JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.121.203.146

138.121.203.146 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 3%: ?

ISP	Chigwell Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS33182
Hostname(s)	138-121-203-146.static.hostdime.com
Domain Name	hostdime.com.co
Country	🇨🇴 Colombia
City	Barrio San Luis, Bogota D.C.

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.121.203.146

Whois 138.121.203.146

IP Abuse Reports for 138.121.203.146:

This IP address has been reported a total of 147 times from 57 distinct sources. 138.121.203.146 was first reported on February 14th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-13 11:10:35 (1 week ago)	Blocked by UFW on MVI [63947/tcp] \| SPT: 8081 \| TTL: 55 \| LEN: 52 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [63947/tcp] \| SPT: 8081 \| TTL: 55 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇳 Mcshield.org	2025-12-01 04:05:35 (6 months ago)	Failed password for invalid user oracle from 138.121.203.146 port 38755 ssh2	Brute-Force SSH
🇩🇪 Packets-Decreaser.NET	2025-09-19 11:48:05 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇫🇷 geot	2025-07-18 12:17:24 (11 months ago)	GET /ssl-vpn/getconfig.esp?client-type=1&protocol-version=p1&app-version=3.0.1-10&clientos=Linux&os- ... show more GET /ssl-vpn/getconfig.esp?client-type=1&protocol-version=p1&app-version=3.0.1-10&clientos=Linux&os-version=linux-64&hmac-algo=sha1%2Cmd5&enc-algo=aes-128-cbc%2Caes-256-cbc&authcookie=<<removed>>&portal=us-vpn-gw-N&user=%3Csvg%20xmlns%3D%22http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%22%3E%3Cscript%3Eprompt%28%22XSS%22%29%3C%2Fscript%3E%3C%2Fsvg%3E&domain=%28empty_domain%29&computer=computer HTTP/1.1 show less	Hacking Web App Attack
🇪🇸 el-brujo	2025-07-18 02:56:56 (11 months ago)	Cloudflare WAF: Request Path: /ssl-vpn/getconfig.esp Request Query: ?client-type=1&protocol-version= ... show more Cloudflare WAF: Request Path: /ssl-vpn/getconfig.esp Request Query: ?client-type=1&protocol-version=p1&app-version=3.0.1-10&clientos=Linux&os-version=linux-64&hmac-algo=sha1%2Cmd5&enc-algo=aes-128-cbc%2Caes-256-cbc&authcookie=12cea70227d3aafbf25082fac1b6f51d&portal=us-vpn-gw-N&user=%3Csvg%20xmlns%3D%22http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%22%3E%3Cscript%3Eprompt%28%22XSS%22%29%3C%2Fscript%3E%3C%2Fsvg%3E&domain=%28empty_domain%29&computer=computer Host: wiki.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.87 Safari/537.36 Action: log Source: firewallManaged ASN Description: DIMENOC Country: CO Method: GET Timestamp: 2025-07-18T02:56:56Z ruleId: 9c8dda9708cc4452ac76e7be7b58420b. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
Anonymous	2025-07-18 02:52:43 (11 months ago)	Aggressive web scan	Web App Attack
Anonymous	2025-07-18 00:08:05 (11 months ago)	Aggressive web scan	SQL Injection Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-07-17 14:22:53 (11 months ago)	Triggered Cloudflare WAF (firewallCustom) from CO. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CO. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /app_dev.php/_profiler/empty/search/results UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇮🇹 mgarofano80	2025-07-08 00:55:54 (11 months ago)		Brute-Force Web App Attack
Anonymous	2025-07-08 00:00:54 (11 months ago)	Aggressive web scan	SQL Injection Bad Web Bot Web App Attack
🇫🇷 geot	2025-07-06 12:16:19 (11 months ago)	GET /_profiler/empty/search/results?limit=10 HTTP/1.1 GET /app_dev.php/_profiler/empty/search/result ... show more GET /_profiler/empty/search/results?limit=10 HTTP/1.1 GET /app_dev.php/_profiler/empty/search/results?limit=10 HTTP/1.1 show less	Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-07-06 11:57:16 (11 months ago)	Triggered Cloudflare WAF (firewallCustom) from CO. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CO. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /app_dev.php/_profiler/empty/search/results UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_5_7; es) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0.7 Safari/605.1.15 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇷🇺 cybertailor	2025-07-05 23:39:05 (11 months ago)	138.121.203.146 - - [06/Jul/2025:00:51:18 +0500] "HEAD / HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Debian; L ... show more 138.121.203.146 - - [06/Jul/2025:00:51:18 +0500] "HEAD / HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Debian; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 138.121.203.146 - - [06/Jul/2025:04:39:01 +0500] "GET /_profiler/empty/search/results?limit=10 HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Safari/605.1.24" 138.121.203.146 - - [06/Jul/2025:04:39:01 +0500] "GET /_profiler/empty/search/results?limit=10 HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Safari/605.1.24" 138.121.203.146 - - [06/Jul/2025:04:39:03 +0500] "GET /app_dev.php/_profiler/empty/search/results?limit=10 HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Kubuntu; Linux i686; rv:123.0) Gecko/20100101 Firefox/123.0" ... show less	Port Scan
🇫🇷 geot	2025-07-05 15:49:24 (11 months ago)	GET /app_dev.php/_profiler/empty/search/results?limit=10 HTTP/1.1 GET /_profiler/empty/search/result ... show more GET /app_dev.php/_profiler/empty/search/results?limit=10 HTTP/1.1 GET /_profiler/empty/search/results?limit=10 HTTP/1.1 show less	Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-07-04 19:58:40 (11 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 138.121.203.146 (CO/Colombia/138-12 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 138.121.203.146 (CO/Colombia/138-121-203-146.static.hostdime.com): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇱 186.103.169.12

🇩🇪 139.59.208.49

🇨🇦 65.38.77.199

🇸🇦 64.65.113.21

🇺🇸 15.204.211.98

🇨🇳 14.103.107.234

🇰🇷 222.239.251.12

🇻🇳 202.158.244.203

🇩🇪 185.231.255.164

🇵🇾 181.94.226.165

🇦🇷 170.81.230.202

🇳🇱 91.92.40.48

🇨🇳 58.220.39.200

🇨🇳 43.138.168.59

🇺🇸 34.57.82.132

🇧🇦 5.59.163.70

🇺🇸 195.184.76.107

🇸🇪 195.178.191.5

🇵🇪 190.42.16.243

🇮🇩 103.108.130.173