JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 1.38.221.32

1.38.221.32 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 100%: ?

100%

ISP	Vodafone Essar Limited GPRS service
Usage Type	Fixed Line ISP
ASN	AS38266
Domain Name	myvi.in
Country	🇮🇳 India
City	Mumbai, Maharashtra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 1.38.221.32

Whois 1.38.221.32

IP Abuse Reports for 1.38.221.32:

This IP address has been reported a total of 25 times from 22 distinct sources. 1.38.221.32 was first reported on August 30th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 agentics	2026-06-10 02:55:08 (2 days ago)	1.38.221.32 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale in ... show more 1.38.221.32 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 1.38.221.32 - Anycast false - City N/A - Region N/A - Region Code N/A - Country N/A (N/A) - Continent N/A (N/A) - Range N/A - Provider N/A - Organisation N/A - Proxy N/A - Type N/A show less	Brute-Force SSH
🇿🇦 agentics	2026-06-10 02:41:08 (2 days ago)	1.38.221.32 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale in ... show more 1.38.221.32 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 1.38.221.32 - Anycast false - City Ambarnath - Region Maharashtra - Region Code MH - Country India (IN) - Continent Asia (AS) - Range 1.38.221.0/24 - Provider Vodafone Idea Ltd. (VIL) - Organisation Hutchison Max Telecom Limited - Proxy no - Type Wireless show less	Brute-Force SSH
🇫🇷 sh97	2026-06-10 02:25:43 (2 days ago)	FR02: SSH Brute Force from 1.38.221.32 at 2026-06-10 06:25:43 +04	Brute-Force SSH
🇫🇷 sh97	2026-06-09 02:42:29 (3 days ago)	FR02: SSH Brute Force from 1.38.221.32 at 2026-06-09 06:42:29 +04	Brute-Force SSH
🇪🇸 librebit	2026-06-05 06:23:20 (1 week ago)	Knockin' on Heaven's Door, SSH crap	Brute-Force SSH
🇨🇳 さいとうあすか	2026-06-04 22:01:44 (1 week ago)	2026-06-05T05:53:38.732391+08:00 pbs sshd[2657812]: Failed password for root from 1.38.221.32 port 3 ... show more 2026-06-05T05:53:38.732391+08:00 pbs sshd[2657812]: Failed password for root from 1.38.221.32 port 39394 ssh2 2026-06-05T06:01:43.225148+08:00 pbs sshd[2658175]: Invalid user panel from 1.38.221.32 port 27249 ... show less	Brute-Force SSH
🇺🇸 RHNoah	2026-06-04 21:15:46 (1 week ago)	(sshd) Failed SSH login from 1.38.221.32 (IN/-/-): 5 in the last 3600 secs; Ports: ; Direction: ino ... show more (sshd) Failed SSH login from 1.38.221.32 (IN/-/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Jun 4 16:54:22 na-s3 sshd[1367004]: Invalid user map from 1.38.221.32 port 45811 Jun 4 16:56:23 na-s3 sshd[1391053]: Invalid user den from 1.38.221.32 port 41955 Jun 4 16:58:24 na-s3 sshd[1413054]: Invalid user filter from 1.38.221.32 port 39203 Jun 4 17:02:17 na-s3 sshd[1457582]: Invalid user erp from 1.38.221.32 port 17783 Jun 4 17:15:42 na-s3 sshd[1616137]: Invalid user gitlab-runner from 1.38.221.32 port 15338 show less	Port Scan
🇧🇾 lns.bz	2026-06-04 20:49:23 (1 week ago)	SSH bruteforce [BY]	SSH
🇺🇸 yzfdude1	2026-06-04 20:49:17 (1 week ago)	Jun 4 14:47:29 b146-71 sshd[434609]: Failed password for root from 1.38.221.32 port 41716 ssh2 Jun ... show more Jun 4 14:47:29 b146-71 sshd[434609]: Failed password for root from 1.38.221.32 port 41716 ssh2 Jun 4 14:49:15 b146-71 sshd[434624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.38.221.32 user=root Jun 4 14:49:17 b146-71 sshd[434624]: Failed password for root from 1.38.221.32 port 37428 ssh2 ... show less	Brute-Force SSH
🇨🇿 gszasz	2026-06-04 20:46:43 (1 week ago)	2026-06-04T22:32:51.722036 phoenix sshd-session[667161]: Disconnected from authenticating user root ... show more 2026-06-04T22:32:51.722036 phoenix sshd-session[667161]: Disconnected from authenticating user root 1.38.221.32 port 55336 [preauth] 2026-06-04T22:46:40.375418 phoenix sshd-session[676446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.38.221.32 user=root 2026-06-04T22:46:42.277552 phoenix sshd-session[676446]: Failed password for root from 1.38.221.32 port 27307 ssh2 ... show less	Brute-Force SSH
🇩🇪 licen777	2026-06-04 20:34:45 (1 week ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-04T19:17:47Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-04T19:17:47Z and 2026-06-04T20:34:45Z show less	Brute-Force SSH
🇨🇿 lp	2026-06-04 19:48:52 (1 week ago)	SSH Brute force: 6 attempts were recorded from 1.38.221.32 2026-06-04T21:18:58+02:00 Disconnected fr ... show more SSH Brute force: 6 attempts were recorded from 1.38.221.32 2026-06-04T21:18:58+02:00 Disconnected from authenticating user root 1.38.221.32 port 64049 [preauth] 2026-06-04T21:26:44+02:00 Disconnected from authenticating user root 1.38.221.32 port 31271 [preauth] 2026-06-04T21:28:43+02:00 Invalid user adv from 1.38.221.32 port 23973 2026-06-04T21:30:46+02:00 Disconnected from authenticating user root 1.38.221.32 port 9025 [preauth] 2026-06-04T21:35:02+02:00 Invalid user testuser from 1.38.221.32 port 48087 2026-06-04T21:37:14+02:00 Invalid user webuser from 1.38.221.32 port 59906 show less	Brute-Force SSH
🇫🇷 cydit.eu	2026-06-04 18:21:02 (1 week ago)	SSH brute force attack detected by fail2ban on thor.cydit.eu	Brute-Force
🇺🇸 bigscoots.com	2026-06-04 18:18:17 (1 week ago)	(sshd) Failed SSH login from 1.38.221.32 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: ... show more (sshd) Failed SSH login from 1.38.221.32 (IN/India/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 4 13:02:09 14131 sshd[7474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.38.221.32 user=root Jun 4 13:02:11 14131 sshd[7474]: Failed password for root from 1.38.221.32 port 6090 ssh2 Jun 4 13:07:51 14131 sshd[10352]: Invalid user ociistst from 1.38.221.32 port 20783 Jun 4 13:07:53 14131 sshd[10352]: Failed password for invalid user ociistst from 1.38.221.32 port 20783 ssh2 Jun 4 13:18:11 14131 sshd[15740]: Invalid user steam from 1.38.221.32 port 20986 show less	Brute-Force SSH
Anonymous	2026-06-04 18:15:43 (1 week ago)	2026-06-04T20:07:29.377917+02:00 HETZNER-FI-1 sshd[1666162]: Invalid user ociistst from 1.38.221.32 ... show more 2026-06-04T20:07:29.377917+02:00 HETZNER-FI-1 sshd[1666162]: Invalid user ociistst from 1.38.221.32 port 8159 2026-06-04T20:11:31.551995+02:00 HETZNER-FI-1 sshd[1685348]: Invalid user daniel from 1.38.221.32 port 32812 2026-06-04T20:15:42.362406+02:00 HETZNER-FI-1 sshd[1705039]: Invalid user samba from 1.38.221.32 port 52319 ... show less	Brute-Force SSH

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.82

🇿🇦 105.187.231.207

🇺🇸 66.132.186.130

🇯🇵 152.32.202.250

🇵🇭 112.203.168.97

🇺🇸 103.215.74.60

🇳🇵 103.104.28.159

🇰🇿 93.170.37.40

🇷🇺 85.93.45.33

🇨🇭 83.166.133.92

🇧🇬 78.128.113.74

🇫🇷 51.158.110.225

🇫🇷 51.83.40.102

🇺🇸 20.163.15.93

🇮🇩 203.175.125.130

🇦🇫 156.229.36.41

🇵🇰 154.80.123.181

🇩🇪 152.53.22.186

🇸🇬 128.199.231.249

🇨🇳 113.96.15.64