JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 209.38.80.157

209.38.80.157 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇦🇺 Australia
City	Sydney, New South Wales

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 209.38.80.157

Whois 209.38.80.157

IP Abuse Reports for 209.38.80.157:

This IP address has been reported a total of 34 times from 31 distinct sources. 209.38.80.157 was first reported on June 10th 2025, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 BSG Webmaster	2025-06-11 07:35:21 (1 year ago)	Port scanning (Port 80)	Port Scan Hacking
🇳🇱 ATV	2025-06-11 03:03:55 (1 year ago)	Unsolicited connection attempts to port 80	Hacking
🇺🇸 LotPhantom	2025-06-10 23:29:06 (1 year ago)	209.38.80.157 - - [10/Jun/2025:23:28:05 +0000] "GET /password.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 ... show more 209.38.80.157 - - [10/Jun/2025:23:28:05 +0000] "GET /password.php HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" "0" ... show less	Web App Attack
🇫🇷 pm33	2025-06-10 22:52:38 (1 year ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
Anonymous	2025-06-10 22:51:54 (1 year ago)	209.38.80.157 - - [11/Jun/2025:00:51:53 +0200] "GET /t4 HTTP/1.1" 403 344 "-" "Mozilla/5.0" ...	Web App Attack
🇬🇧 gurnip	2025-06-10 22:25:17 (1 year ago)	Vulnerability probe of page /password.php, not found on server.	Brute-Force Web App Attack
Anonymous	2025-06-10 22:07:27 (1 year ago)	Searching for SystemBC RAT trojan infection: /password.php	Hacking Web App Attack
🇫🇷 Murazaki	2025-06-10 22:02:15 (1 year ago)	209.38.80.157 - - [10/Jun/2025:13:12:45 +0200] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\x9B?\xB9#]\xB ... show more 209.38.80.157 - - [10/Jun/2025:13:12:45 +0200] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\x9B?\xB9#]\xBB.\xF7\xDBoRy\xC7\x08\xD4>\x04k\xDFJ\xB8mn\x06\xA4\x81\xAA)G{jH\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 500 170 "-" "-" "-" ... show less	Hacking
Anonymous	2025-06-10 20:40:20 (1 year ago)	SYSTEMBC C2 - HTTP (Request)	Hacking
🇩🇪 SCHAPPY	2025-06-10 20:25:16 (1 year ago)	Web app attack detected. Host header is a numeric IP address	Web App Attack
🇫🇷 masterguru	2025-06-10 18:38:48 (1 year ago)	Host header is a numeric IP address. Pattern match "^ (920350-131)	Hacking Bad Web Bot
Anonymous	2025-06-10 17:18:31 (1 year ago)	Bot detected scanning for vulnerable pages	Port Scan
🇺🇸 ersei.net	2025-06-10 17:09:23 (1 year ago)	Brute force multiple 403s	Brute-Force
Anonymous	2025-06-10 16:22:28 (1 year ago)	209.38.80.157 - - [10/Jun/2025:16:22:23 +0000] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xF8\x10\xAE\x ... show more 209.38.80.157 - - [10/Jun/2025:16:22:23 +0000] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xF8\x10\xAE\x11\x14\xEFx\xAF\x85\x98b{)\xAFJUn\x03\xEA\xC95!\xFA\x04\xD1\xA9\x8C\x8C\x9E\x16\x89+\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 166 "-" "-" 209.38.80.157 - - [10/Jun/2025:16:22:23 +0000] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\x91\x91\x81\xA7[@\x8Aj\xB3\x88\xA3\xE6\xFC6tVQ\xEF}U\xE2-\xB5D!\x87\x8B\x89\xC9\x08\x8B\x12\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 166 "-" "-" 209.38.80.157 - - [10/Jun/2025:16:22:27 +0000] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xB0\xA5?</\x08\x06$\xD0\xB3P\x99v\xC7~%\x03B\xDA\x7F\x8CU\x14\xBC4O\x9B\xEF3\x91\x95\xDF\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 166 "-" "-" ... show less	Brute-Force
🇷🇺 BellFix	2025-06-10 16:17:18 (1 year ago)	F2B blocked NPM	Port Scan Brute-Force Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 198.244.183.186

🇫🇷 163.172.143.147

🇮🇳 103.173.20.69

🇳🇱 91.92.40.5

🇫🇷 85.217.140.31

🇮🇳 223.185.15.146

🇺🇸 135.119.89.68

🇺🇸 72.253.251.7

🇭🇰 47.238.176.109

🇺🇸 45.8.19.104

🇮🇳 43.243.81.206

🇮🇷 5.233.36.110

🇮🇳 182.95.61.82

🇨🇳 117.34.85.169

🇬🇧 92.27.157.252

🇱🇹 81.30.98.49

🇩🇪 43.228.157.152

🇧🇪 34.156.207.18

🇺🇸 34.48.216.75

🇨🇳 221.206.251.160