JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.199.56.225

138.199.56.225 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 11%: ?

11%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	datacamp.co.uk
Country	🇨🇿 Czechia
City	Prague, Prague

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.199.56.225

Whois 138.199.56.225

IP Abuse Reports for 138.199.56.225:

This IP address has been reported a total of 142 times from 46 distinct sources. 138.199.56.225 was first reported on September 28th 2021, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 Origon	2026-06-14 14:34:48 (5 days ago)	postfix-non-smtp-command - IP: 138.199.56.225 - time="2026-06-14T16:34:47+02:00" level=info msg="(5 ... show more postfix-non-smtp-command - IP: 138.199.56.225 - time="2026-06-14T16:34:47+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/postfix-non-smtp-command by ip 138.199.56.225 (CZ/212238) : 4h ban on Ip 138.199.56.225" module=db show less	Email Spam
Anonymous	2026-05-27 10:30:16 (3 weeks ago)	Triggered: repeated knocking on closed ports.	Port Scan
🇦🇱 router.al	2026-03-18 00:16:40 (3 months ago)	03/18/2026-00:16:40.631449 138.199.56.225 Protocol: 6 GPL WEB_SERVER 403 Forbidden	Port Scan
Anonymous	2026-01-23 06:50:19 (4 months ago)	Malicious activity detected	Hacking Web App Attack
🇬🇧 openstrike.co.uk	2025-11-24 09:02:47 (6 months ago)	11 packets to ports 10096 11371 15043 20024 20132 20193 20196 20229 20232 20233 20243	Port Scan
Anonymous	2025-11-23 05:14:41 (6 months ago)	Ports: 25,2525,587,465; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-11-23 04:15:37 (6 months ago)	Port Scan	Port Scan
🇱🇺 conseilgouz	2025-11-12 10:31:40 (7 months ago)	are-Joomla Authentification : try to force the door...	Hacking
🇨🇿 lp	2025-11-08 01:23:57 (7 months ago)	Unauthorized VPN login attempts: 3 attempts were recorded from 138.199.56.225 2025-11-08T01:43:10+01 ... show more Unauthorized VPN login attempts: 3 attempts were recorded from 138.199.56.225 2025-11-08T01:43:10+01:00 vpn Access-Reject 'tulk02' station: 138.199.56.225 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-11-08T01:45:21+01:00 vpn Access-Reject 'shat07' station: 138.199.56.225 auth-type: PAP realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' 2025-11-08T01:46:25+01:00 vpn Access-Reject 'xsvia06' station: 138.199.56.225 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
🇧🇪 fpoulet	2025-10-08 11:47:39 (8 months ago)	Blocked by Fail2Ban (Postfix BruteForce)	Brute-Force SSH
🇨🇳 ThreatBook.io	2025-09-27 23:07:39 (8 months ago)	ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/138.199.56.22 ... show more ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/138.199.56.225 show less	SSH
🇨🇳 ThreatBook.io	2025-07-06 22:38:36 (11 months ago)	ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/138.199.56.22 ... show more ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/138.199.56.225 2025-07-06 19:12:24 http://azenv.net/ show less	Web App Attack
🇺🇸 Rayulcifer	2025-07-06 15:51:11 (11 months ago)	138.199.56.225 - - [06/Jul/2025:10:51:08 -0500] "GET http://azenv.net/ HTTP/1.1" 200 84201 "-" "Mozi ... show more 138.199.56.225 - - [06/Jul/2025:10:51:08 -0500] "GET http://azenv.net/ HTTP/1.1" 200 84201 "-" "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 138.199.56.225 - - [06/Jul/2025:10:51:09 -0500] "GET http://azenv.net/ HTTP/1.1" 200 84239 "-" "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Josh S.	2025-05-15 19:14:05 (1 year ago)	Blocked by UFW on Mailcow [27017/tcp] Source port: 50036 TTL: 52 Packet length: 60 TOS: 0x00 If thi ... show more Blocked by UFW on Mailcow [27017/tcp] Source port: 50036 TTL: 52 Packet length: 60 TOS: 0x00 If this was a mistake contact me: [email protected] show less	Port Scan
🇨🇳 ThreatBook.io	2025-01-30 23:32:53 (1 year ago)	ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/138.199.56.22 ... show more ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/138.199.56.225 2025-01-30 21:07:12 //109.236.240.60:443 2025-01-30 21:09:28 //213.128.199.5:264 2025-01-30 21:11:12 //109.236.240.187:443 2025-01-30 21:06:52 //213.128.199.6:443 2025-01-30 21:09:33 //109.236.249.236:80 2025-01-30 21:11:13 //109.236.249.172:443 show less	Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 103.132.244.180

🇨🇱 200.126.105.149

🇭🇰 199.45.155.74

🇳🇱 193.176.31.209

🇮🇳 182.95.103.74

🇺🇸 143.42.164.34

🇮🇷 79.175.176.177

🇳🇱 45.148.10.240

🇳🇱 45.148.10.141

🇺🇸 44.19.152.36

🇿🇦 41.203.61.250

🇳🇱 5.255.111.52

🇰🇷 221.153.12.93

🇲🇿 197.242.170.10

🇳🇱 195.178.110.30

🇻🇳 103.149.86.208

🇷🇴 80.94.92.152

🇪🇸 79.72.57.232

🇧🇷 45.164.251.106

🇺🇸 44.75.43.13