JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.38.103.212

209.38.103.212 was found in our database!

This IP was reported 464 times. Confidence of Abuse is 16%: ?

16%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.38.103.212

Whois 209.38.103.212

IP Abuse Reports for 209.38.103.212:

This IP address has been reported a total of 464 times from 215 distinct sources. 209.38.103.212 was first reported on October 18th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-06 05:30:15 (2 weeks ago)	tcp/8808	Port Scan
🇺🇸 xmission.com	2026-06-06 04:19:44 (2 weeks ago)	Blocked by UFW (TCP on 8089) Source port: 61005 TTL: 238 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8089) Source port: 61005 TTL: 238 Packet length: 44 TOS: 0x08 This report (for 209.38.103.212) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-10 22:48:11 (1 month ago)	2026-05-10 20:54:21 /	Web App Attack
🇺🇸 xmission.com	2026-03-05 07:17:05 (3 months ago)	Blocked by UFW (TCP on 8088) Source port: 61012 TTL: 239 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8088) Source port: 61012 TTL: 239 Packet length: 44 TOS: 0x08 This report (for 209.38.103.212) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 BenTahily	2026-01-24 07:16:23 (4 months ago)	SSH brute force - coordinated DigitalOcean NL botnet cluster attacking 143.198.234.161. Hundreds of ... show more SSH brute force - coordinated DigitalOcean NL botnet cluster attacking 143.198.234.161. Hundreds of attempts per IP. Jan 2026. show less	Brute-Force SSH
🇹🇷 rtbh.com.tr	2026-01-20 20:11:08 (5 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 MPL	2026-01-20 08:52:34 (5 months ago)	tcp/11000	Port Scan
🇺🇸 RAP	2026-01-20 08:40:59 (5 months ago)	2026-01-20 08:40:59 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 Hobby Bob	2026-01-20 08:03:20 (5 months ago)	Jan 20 08:03:18 server dovecot: pop3-login: Disconnected: Disconnected: Too many bad commands (no au ... show more Jan 20 08:03:18 server dovecot: pop3-login: Disconnected: Disconnected: Too many bad commands (no auth attempts in 1 secs): user=, rip=209.38.103.212, lip=X.X.X.X session= show less	Port Scan Hacking
🇦🇹 urnilxfgbez	2026-01-19 23:45:00 (5 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇳🇱 GlobalArt, Inc	2026-01-19 15:19:47 (5 months ago)	2026-01-19T18:18:42.064224+03:00 proxy-msk1 sshd[729592]: Failed password for invalid user postgres ... show more 2026-01-19T18:18:42.064224+03:00 proxy-msk1 sshd[729592]: Failed password for invalid user postgres from 209.38.103.212 port 53514 ssh2 2026-01-19T18:19:13.557758+03:00 proxy-msk1 sshd[729619]: Invalid user postgres from 209.38.103.212 port 39222 2026-01-19T18:19:13.630607+03:00 proxy-msk1 sshd[729619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.103.212 2026-01-19T18:19:16.076873+03:00 proxy-msk1 sshd[729619]: Failed password for invalid user postgres from 209.38.103.212 port 39222 ssh2 2026-01-19T18:19:46.800622+03:00 proxy-msk1 sshd[729625]: Invalid user postgres from 209.38.103.212 port 44622 show less	Brute-Force SSH
Anonymous	2026-01-19 15:11:43 (5 months ago)	2026-01-19T16:10:40.850744+01:00 hvs sshd-session[236048]: Invalid user oracle from 209.38.103.212 p ... show more 2026-01-19T16:10:40.850744+01:00 hvs sshd-session[236048]: Invalid user oracle from 209.38.103.212 port 51988 2026-01-19T16:10:41.253750+01:00 hvs sshd-session[236048]: Connection closed by invalid user oracle 209.38.103.212 port 51988 [preauth] 2026-01-19T16:11:11.105331+01:00 hvs sshd-session[236065]: Invalid user oracle from 209.38.103.212 port 57006 2026-01-19T16:11:11.573942+01:00 hvs sshd-session[236065]: Connection closed by invalid user oracle 209.38.103.212 port 57006 [preauth] 2026-01-19T16:11:42.384959+01:00 hvs sshd-session[236080]: Invalid user oracle from 209.38.103.212 port 43038 ... show less	Brute-Force SSH
🇩🇪 1000grad.com	2026-01-19 15:08:05 (5 months ago)	5x Failed Password	Brute-Force SSH
🇩🇪 Ren Zen	2026-01-19 15:08:00 (5 months ago)	2026-01-19T15:05:43.553346+00:00 zenserver sshd[264601]: Invalid user odoo from 209.38.103.212 port ... show more 2026-01-19T15:05:43.553346+00:00 zenserver sshd[264601]: Invalid user odoo from 209.38.103.212 port 60980 2026-01-19T15:06:17.312968+00:00 zenserver sshd[264609]: Invalid user odoo from 209.38.103.212 port 44134 2026-01-19T15:06:50.434642+00:00 zenserver sshd[264616]: Invalid user odoo from 209.38.103.212 port 50056 2026-01-19T15:07:25.030531+00:00 zenserver sshd[264620]: Invalid user odoo from 209.38.103.212 port 36984 2026-01-19T15:07:59.378575+00:00 zenserver sshd[264630]: Invalid user oracle from 209.38.103.212 port 54466 ... show less	Brute-Force SSH
🇩🇪 www.fransveldman.world	2026-01-19 15:05:05 (5 months ago)	Jan 19 15:04:31 mail sshd[4093840]: Invalid user odoo from 209.38.103.212 port 37988 Jan 19 15:05:04 ... show more Jan 19 15:04:31 mail sshd[4093840]: Invalid user odoo from 209.38.103.212 port 37988 Jan 19 15:05:04 mail sshd[4093965]: Invalid user odoo from 209.38.103.212 port 39918 ... show less	Brute-Force SSH

Showing 1 to 15 of 464 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 156.226.176.91

🇨🇳 101.126.30.240

🇺🇸 68.183.21.136

🇧🇷 50.7.34.74

🇺🇸 45.132.227.156

🇷🇴 2.57.121.25

🇷🇴 193.46.255.86

🇨🇳 180.102.110.164

🇲🇾 121.121.139.118

🇳🇱 45.156.87.204

🇺🇸 20.168.122.192

🇮🇷 5.190.158.6

🇰🇷 211.221.158.216

🇭🇰 199.45.154.183

🇸🇬 159.138.83.90

🇺🇸 143.244.164.76

🇨🇴 108.174.156.122

🇺🇸 104.23.245.178

🇺🇦 46.149.182.16

🇸🇳 41.214.49.74