JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 208.131.130.64

208.131.130.64 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 31%: ?

31%

ISP	WestHost, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13213
Hostname(s)	208.131.130.64.west-datacenter.net
Domain Name	westhost.com
Country	🇺🇸 United States of America
City	Salt Lake City, Utah

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 208.131.130.64

Whois 208.131.130.64

IP Abuse Reports for 208.131.130.64:

This IP address has been reported a total of 138 times from 30 distinct sources. 208.131.130.64 was first reported on October 23rd 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-05-27 18:10:03 (2 weeks ago)	Suspicious Connection Attempts	Brute-Force
🇺🇸 bigscoots.com	2026-05-26 10:33:53 (2 weeks ago)	208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on ... show more 208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 26 05:30:11 13959 sshd[6382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.156.46.136 user=root May 26 05:30:13 13959 sshd[6382]: Failed password for root from 185.156.46.136 port 47976 ssh2 May 26 05:33:34 13959 sshd[6847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.70.197.156 user=root May 26 05:31:15 13959 sshd[6582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.131.130.64 user=root May 26 05:31:17 13959 sshd[6582]: Failed password for root from 208.131.130.64 port 56512 ssh2 IP Addresses Blocked: 185.156.46.136 (US/United States/unn-185-156-46-136.datapacket.com) 146.70.197.156 (DK/Denmark/-) show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 09:34:30 (2 weeks ago)	208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on ... show more 208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 25 04:28:48 17913 sshd[24682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.131.130.64 user=root May 25 04:28:50 17913 sshd[24682]: Failed password for root from 208.131.130.64 port 40888 ssh2 May 25 04:34:14 17913 sshd[25321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.134.142.199 user=root May 25 04:18:40 17913 sshd[23481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.169.53.42 user=root May 25 04:18:42 17913 sshd[23481]: Failed password for root from 31.169.53.42 port 54854 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-23 12:05:59 (3 weeks ago)	208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on ... show more 208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 23 06:58:21 18048 sshd[27070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.234.108.64 user=root May 23 06:58:24 18048 sshd[27070]: Failed password for root from 23.234.108.64 port 44546 ssh2 May 23 06:50:03 18048 sshd[25551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.159.59.35 user=root May 23 06:50:05 18048 sshd[25551]: Failed password for root from 95.159.59.35 port 46544 ssh2 May 23 07:05:30 18048 sshd[28493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.131.130.64 user=root IP Addresses Blocked: 23.234.108.64 (US/United States/static-23-234-108-64.cust.tzulo.com) 95.159.59.35 (SY/Syria/-) show less	Brute-Force SSH
🇳🇱 SchorelWeb	2026-05-23 10:13:13 (3 weeks ago)	(sshd) Failed SSH login from 208.131.130.64 (US/United States/-): 3 in the last (Omitted)	Brute-Force SSH
🇧🇾 lns.bz	2026-05-22 07:28:17 (3 weeks ago)	SSH bruteforce [BY]	SSH
🇨🇿 lp	2026-05-20 19:49:01 (3 weeks ago)	SSH Brute force: 1 attempts were recorded from 208.131.130.64 2026-05-20T20:13:45+02:00 Disconnected ... show more SSH Brute force: 1 attempts were recorded from 208.131.130.64 2026-05-20T20:13:45+02:00 Disconnected from authenticating user root 208.131.130.64 port 51982 [preauth] show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-20 18:15:55 (3 weeks ago)	208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on ... show more 208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 20 13:13:55 14977 sshd[31415]: Failed password for root from 208.131.130.64 port 55904 ssh2 May 20 13:15:38 14977 sshd[31584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.195.233.236 user=root May 20 13:14:23 14977 sshd[31488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.145.228.55 user=root May 20 13:14:25 14977 sshd[31488]: Failed password for root from 118.145.228.55 port 46424 ssh2 May 20 13:13:53 14977 sshd[31415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.131.130.64 user=root IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-20 16:25:57 (3 weeks ago)	208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on ... show more 208.131.130.64 (US/United States/208.131.130.64.west-datacenter.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 20 11:22:40 15663 sshd[27917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.234.97.199 user=root May 20 11:22:42 15663 sshd[27917]: Failed password for root from 23.234.97.199 port 38904 ssh2 May 20 11:24:03 15663 sshd[28070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.150.201.21 user=root May 20 11:24:05 15663 sshd[28070]: Failed password for root from 169.150.201.21 port 46578 ssh2 May 20 11:25:48 15663 sshd[28186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.131.130.64 user=root IP Addresses Blocked: 23.234.97.199 (FR/France/static-23-234-97-199.cust.tzulo.com) 169.150.201.21 (DE/Germany/unn-169-150-201-21.datapacket.com) show less	Brute-Force SSH
🇩🇪 FeG Deutschland	2026-04-27 16:30:54 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12	Exploited Host Web App Attack
🇯🇵 VXG-NET	2026-04-25 23:29:58 (1 month ago)	port=80, indicator_type=sql-injection	SQL Injection
🇪🇸 Mugen	2026-04-16 02:47:02 (1 month ago)	Unauthorized VPN login attempts	Brute-Force
Anonymous	2026-03-24 16:00:16 (2 months ago)		Hacking
Anonymous	2026-03-24 15:40:08 (2 months ago)	VPN Abuse brute force	Hacking
🇩🇪 CELOS-SOC	2026-03-22 16:31:21 (2 months ago)	Multiple Unauthorized SSLVPN Login Attempts	Hacking Brute-Force

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 124.220.134.52

🇮🇩 103.188.177.46

🇨🇦 68.183.196.109

🇱🇹 62.60.130.224

🇸🇪 213.66.196.11

🇬🇧 193.163.125.159

🇫🇮 178.20.210.151

🇺🇸 172.203.134.70

🇺🇸 162.216.150.97

🇸🇬 156.245.144.121

🇳🇱 45.148.10.141

🇨🇱 216.155.93.75

🇸🇪 157.22.103.186

🇺🇸 91.230.168.165

🇷🇴 80.94.92.165

🇷🇺 78.29.102.163

🇩🇪 69.5.169.181

🇺🇸 66.132.195.66

🇫🇷 62.84.179.70

🇬🇧 194.50.235.149