JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.199.6.204

138.199.6.204 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 20%: ?

20%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-138-199-6-204.datapacket.com
Domain Name	datacamp.co.uk
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.199.6.204

Whois 138.199.6.204

IP Abuse Reports for 138.199.6.204:

This IP address has been reported a total of 40 times from 24 distinct sources. 138.199.6.204 was first reported on December 31st 2023, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 punctualsuspension968	2026-06-07 22:52:54 (6 days ago)	blocked by ufw on TCP 40165	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-06 07:11:58 (1 month ago)	Honeypot hit: HTTP/1.1 request on 9201 GET /_cat/indices?format=json&bytes=b User-Agent: ShodanDash ... show more Honeypot hit: HTTP/1.1 request on 9201 GET /_cat/indices?format=json&bytes=b User-Agent: ShodanDashboard/1.0 Accept-Encoding: identity; 9201 [2] TCP show less	Web App Attack
Anonymous	2026-05-03 15:00:04 (1 month ago)	\| Multiple SQL injection attempts from same source ip.(multiple servers)	Web App Attack Hacking SQL Injection
🇺🇸 xmission.com	2026-04-30 09:22:48 (1 month ago)	Blocked by UFW (TCP on 22842) Source port: 60238 TTL: 108 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 22842) Source port: 60238 TTL: 108 Packet length: 52 TOS: 0x08 This report (for 138.199.6.204) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 evlhomer	2026-04-23 11:05:06 (1 month ago)	SQL Injection	SQL Injection
Anonymous	2026-04-22 23:00:04 (1 month ago)	\| [Normal/Switzerland] Aggressive IP 138.199.6.204 (~350 hits). Type: DoS Defender- Web server 400 e ... show more \| [Normal/Switzerland] Aggressive IP 138.199.6.204 (~350 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇺🇸 xmission.com	2026-04-17 08:14:28 (1 month ago)	Blocked by UFW (TCP on 23835) Source port: 63365 TTL: 109 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 23835) Source port: 63365 TTL: 109 Packet length: 52 TOS: 0x08 This report (for 138.199.6.204) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-04-03 17:57:28 (2 months ago)	Blocked by UFW (TCP on 37603) Source port: 64439 TTL: 108 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 37603) Source port: 64439 TTL: 108 Packet length: 52 TOS: 0x08 This report (for 138.199.6.204) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 sockominfo	2026-03-22 21:17:39 (2 months ago)	[WAZUH] Generic webshell pattern detected (filtered)	Hacking Web App Attack
Anonymous	2026-02-25 02:55:11 (3 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-02-22 02:50:28 (3 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
Anonymous	2026-02-10 15:35:17 (4 months ago)	Unauthorized connection attempt detected in the last 24 hours	Hacking
🇺🇸 jhuisi	2026-01-02 23:19:18 (5 months ago)	MailMan List Subscription Abuse	Web App Attack
🇮🇹 VHosting	2025-12-29 20:14:36 (5 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇨🇿 unhfree.net	2025-12-29 20:08:16 (5 months ago)	Dec 29 21:00:17 canopus postfix/smtpd[2660136]: NOQUEUE: reject: RCPT from unknown[138.199.6.204]: 5 ... show more Dec 29 21:00:17 canopus postfix/smtpd[2660136]: NOQUEUE: reject: RCPT from unknown[138.199.6.204]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.142.151.138]> Dec 29 21:01:25 canopus postfix/smtpd[2660136]: NOQUEUE: reject: RCPT from unknown[138.199.6.204]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.142.151.138]> Dec 29 21:02:24 canopus postfix/smtpd[2660136]: NOQUEUE: reject: RCPT from unknown[138.199.6.204]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.142.151.138]> Dec 29 21:02:42 canopus postfix/smtpd[2660425]: NOQUEUE: reject: RCPT from unknown[138.199.6.204]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<zadrah ... show less	Brute-Force Exploited Host

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 69.5.169.6

🇨🇳 60.16.212.214

🇨🇳 218.109.247.3

🇬🇧 185.247.137.66

🇵🇹 89.153.125.230

🇨🇦 85.217.149.48

🇷🇴 80.94.92.186

🇩🇪 69.5.169.20

🇺🇸 66.132.195.107

🇨🇳 58.221.93.98

🇨🇳 58.19.77.97

🇱🇹 45.227.254.170

🇧🇷 20.206.73.62

🇺🇸 20.65.193.108

🇳🇱 195.178.110.204

🇦🇷 190.55.123.15

🇬🇧 185.247.137.72

🇺🇸 172.236.111.197

🇮🇶 151.244.145.66

🇺🇸 147.185.132.63