JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.209.120.249

38.209.120.249 was found in our database!

This IP was reported 168 times. Confidence of Abuse is 100%: ?

100%

ISP	Cogent Communications, LLC
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	cogentco.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.209.120.249

Whois 38.209.120.249

IP Abuse Reports for 38.209.120.249:

This IP address has been reported a total of 168 times from 120 distinct sources. 38.209.120.249 was first reported on May 24th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 Parth Maniar	2026-05-25 05:43:36 (1 month ago)	This IP address carried out 193 port scanning attempts on 24-05-2026. For more information or to rep ... show more This IP address carried out 193 port scanning attempts on 24-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇮🇳 Parth Maniar	2026-05-25 05:23:16 (1 month ago)	This IP address carried out 34 SSH credential attack (attempts) on 24-05-2026. For more information ... show more This IP address carried out 34 SSH credential attack (attempts) on 24-05-2026. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-05-25 02:07:57 (1 month ago)	2026-05-25T02:59:04.670202+01:00 router01.hotel-kniep.com sshd-session[1944487]: Invalid user cloud ... show more 2026-05-25T02:59:04.670202+01:00 router01.hotel-kniep.com sshd-session[1944487]: Invalid user cloud from 38.209.120.249 port 52040 2026-05-25T02:59:04.835111+01:00 router01.hotel-kniep.com sshd-session[1944487]: Disconnected from invalid user cloud 38.209.120.249 port 52040 [preauth] 2026-05-25T03:04:34.542401+01:00 router01.hotel-kniep.com sshd-session[1945401]: Invalid user dan from 38.209.120.249 port 53358 2026-05-25T03:04:34.713775+01:00 router01.hotel-kniep.com sshd-session[1945401]: Disconnected from invalid user dan 38.209.120.249 port 53358 [preauth] 2026-05-25T03:07:56.218788+01:00 router01.hotel-kniep.com sshd-session[1945949]: Invalid user temp from 38.209.120.249 port 40464 show less	Brute-Force
Anonymous	2026-05-25 02:05:58 (1 month ago)	2026-05-25T01:53:38.054706+00:00 de-fra2-flow1 sshd[2847134]: Invalid user cloud from 38.209.120.249 ... show more 2026-05-25T01:53:38.054706+00:00 de-fra2-flow1 sshd[2847134]: Invalid user cloud from 38.209.120.249 port 43104 2026-05-25T02:02:40.111936+00:00 de-fra2-flow1 sshd[2847491]: Invalid user dan from 38.209.120.249 port 39814 2026-05-25T02:05:57.302010+00:00 de-fra2-flow1 sshd[2847499]: Invalid user temp from 38.209.120.249 port 55144 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-05-25 02:05:32 (1 month ago)	May 24 20:01:52 b146-22 sshd[143755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more May 24 20:01:52 b146-22 sshd[143755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.209.120.249 May 24 20:01:54 b146-22 sshd[143755]: Failed password for invalid user cloud from 38.209.120.249 port 34638 ssh2 May 24 20:05:32 b146-22 sshd[143789]: Invalid user dan from 38.209.120.249 port 52084 ... show less	Brute-Force SSH
🇳🇿 TazzNZ	2026-05-25 02:03:50 (1 month ago)	2026-05-25T13:56:30.950074+12:00 eragon sshd[566316]: Invalid user cloud from 38.209.120.249 port 47 ... show more 2026-05-25T13:56:30.950074+12:00 eragon sshd[566316]: Invalid user cloud from 38.209.120.249 port 47896 2026-05-25T13:56:31.163907+12:00 eragon sshd[566316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.209.120.249 2026-05-25T13:56:33.451128+12:00 eragon sshd[566316]: Failed password for invalid user cloud from 38.209.120.249 port 47896 ssh2 2026-05-25T14:03:22.094743+12:00 eragon sshd[568050]: Invalid user dan from 38.209.120.249 port 58404 ... show less	Brute-Force SSH
🇳🇱 trivox.sh	2026-05-25 02:03:47 (1 month ago)	2026-05-25T03:56:48.625780+02:00 libre sshd[542883]: Failed password for invalid user cloud from 38. ... show more 2026-05-25T03:56:48.625780+02:00 libre sshd[542883]: Failed password for invalid user cloud from 38.209.120.249 port 51014 ssh2 2026-05-25T03:56:50.556555+02:00 libre sshd[542883]: Disconnected from invalid user cloud 38.209.120.249 port 51014 [preauth] 2026-05-25T04:03:45.408471+02:00 libre sshd[543070]: Invalid user dan from 38.209.120.249 port 34080 2026-05-25T04:03:45.421573+02:00 libre sshd[543070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.209.120.249 2026-05-25T04:03:47.091466+02:00 libre sshd[543070]: Failed password for invalid user dan from 38.209.120.249 port 34080 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-05-25 02:01:54 (1 month ago)	Fail2Ban detection - brute-force attempt (jail: sshd)	Brute-Force
🇪🇸 tg_de	2026-05-25 01:43:55 (1 month ago)	19 attempts since 25.05.2026 00:44:44 UTC - last one: 2026-05-25T03:43:55.474413+02:00 beta sshd-ses ... show more 19 attempts since 25.05.2026 00:44:44 UTC - last one: 2026-05-25T03:43:55.474413+02:00 beta sshd-session[8210]: Disconnected from authenticating user root 38.209.120.249 port 46806 [preauth] show less	Brute-Force SSH
🇰🇷 Woodie	2026-05-25 01:33:25 (1 month ago)	2026-05-24T21:26:41.731521-04:00 debian sshd[3524876]: Failed password for invalid user roo from 38. ... show more 2026-05-24T21:26:41.731521-04:00 debian sshd[3524876]: Failed password for invalid user roo from 38.209.120.249 port 50364 ssh2 2026-05-24T21:30:14.362273-04:00 debian sshd[3528277]: Invalid user farhan from 38.209.120.249 port 37368 2026-05-24T21:30:14.365570-04:00 debian sshd[3528277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.209.120.249 2026-05-24T21:30:16.625742-04:00 debian sshd[3528277]: Failed password for invalid user farhan from 38.209.120.249 port 37368 ssh2 2026-05-24T21:33:25.667875-04:00 debian sshd[3531647]: Invalid user vincenzo from 38.209.120.249 port 52574 ... show less	Brute-Force SSH
🇮🇹 SentinalX by uzumaru	2026-05-25 01:20:09 (1 month ago)	SSH brute-force detected: 11 failed login attempts in the last 1 hour.	Brute-Force SSH
🇩🇪 LRob.fr	2026-05-25 01:15:13 (1 month ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇰🇷 Woodie	2026-05-25 01:10:27 (1 month ago)	2026-05-24T21:03:42.991920-04:00 debian sshd[3503043]: Failed password for invalid user esearch from ... show more 2026-05-24T21:03:42.991920-04:00 debian sshd[3503043]: Failed password for invalid user esearch from 38.209.120.249 port 56800 ssh2 2026-05-24T21:06:57.887109-04:00 debian sshd[3506038]: Invalid user ts from 38.209.120.249 port 43782 2026-05-24T21:06:57.890701-04:00 debian sshd[3506038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.209.120.249 2026-05-24T21:06:59.368851-04:00 debian sshd[3506038]: Failed password for invalid user ts from 38.209.120.249 port 43782 ssh2 2026-05-24T21:10:25.949739-04:00 debian sshd[3509393]: Invalid user geoserver from 38.209.120.249 port 59012 ... show less	Brute-Force SSH
🇫🇷 jst	2026-05-25 01:06:11 (1 month ago)	2026-05-25T02:59:47.948351+02:00 amadeus.freeznet.eu sshd[3221550]: Invalid user opc from 38.209.120 ... show more 2026-05-25T02:59:47.948351+02:00 amadeus.freeznet.eu sshd[3221550]: Invalid user opc from 38.209.120.249 port 34652 2026-05-25T03:02:52.026386+02:00 amadeus.freeznet.eu sshd[3223798]: Invalid user esearch from 38.209.120.249 port 49844 2026-05-25T03:06:10.594639+02:00 amadeus.freeznet.eu sshd[3226310]: Invalid user ts from 38.209.120.249 port 36872 ... show less	Brute-Force SSH
🇵🇹 facha	2026-05-25 01:02:21 (1 month ago)	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2026-05-25T00:46:27Z and 2026-05- ... show more Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2026-05-25T00:46:27Z and 2026-05-25T01:02:21Z show less	Brute-Force SSH

Showing 1 to 15 of 168 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 60.199.224.55

🇮🇳 182.75.216.230

🇳🇱 176.65.139.232

🇨🇳 117.164.191.217

🇭🇰 103.234.99.121

🇮🇳 103.25.47.94

🇱🇺 64.89.161.90

🇩🇪 44.148.174.56

🇻🇳 27.79.44.110

🇫🇷 185.177.72.205

🇳🇱 178.228.187.120

🇧🇷 152.32.200.117

🇿🇦 102.215.248.247

🇺🇸 66.132.172.233

🇺🇸 50.188.204.213

🇺🇸 44.77.196.54

🇺🇸 20.65.194.183

🇵🇹 2.83.150.116

🇫🇷 185.207.250.24

🇨🇳 121.18.49.14