369]: Invalid user user from 172.172.131.149 port 42822 2026-06-04T02:31:19.629862+08:00 self-dedi-wyse-5070-tna sshd-session[3583804]: Invalid user scott from 172.172.131.149 port 52034 ... show less	Brute-Force SSH
🇳🇱 pearbright	2026-06-03 17:26:04 (12 hours ago)	2026-06-03T17:26:01.526773+00:00 mercury.fsmail.org.uk sshd-session[450820]: Invalid user dq from 17 ... show more 2026-06-03T17:26:01.526773+00:00 mercury.fsmail.org.uk sshd-session[450820]: Invalid user dq from 172.172.131.149 port 34150 2026-06-03T17:26:01.531048+00:00 mercury.fsmail.org.uk sshd-session[450820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 2026-06-03T17:26:03.637422+00:00 mercury.fsmail.org.uk sshd-session[450820]: Failed password for invalid user dq from 172.172.131.149 port 34150 ssh2 ... show less	Brute-Force SSH
🇧🇷 ufn.edu.br	2026-06-03 17:22:05 (13 hours ago)	Jun 3 14:14:24 lasmivm01 sshd[1196200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Jun 3 14:14:24 lasmivm01 sshd[1196200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.172.131.149 user=root Jun 3 14:14:27 lasmivm01 sshd[1196200]: Failed password for root from 172.172.131.149 port 49846 ssh2 Jun 3 14:22:04 lasmivm01 sshd[1198078]: Invalid user dq from 172.172.131.149 port 41478 ... show less	Brute-Force SSH
🇩🇪 sbajic	2026-06-03 16:44:22 (13 hours ago)	2026-06-03T18:37:11.792343+02:00 gaia sshd[279519]: Failed password for invalid user vncuser1 from 1 ... show more 2026-06-03T18:37:11.792343+02:00 gaia sshd[279519]: Failed password for invalid user vncuser1 from 172.172.131.149 port 56090 ssh2 2026-06-03T18:44:16.506887+02:00 gaia sshd[282263]: Connection from 172.172.131.149 port 52432 on 148.251.110.65 port 22 rdomain "" 2026-06-03T18:44:21.561275+02:00 gaia sshd[282263]: Invalid user hyper from 172.172.131.149 port 52432 ... show less	Brute-Force SSH
🇩🇪 sbajic	2026-06-03 16:22:50 (14 hours ago)	2026-06-03T18:15:15.027389+02:00 gaia sshd[271339]: Failed password for invalid user root from 172.1 ... show more 2026-06-03T18:15:15.027389+02:00 gaia sshd[271339]: Failed password for invalid user root from 172.172.131.149 port 60528 ssh2 2026-06-03T18:22:36.314879+02:00 gaia sshd[274143]: Connection from 172.172.131.149 port 58766 on 148.251.110.65 port 22 rdomain "" 2026-06-03T18:22:49.267879+02:00 gaia sshd[274143]: Invalid user filezilla from 172.172.131.149 port 58766 ... show less	Brute-Force SSH
🇩🇪 sbajic	2026-06-03 15:59:41 (14 hours ago)	2026-06-03T17:52:34.559347+02:00 gaia sshd[262800]: Failed password for invalid user user from 172.1 ... show more 2026-06-03T17:52:34.559347+02:00 gaia sshd[262800]: Failed password for invalid user user from 172.172.131.149 port 60284 ssh2 2026-06-03T17:59:38.206933+02:00 gaia sshd[265514]: Connection from 172.172.131.149 port 40446 on 148.251.110.65 port 22 rdomain "" 2026-06-03T17:59:40.231811+02:00 gaia sshd[265514]: Invalid user hack from 172.172.131.149 port 40446 ... show less	Brute-Force SSH

Showing 1 to 15 of 3271 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 213.180.203.112

🇧🇷 200.163.119.173

🇰🇷 59.21.37.60

🇺🇸 47.251.142.84

🇳🇱 213.176.16.100

🇳🇱 212.30.37.18

🇺🇸 172.253.209.152

🇺🇸 167.99.109.32

🇹🇭 147.50.94.29

🇷🇺 82.208.108.3

🇺🇸 64.62.197.75

🇸🇪 46.59.89.5

🇨🇦 38.49.217.60

🇫🇷 37.60.241.190

🇧🇪 35.240.47.107

🇺🇸 20.65.194.59

🇨🇳 1.83.125.144

🇷🇺 213.180.203.242

🇧🇪 198.235.24.221

🇳🇬 152.32.143.189