JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.199.35.196

138.199.35.196 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-138-199-35-196.datapacket.com
Domain Name	datacamp.co.uk
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.199.35.196

Whois 138.199.35.196

IP Abuse Reports for 138.199.35.196:

This IP address has been reported a total of 10 times from 8 distinct sources. 138.199.35.196 was first reported on May 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 GunsawianHosting	2026-03-12 17:08:57 (2 months ago)	Open Proxy	Open Proxy
🇨🇳 ThreatBook.io	2026-03-03 22:42:54 (3 months ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/138.199.35.196 2026-03-03 0 ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/138.199.35.196 2026-03-03 08:26:01 /api/login,{"body":"{\"username\": \"admin123\", \"password\": \"peijiaxin\", \"recaptcha\": \"\"}","content_type":"application/json","header":{"Accept":["/"],"Accept-Encoding":["gzip, deflate"],"Connection":["keep-alive"],"Content-Length":["66"],"Content-Type":["application/json"],"User-Agent":["python-requests/2.32.4"]},"host":"60.25.122.74:8000","method":"POST","proto":"HTTP/1.1","remote_addr":"138.199.35.196:57828","status_code":200,"url":"/api/login","user_agent":"python-requests/2.32.4"} 2026-03-03 08:26:00 / show less	Web App Attack
🇪🇸 el-brujo	2025-12-18 04:59:23 (5 months ago)	Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /ptbt_apdos Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: CDNEXT Country: US Method: GET Timestamp: 2025-12-18T04:59:23Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 SuperEvilLuke	2025-12-14 14:04:48 (5 months ago)	Malicious activity detected from 212238 CDNEXT towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12 ... show more Malicious activity detected from 212238 CDNEXT towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-14T14:04:48Z (3 occurrences) show less	DDoS Attack Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-10 14:43:08 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-04-08 06:09:40 (1 year ago)	(mod_security) mod_security (id:210740) triggered by 138.199.35.196 (unn-138-199-35-196.datapacket.c ... show more (mod_security) mod_security (id:210740) triggered by 138.199.35.196 (unn-138-199-35-196.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 08 02:09:34.173739 2025] [security2:error] [pid 22615:tid 22615] [client 138.199.35.196:45114] [client 138.199.35.196] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|rblep.com\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "rblep.com"] [uri "/wp-includes/js/jquery/jquery-migrate.min.js"] [unique_id "Z_S9nhQZOJEwkTt8ruWqlwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-02-11 17:07:02 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-02-03 15:47:14 (1 year ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 David Ferneding	2025-01-03 16:50:11 (1 year ago)	Part of large-scale ddos-attack, 517037 requests from this ip	DDoS Attack
🇨🇳 ThreatBook.io	2024-05-11 22:44:39 (2 years ago)	ThreatBook Intelligence: VPN more details on http://threatbook.io/ip/138.199.35.196 2024-05-11 21:36 ... show more ThreatBook Intelligence: VPN more details on http://threatbook.io/ip/138.199.35.196 2024-05-11 21:36:52 /theme/theme_v=582537319&__theme_rnd=582537319.css 2024-05-11 21:36:52 /plugin_v=582537319.css 2024-05-11 21:36:51 /index_v=582537319.css 2024-05-11 21:36:52 /theme/images/logo_r=00000000.png 2024-05-11 21:36:51 / 2024-05-11 21:36:52 /theme/theme_skin_v=582537319&__theme_rnd=582537319.css 2024-05-11 21:36:53 /font/iconfont.woff show less	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.172.104

🇺🇸 2604:a880:400:d1:0:4:8bf7:a001

🇹🇷 212.108.149.185

🇬🇧 193.163.125.14

🇳🇱 176.65.139.140

🇺🇸 162.216.149.69

🇺🇸 146.190.154.100

🇸🇬 103.187.146.72

🇻🇳 103.186.101.237

🇻🇳 103.75.182.132

🇫🇷 92.103.134.183

🇩🇪 64.89.163.51

🇳🇱 45.148.10.147

🇬🇧 31.14.254.28

🇪🇸 2.139.116.116

🇷🇴 2.57.121.112

🇬🇧 209.93.93.144

🇸🇪 158.174.210.161

🇺🇸 135.237.125.183

🇷🇴 109.103.66.60