JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.199.32.97

213.199.32.97 was found in our database!

This IP was reported 79 times. Confidence of Abuse is 0%: ?

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmd192853.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.199.32.97

Whois 213.199.32.97

IP Abuse Reports for 213.199.32.97:

This IP address has been reported a total of 79 times from 56 distinct sources. 213.199.32.97 was first reported on March 15th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2026-03-16 20:12:05 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇧🇷 SOC-BR	2026-03-16 07:22:06 (3 months ago)	Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-03-15 04:46:1 ... show more Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-03-15 04:46:13 - Source Port 59024 show less	Port Scan Hacking
🇮🇩 hermawan	2026-03-16 05:56:09 (3 months ago)	2026-03-15T17:56:51.328178+07:00 staklim-malang kernel: Ipt-PREROUCOBA:DROP IN=eth0 OUT= MAC=c4:37:7 ... show more 2026-03-15T17:56:51.328178+07:00 staklim-malang kernel: Ipt-PREROUCOBA:DROP IN=eth0 OUT= MAC=c4:37:72:f5:bf:f3:90:e2:ba:b3:7b:52:08:00 SRC=213.199.32.97 DST=103.166.156.58 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=41964 PROTO=TCP SPT=62909 DPT=2375 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Email Spam Hacking
🇫🇷 service Informatique	2026-03-16 04:00:37 (3 months ago)	/cgi-bin	Web App Attack
🇫🇷 Murazaki	2026-03-15 23:56:10 (3 months ago)	_ 213.199.32.97 - - [15/Mar/2026:19:49:52 +0100] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/. ... show more _ 213.199.32.97 - - [15/Mar/2026:19:49:52 +0100] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" "-" ... show less	Hacking
🇦🇹 urnilxfgbez	2026-03-15 23:45:00 (3 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 bigscoots.com	2026-03-15 22:59:40 (3 months ago)	(sshd) Failed SSH login from 213.199.32.97 (DE/Germany/vmd192853.contaboserver.net): 5 in the last 3 ... show more (sshd) Failed SSH login from 213.199.32.97 (DE/Germany/vmd192853.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 15 17:58:27 15553 sshd[24936]: Invalid user admin from 213.199.32.97 port 50628 Mar 15 17:58:28 15553 sshd[24936]: Failed password for invalid user admin from 213.199.32.97 port 50628 ssh2 Mar 15 17:59:00 15553 sshd[24949]: Invalid user orangepi from 213.199.32.97 port 44716 Mar 15 17:59:02 15553 sshd[24949]: Failed password for invalid user orangepi from 213.199.32.97 port 44716 ssh2 Mar 15 17:59:35 15553 sshd[25018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.199.32.97 user=root show less	Brute-Force SSH
Anonymous	2026-03-15 22:57:41 (3 months ago)	Reported from Nginx log analysis 18. Log: 213.199.32.97 - - [15/Mar/2026:xx:xx:xx 0100] "POST /cgi- ... show more Reported from Nginx log analysis 18. Log: 213.199.32.97 - - [15/Mar/2026:xx:xx:xx 0100] "POST /cgi-bin/../../../../../../../../../../bin/sh HTTP/1.1" xxx xxx "-" "-" "-" "FR France Lauterbourg" "AS51167" "Contabo GmbH" show less	Port Scan Brute-Force SSH
🇷🇺 OK	2026-03-15 22:15:00 (3 months ago)	HTTP/HTTPS	Hacking Web App Attack
🇺🇸 RAP	2026-03-15 22:07:12 (3 months ago)	2026-03-15 22:07:12 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇺🇸 bigscoots.com	2026-03-15 21:59:39 (3 months ago)	(sshd) Failed SSH login from 213.199.32.97 (DE/Germany/vmd192853.contaboserver.net): 5 in the last 3 ... show more (sshd) Failed SSH login from 213.199.32.97 (DE/Germany/vmd192853.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 15 16:58:09 15532 sshd[7136]: Invalid user admin from 213.199.32.97 port 45968 Mar 15 16:58:11 15532 sshd[7136]: Failed password for invalid user admin from 213.199.32.97 port 45968 ssh2 Mar 15 16:58:43 15532 sshd[7148]: Invalid user orangepi from 213.199.32.97 port 53904 Mar 15 16:58:45 15532 sshd[7148]: Failed password for invalid user orangepi from 213.199.32.97 port 53904 ssh2 Mar 15 16:59:17 15532 sshd[7282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.199.32.97 user=root show less	Brute-Force SSH
Anonymous	2026-03-15 21:57:00 (3 months ago)	2026-03-15T21:56:59.922887+00:00 caddy caddy[81692]: {"level":"info","ts":1773611819.9225397,"logger ... show more 2026-03-15T21:56:59.922887+00:00 caddy caddy[81692]: {"level":"info","ts":1773611819.9225397,"logger":"http.log.access","msg":"handled request","request":{"remote_ip":"213.199.32.97","remote_port":"54714","client_ip":"213.199.32.97","proto":"HTTP/1.1","method":"POST","host":"142.132.232.19:80","uri":"/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh","headers":{"Upgrade-Insecure-Requests":["1"],"Accept":["/"],"User-Agent":["libredtail-http"],"Connection":["keep-alive"],"Content-Type":["text/plain"],"Content-Length":["119"]}},"bytes_read":0,"user_id":"","duration":0.000072241,"size":0,"status":308,"resp_headers":{"Server":["Caddy"],"Connection":["close"],"Location":["https://142.132.232.19/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh"],"Content-Type":[]}} ... show less	Hacking Web App Attack
🇦🇹 HoneyPotEu-AT	2026-03-15 21:56:11 (3 months ago)	213.199.32.97 - - _ [15/Mar/2026:22:55:54 +0100] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/. ... show more 213.199.32.97 - - _ [15/Mar/2026:22:55:54 +0100] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" 0.081 - - ... show less	Bad Web Bot Web App Attack
🇳🇱 f14driver	2026-03-15 19:35:35 (3 months ago)	...	Brute-Force SSH Port Scan Web App Attack
🇺🇸 bigscoots.com	2026-03-15 19:17:12 (3 months ago)	(sshd) Failed SSH login from 213.199.32.97 (DE/Germany/vmd192853.contaboserver.net): 5 in the last 3 ... show more (sshd) Failed SSH login from 213.199.32.97 (DE/Germany/vmd192853.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 15 14:15:53 16054 sshd[4171]: Invalid user admin from 213.199.32.97 port 58856 Mar 15 14:15:56 16054 sshd[4171]: Failed password for invalid user admin from 213.199.32.97 port 58856 ssh2 Mar 15 14:16:27 16054 sshd[4240]: Invalid user orangepi from 213.199.32.97 port 40682 Mar 15 14:16:29 16054 sshd[4240]: Failed password for invalid user orangepi from 213.199.32.97 port 40682 ssh2 Mar 15 14:17:00 16054 sshd[4247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.199.32.97 user=root show less	Brute-Force SSH

Showing 1 to 15 of 79 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 192.250.235.92

🇮🇩 180.243.11.170

🇮🇩 165.154.151.176

🇺🇸 147.185.132.77

🇺🇸 66.132.172.147

🇫🇷 51.68.34.131

🇳🇱 45.156.87.216

🇰🇷 14.48.112.8

🇧🇷 205.210.31.183

🇷🇺 193.232.29.94

🇺🇸 147.182.183.153

🇰🇷 58.229.253.119

🇺🇸 45.43.57.53

🇳🇱 195.178.110.102

🇨🇳 111.33.65.187

🇮🇩 103.175.225.15

🇲🇾 47.250.121.102

🇺🇸 209.46.125.221

🇻🇪 190.6.32.107

🇺🇸 91.230.168.190