JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.226.239.91

138.226.239.91 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 71%: ?

71%

ISP	Vlad Cojuhari
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213474
Domain Name	zerolimit-servers.cool
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.226.239.91

Whois 138.226.239.91

IP Abuse Reports for 138.226.239.91:

This IP address has been reported a total of 135 times from 15 distinct sources. 138.226.239.91 was first reported on June 3rd 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Fasetech	2026-06-30 19:53:55 (2 hours ago)	SecLedge detected suspicious activity. Score: 25487.28. Sensor: T-Pot.	Brute-Force Web App Attack
🇩🇪 NxtGenIT	2026-06-30 06:37:09 (15 hours ago)	CiscoASA Honeypot hit, Payload: "GET /+CSCOE+/logon.html?fcadbadd=1 HTTP/1.1" 200 -,	Brute-Force
🇩🇪 NxtGenIT	2026-06-30 02:03:00 (20 hours ago)	CiscoASA Honeypot hit, Payload: "GET /+CSCOE+/logon.html HTTP/1.1" 302 -,	Brute-Force
🇨🇿 Countryman	2026-06-30 00:10:01 (22 hours ago)	repeated unauthorized VPN login attempt, user sweep	VPN IP Hacking Brute-Force
🇩🇪 CELOS-SOC	2026-06-29 20:30:19 (1 day ago)	Multiple Unauthorized SSLVPN Login Attempts	Hacking Brute-Force
🇸🇪 OnTheEdge	2026-06-29 20:11:49 (1 day ago)	Password spraying. Multiple unauthorized login attempts	Hacking Web App Attack Brute-Force
🇩🇪 NxtGenIT	2026-06-29 05:50:56 (1 day ago)	CiscoASA Honeypot hit, Payload: "GET /+CSCOE+/logon.html?fcadbadd=1 HTTP/1.1" 200 -,	Brute-Force
🇪🇸 el-brujo	2026-06-29 01:32:44 (1 day ago)	06/29/2026-03:32:44.776264 138.226.239.91 Protocol: 6 SURICATA STREAM spurious retransmission	Hacking
🇩🇪 NxtGenIT	2026-06-29 00:56:05 (1 day ago)	CiscoASA Honeypot hit, Payload: "GET /+CSCOE+/logon.html HTTP/1.1" 302 -,	Brute-Force
🇩🇪 EnthecSolutions	2026-06-28 22:01:43 (2 days ago)	Detected by Enthec Solutions. \| Attempts: 1712 in 24h \| Target port: N/A	Brute-Force Hacking
🇩🇪 CELOS-SOC	2026-06-28 20:30:13 (2 days ago)	Multiple Unauthorized SSLVPN Login Attempts	Hacking Brute-Force
🇫🇷 Fasetech	2026-06-28 13:19:10 (2 days ago)	SecLedge detected suspicious activity. Score: 22693.2. Sensor: T-Pot.	Brute-Force Web App Attack
🇪🇸 el-brujo	2026-06-28 11:13:14 (2 days ago)	06/28/2026-13:13:14.238781 138.226.239.91 Protocol: 6 SURICATA STREAM spurious retransmission	Hacking
🇩🇪 NxtGenIT	2026-06-28 05:21:19 (2 days ago)	CiscoASA Honeypot hit, Payload: "GET /+CSCOE+/logon.html?fcadbadd=1 HTTP/1.1" 200 -,	Brute-Force
🇩🇪 NxtGenIT	2026-06-28 00:53:40 (2 days ago)	CiscoASA Honeypot hit, Payload: "GET /+CSCOE+/logon.html HTTP/1.1" 302 -,	Brute-Force

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 183.171.49.144

🇨🇴 181.119.203.146

🇮🇹 151.0.160.69

🇺🇸 148.153.121.223

🇮🇪 86.40.119.74

🇳🇱 81.19.216.74

🇷🇺 79.174.56.182

🇸🇪 78.67.161.64

🇱🇹 45.227.254.170

🇳🇱 45.148.10.152

🇸🇬 43.172.194.138

🇺🇸 43.159.140.163

🇨🇳 8.134.124.8

🇫🇷 4.211.84.189

🇺🇸 216.25.89.157

🇪🇨 205.235.2.176

🇲🇽 187.191.2.213

🇧🇷 177.54.191.230

🇧🇷 177.53.6.64

🇨🇳 114.55.106.197