JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.38.166.81

209.38.166.81 was found in our database!

This IP was reported 1,135 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.38.166.81

Whois 209.38.166.81

IP Abuse Reports for 209.38.166.81:

This IP address has been reported a total of 1,135 times from 419 distinct sources. 209.38.166.81 was first reported on June 26th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Xarcotic	2026-06-06 04:20:44 (2 hours ago)	SSH login on honeypot.	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-05 19:00:57 (11 hours ago)	209.38.166.81 (GB/United Kingdom/-), 5 distributed sshd attacks on account [root] in the last 3600 s ... show more 209.38.166.81 (GB/United Kingdom/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 5 14:00:41 15145 sshd[23391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.37.174.180 user=root Jun 5 13:54:41 15145 sshd[20550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.37.174.180 user=root Jun 5 13:54:43 15145 sshd[20550]: Failed password for root from 211.37.174.180 port 33490 ssh2 Jun 5 13:49:44 15145 sshd[18298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.166.81 user=root Jun 5 13:49:47 15145 sshd[18298]: Failed password for root from 209.38.166.81 port 51602 ssh2 IP Addresses Blocked: 211.37.174.180 (KR/South Korea/-) show less	Brute-Force SSH
🇳🇱 VpsLayer	2026-06-05 11:04:02 (19 hours ago)	2026-05-08T07:41:11.518128+02:00 mail sshd[3199993]: Invalid user hypernex from 209.38.166.81 port 3 ... show more 2026-05-08T07:41:11.518128+02:00 mail sshd[3199993]: Invalid user hypernex from 209.38.166.81 port 39670 2026-05-08T07:41:11.529439+02:00 mail sshd[3199993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.166.81 2026-05-08T07:41:13.864303+02:00 mail sshd[3199993]: Failed password for invalid user hypernex from 209.38.166.81 port 39670 ssh2 ... show less	Brute-Force SSH
🇵🇱 alianet	2026-06-05 06:02:15 (1 day ago)	Jun 5 05:27:43 vps-eb8e942e sshd-session[1081392]: Connection closed by invalid user debian 209.38. ... show more Jun 5 05:27:43 vps-eb8e942e sshd-session[1081392]: Connection closed by invalid user debian 209.38.166.81 port 50184 [preauth] Jun 5 06:02:13 vps-eb8e942e sshd-session[1083486]: Connection from 209.38.166.81 port 47450 on 57.128.195.69 port 2222 rdomain "" Jun 5 06:02:13 vps-eb8e942e sshd-session[1083486]: Invalid user git from 209.38.166.81 port 47450 ... show less	Brute-Force SSH
🇧🇪 sid3windr	2026-06-05 02:20:08 (1 day ago)	SSH port scan (Tarpitted for 20s, wasted 18B)	Port Scan SSH
🇫🇷 bulletz	2026-06-05 00:48:30 (1 day ago)	2026-06-05T02:48:27.329073+02:00 vps sshd[488]: Invalid user slashdirt from 209.38.166.81 port 35936 ... show more 2026-06-05T02:48:27.329073+02:00 vps sshd[488]: Invalid user slashdirt from 209.38.166.81 port 35936 2026-06-05T02:48:27.340851+02:00 vps sshd[488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.166.81 2026-06-05T02:48:29.135673+02:00 vps sshd[488]: Failed password for invalid user slashdirt from 209.38.166.81 port 35936 ssh2 ... show less	Brute-Force SSH
🇺🇸 Xarcotic	2026-06-05 00:20:33 (1 day ago)	SSH login on honeypot.	Brute-Force SSH
🇮🇳 peenaksol	2026-06-04 16:42:36 (1 day ago)	2026-06-04T22:03:05.504364+05:30 serverstack.pro sshd[3257242]: pam_unix(sshd:auth): authentication ... show more 2026-06-04T22:03:05.504364+05:30 serverstack.pro sshd[3257242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.166.81 2026-06-04T22:03:07.985219+05:30 serverstack.pro sshd[3257242]: Failed password for invalid user debian from 209.38.166.81 port 57392 ssh2 2026-06-04T22:12:35.098632+05:30 serverstack.pro sshd[3259881]: Invalid user web3 from 209.38.166.81 port 48894 ... show less	Brute-Force SSH
🇩🇪 www.mammazone.it	2026-06-04 13:04:25 (1 day ago)	Jun 4 14:58:54 vps2 sshd[2101730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Jun 4 14:58:54 vps2 sshd[2101730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.166.81 Jun 4 14:58:56 vps2 sshd[2101730]: Failed password for invalid user deploy from 209.38.166.81 port 58418 ssh2 Jun 4 15:04:24 vps2 sshd[2102615]: Invalid user git from 209.38.166.81 port 33084 ... show less	Hacking
🇪🇸 el-brujo	2026-06-04 11:38:54 (1 day ago)	2026-06-04T13:31:21.300351 ns2.elhacker.net proftpd[3830711]: session[3830711] 0.0.0.0 (209.38.166.8 ... show more 2026-06-04T13:31:21.300351 ns2.elhacker.net proftpd[3830711]: session[3830711] 0.0.0.0 (209.38.166.81[209.38.166.81]): USER nas: no such user found from 209.38.166.81 [209.38.166.81] to ::ffff:192.168.0.3:2222 2026-06-04T13:38:53.910331 ns2.elhacker.net proftpd[3839786]: session[3839786] 0.0.0.0 (209.38.166.81[209.38.166.81]): USER satoshi: no such user found from 209.38.166.81 [209.38.166.81] to ::ffff:192.168.0.3:2222 ... show less	FTP Brute-Force
🇧🇷 helix	2026-06-04 03:54:31 (2 days ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
Anonymous	2026-06-03 14:30:04 (2 days ago)	Triggered: repeated knocking on closed ports.	Port Scan
Anonymous	2026-06-03 13:26:53 (2 days ago)	IP banned by Fail2Ban	Brute-Force SSH
🇨🇭 Mario Bretscher	2026-06-03 03:42:31 (3 days ago)	2026-06-03T05:35:58.316599+02:00 hades sshd[2448587]: pam_unix(sshd:auth): authentication failure; l ... show more 2026-06-03T05:35:58.316599+02:00 hades sshd[2448587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.38.166.81 2026-06-03T05:36:00.508519+02:00 hades sshd[2448587]: Failed password for invalid user hash from 209.38.166.81 port 57888 ssh2 2026-06-03T05:42:30.100593+02:00 hades sshd[2451468]: Invalid user zabbix from 209.38.166.81 port 34332 ... show less	SSH
🇧🇪 madeit	2026-06-02 18:23:43 (3 days ago)		Brute-Force SSH

Showing 1 to 15 of 1135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.251.71.202

🇻🇳 27.79.2.165

🇺🇸 216.180.246.238

🇺🇸 216.180.246.229

🇺🇸 216.180.246.218

🇧🇪 198.235.24.253

🇺🇸 147.185.132.255

🇫🇷 85.217.140.3

🇸🇪 85.203.44.107

🇫🇷 75.119.142.9

🇺🇸 64.236.160.17

🇳🇱 45.148.10.141

🇦🇺 3.106.239.82

🇷🇴 2.57.122.177

🇻🇳 1.53.36.245

🇺🇸 216.180.246.201

🇺🇸 216.180.246.183

🇰🇿 176.124.88.29

🇺🇸 174.54.165.94

🇺🇸 146.19.78.172