JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.38.149.75

209.38.149.75 was found in our database!

This IP was reported 148 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.38.149.75

Whois 209.38.149.75

IP Abuse Reports for 209.38.149.75:

This IP address has been reported a total of 148 times from 109 distinct sources. 209.38.149.75 was first reported on December 28th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 24-seven.io	2024-12-30 19:06:13 (1 year ago)	Dec 30 14:04:09 graph sshd[3897973]: Failed password for root from 209.38.149.75 port 54156 ssh2 Dec ... show more Dec 30 14:04:09 graph sshd[3897973]: Failed password for root from 209.38.149.75 port 54156 ssh2 Dec 30 14:05:11 graph sshd[3898114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 14:05:13 graph sshd[3898114]: Failed password for root from 209.38.149.75 port 52012 ssh2 Dec 30 14:06:10 graph sshd[3898279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 14:06:12 graph sshd[3898279]: Failed password for root from 209.38.149.75 port 52982 ssh2 ... show less	Brute-Force SSH
🇩🇪 Andrew Dymov	2024-12-30 17:55:12 (1 year ago)	2024-12-30T17:53:08.143916+00:00 sentry sshd[465418]: Failed password for root from 209.38.149.75 po ... show more 2024-12-30T17:53:08.143916+00:00 sentry sshd[465418]: Failed password for root from 209.38.149.75 port 41412 ssh2 2024-12-30T17:54:08.837741+00:00 sentry sshd[465884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root 2024-12-30T17:54:11.138331+00:00 sentry sshd[465884]: Failed password for root from 209.38.149.75 port 34864 ssh2 2024-12-30T17:55:10.041915+00:00 sentry sshd[466360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root 2024-12-30T17:55:12.186459+00:00 sentry sshd[466360]: Failed password for root from 209.38.149.75 port 60198 ssh2 ... show less	Brute-Force SSH
🇩🇪 Qube2	2024-12-30 17:53:13 (1 year ago)	Dec 30 18:52:11 qube2 sshd[2510749]: Failed password for root from 209.38.149.75 port 51336 ssh2 Dec ... show more Dec 30 18:52:11 qube2 sshd[2510749]: Failed password for root from 209.38.149.75 port 51336 ssh2 Dec 30 18:53:09 qube2 sshd[2511101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 18:53:11 qube2 sshd[2511101]: Failed password for root from 209.38.149.75 port 34988 ssh2 ... show less	Brute-Force SSH
🇧🇷 diego	2024-12-30 17:30:00 (1 year ago)	[rede-166-249] (sshd) Failed SSH login from 209.38.149.75 (US/United States/-): 5 in the last 3600 s ... show more [rede-166-249] (sshd) Failed SSH login from 209.38.149.75 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Dec 30 14:26:47 sshd[8239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=[USERNAME] Dec 30 14:26:50 sshd[8239]: Failed password for [USERNAME] from 209.38.149.75 port 43650 ssh2 Dec 30 14:28:55 sshd[8432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=[USERNAME] Dec 30 14:28:57 sshd[8432]: Failed password for [USERNAME] from 209.38.149.75 port 38808 ssh2 Dec 30 14:29:58 ss show less	Port Scan
🇫🇷 LRNP	2024-12-30 17:04:39 (1 year ago)	2024-12-30T17:01:56.037490+00:00 boron sshd[459948]: Disconnected from authenticating user root 209. ... show more 2024-12-30T17:01:56.037490+00:00 boron sshd[459948]: Disconnected from authenticating user root 209.38.149.75 port 40098 [preauth] 2024-12-30T17:04:27.280963+00:00 boron sshd[460958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root 2024-12-30T17:04:29.342801+00:00 boron sshd[460958]: Failed password for root from 209.38.149.75 port 38336 ssh2 ... show less	Brute-Force SSH
🇺🇸 Misaka13514	2024-12-30 16:38:42 (1 year ago)	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2024-12-30T16:38:42Z	Brute-Force SSH
🇪🇸 h3st4k3r	2024-12-30 16:11:53 (1 year ago)	Malicious activity detected from this IP during SSH attempts. VPN: No, Datacenter: No, Organization: ... show more Malicious activity detected from this IP during SSH attempts. VPN: No, Datacenter: No, Organization: AS14061 DigitalOcean, LLC, Region: California, Log: 2024-12-30T17:11:51.189974 01:00 Administracion sshd[1003509]: Failed password for root from 209.38.149.75 port 35914 ssh2, Abuse Score: 100, Total Reports: 142 show less	SSH
🇦🇺 foobax	2024-12-30 16:03:17 (1 year ago)	was attempting to break in as 'root' from port 52650	Brute-Force SSH
🇺🇸 Ironmantle	2024-12-30 14:49:58 (1 year ago)	Dec 30 11:49:56 orbita sshd[2291152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Dec 30 11:49:56 orbita sshd[2291152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 11:49:58 orbita sshd[2291152]: Failed password for root from 209.38.149.75 port 42422 ssh2 ... show less	Brute-Force SSH
🇸🇬 simpeg-adm.bandung.go.id	2024-12-30 14:48:19 (1 year ago)	Dec 30 14:48:18 wworkflows sshd[2749013]: Failed password for root from 209.38.149.75 port 50832 ssh ... show more Dec 30 14:48:18 wworkflows sshd[2749013]: Failed password for root from 209.38.149.75 port 50832 ssh2 Dec 30 14:48:16 wworkflows sshd[2749013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 14:48:18 wworkflows sshd[2749013]: Failed password for root from 209.38.149.75 port 50832 ssh2 ... show less	Brute-Force SSH
Anonymous	2024-12-30 14:41:14 (1 year ago)		Brute-Force SSH
🇸🇬 simpeg-adm.bandung.go.id	2024-12-30 14:31:12 (1 year ago)	Dec 30 14:30:08 wworkflows sshd[2747423]: Failed password for root from 209.38.149.75 port 47374 ssh ... show more Dec 30 14:30:08 wworkflows sshd[2747423]: Failed password for root from 209.38.149.75 port 47374 ssh2 Dec 30 14:31:10 wworkflows sshd[2747486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 14:31:12 wworkflows sshd[2747486]: Failed password for root from 209.38.149.75 port 33394 ssh2 ... show less	Brute-Force SSH
🇺🇸 Ironmantle	2024-12-30 14:29:12 (1 year ago)	Dec 30 11:29:10 orbita sshd[2286573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Dec 30 11:29:10 orbita sshd[2286573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 11:29:12 orbita sshd[2286573]: Failed password for root from 209.38.149.75 port 52554 ssh2 ... show less	Brute-Force SSH
🇪🇪 Portuseco Biling	2024-12-30 13:43:40 (1 year ago)	4VPS-F2B blocked SSH BF-	Brute-Force SSH
🇩🇪 filip2cz	2024-12-30 13:43:27 (1 year ago)	Dec 30 14:42:26 henshouse sshd[2133108]: Failed password for root from 209.38.149.75 port 46350 ssh2 ... show more Dec 30 14:42:26 henshouse sshd[2133108]: Failed password for root from 209.38.149.75 port 46350 ssh2 Dec 30 14:43:25 henshouse sshd[2134325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.149.75 user=root Dec 30 14:43:27 henshouse sshd[2134325]: Failed password for root from 209.38.149.75 port 32926 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 148 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.217.33

🇧🇷 190.115.84.25

🇷🇴 141.98.83.48

🇧🇷 138.97.41.223

🇧🇬 95.42.140.216

🇸🇬 34.158.47.229

🇵🇱 31.41.81.65

🇺🇸 54.208.95.23

🇺🇸 54.84.176.90

🇳🇱 45.148.10.157

🇬🇧 37.10.113.216

🇨🇳 27.24.141.161

🇭🇰 20.255.61.0

🇨🇭 20.250.145.94

🇫🇷 5.189.153.106

🇺🇸 172.208.25.111

🇳🇱 159.223.1.67

🇺🇸 136.111.86.205

🇺🇸 132.145.213.106

🇮🇩 103.157.26.98