JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 75.119.132.28

75.119.132.28 was found in our database!

This IP was reported 88 times. Confidence of Abuse is 100%: ?

100%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3328131.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 75.119.132.28

Whois 75.119.132.28

IP Abuse Reports for 75.119.132.28:

This IP address has been reported a total of 88 times from 73 distinct sources. 75.119.132.28 was first reported on June 7th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Petre 21_ip	2026-06-16 18:47:21 (1 hour ago)	2026-06-16T20:47:20.429356+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-16T20:47:20.429356+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=75.119.132.28 DST=155.133.26.57 LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=46769 PROTO=TCP SPT=63722 DPT=2222 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇮 WinnieHoneypots	2026-06-16 17:52:54 (1 hour ago)	Aggressive robot that won't stop hitting 404s	Port Scan Bad Web Bot Web App Attack
🇩🇪 nohacefaltapapel-et.net	2026-06-16 17:49:30 (1 hour ago)	2026-06-16T19:45:03.256774cocheando sshd[26258]: Invalid user admin from 75.119.132.28 port 46242 20 ... show more 2026-06-16T19:45:03.256774cocheando sshd[26258]: Invalid user admin from 75.119.132.28 port 46242 2026-06-16T19:45:33.577719cocheando sshd[26286]: Invalid user orangepi from 75.119.132.28 port 42902 2026-06-16T19:49:29.507763cocheando sshd[26522]: Invalid user test from 75.119.132.28 port 46240 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-16 17:43:18 (2 hours ago)	(sshd) Failed SSH login from 75.119.132.28 (US/United States/vmi3328131.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 75.119.132.28 (US/United States/vmi3328131.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 16 12:42:06 14406 sshd[17963]: Invalid user admin from 75.119.132.28 port 44926 Jun 16 12:42:08 14406 sshd[17963]: Failed password for invalid user admin from 75.119.132.28 port 44926 ssh2 Jun 16 12:42:39 14406 sshd[18127]: Invalid user orangepi from 75.119.132.28 port 58090 Jun 16 12:42:41 14406 sshd[18127]: Failed password for invalid user orangepi from 75.119.132.28 port 58090 ssh2 Jun 16 12:43:12 14406 sshd[18516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.119.132.28 user=root show less	Brute-Force SSH
🇺🇸 valornode	2026-06-16 17:25:13 (2 hours ago)	Detected by CrowdSec on www.iambrayden.net-47d88224: CrowdSec: crowdsecurity/thinkphp-cve-2018-20062 ... show more Detected by CrowdSec on www.iambrayden.net-47d88224: CrowdSec: crowdsecurity/thinkphp-cve-2018-20062 \| ASN: 51167 (Contabo GmbH) \| Country: FR \| Range: 75.119.128.0/19 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-16 17:24:55 (2 hours ago)	(sshd) Failed SSH login from 75.119.132.28 (US/United States/vmi3328131.contaboserver.net): 5 in the ... show more (sshd) Failed SSH login from 75.119.132.28 (US/United States/vmi3328131.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 16 12:23:40 15616 sshd[8253]: Invalid user admin from 75.119.132.28 port 41304 Jun 16 12:23:43 15616 sshd[8253]: Failed password for invalid user admin from 75.119.132.28 port 41304 ssh2 Jun 16 12:24:14 15616 sshd[8738]: Invalid user orangepi from 75.119.132.28 port 45268 Jun 16 12:24:15 15616 sshd[8738]: Failed password for invalid user orangepi from 75.119.132.28 port 45268 ssh2 Jun 16 12:24:46 15616 sshd[8898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.119.132.28 user=root show less	Brute-Force SSH
🇫🇷 security.rdmc.fr	2026-06-16 17:20:00 (2 hours ago)	Port Scan Attack proto:TCP src:44478 dst:23	Port Scan
Anonymous	2026-06-16 17:05:23 (2 hours ago)	/cgi-bin probe	Web App Attack
🇺🇸 RAP	2026-06-16 16:37:38 (3 hours ago)	2026-06-16 16:37:38 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇩🇪 Kreisausschuss des Odenwaldkreises	2026-06-16 16:11:45 (3 hours ago)	HAProxy NOSRV or BADREQ	Web App Attack
🇩🇪 bescared	2026-06-16 15:58:35 (3 hours ago)	F2B - Malicious activity detected. Excessive port scans. -8ff06ede-	Port Scan
🇩🇪 tg_de	2026-06-16 15:54:19 (3 hours ago)	44 attempts since 16.06.2026 17:54:16 CEST - last search for: /containers/json	Web App Attack
🇺🇸 drewf.ink	2026-06-16 15:50:45 (3 hours ago)	[15:50] Port scanning. Port(s) scanned: TCP/2375	Port Scan
🇯🇵 S.O.B.A. Dev.	2026-06-16 15:41:46 (4 hours ago)	Persistent port scanning or vulnerability scanning	Port Scan
🇺🇸 MPL	2026-06-16 15:34:29 (4 hours ago)	tcp/80 (2 or more attempts)	Port Scan

Showing 1 to 15 of 88 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.244.194.112

🇰🇷 175.229.76.210

🇨🇳 117.72.103.177

🇺🇸 74.48.21.66

🇺🇸 23.95.68.15

🇭🇰 23.91.97.170

🇺🇸 186.244.245.2

🇩🇪 167.94.146.47

🇳🇱 81.19.216.71

🇳🇱 91.92.40.13

🇩🇪 77.110.107.31

🇩🇪 68.183.70.177

🇺🇸 47.252.39.247

🇭🇰 45.249.246.196

🇲🇽 187.191.48.4

🇮🇶 185.166.25.150

🇺🇸 167.172.129.4

🇬🇧 167.71.133.68

🇺🇸 152.32.183.231

🇷🇺 138.124.77.177