JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 213.199.38.115

213.199.38.115 was found in our database!

This IP was reported 234 times. Confidence of Abuse is 0%: ?

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3226695.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 213.199.38.115

Whois 213.199.38.115

IP Abuse Reports for 213.199.38.115:

This IP address has been reported a total of 234 times from 127 distinct sources. 213.199.38.115 was first reported on October 7th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iamimmanuelraj	2025-12-21 02:18:37 (6 months ago)	Fail2ban SSH Bruteforce - Port = 22 - Failures = 5 - Time = 1761587965	Brute-Force SSH
🇩🇪 iamimmanuelraj	2025-11-26 02:11:16 (7 months ago)	Fail2ban SSH Bruteforce - Port = 22 - Failures = 5 - Time = 1761587965	Brute-Force SSH
🇫🇷 SpaceHost-Server	2025-11-13 23:38:27 (7 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2025-11-13 20:09:55 (7 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇮🇳 Parth Maniar	2025-11-13 14:18:19 (7 months ago)	This IP address carried out 66 SSH credential attack (attempts) on 12-11-2025. For more information ... show more This IP address carried out 66 SSH credential attack (attempts) on 12-11-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇫🇷 SpaceHost-Server	2025-11-12 23:37:42 (7 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2025-11-12 20:09:52 (7 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 bigscoots.com	2025-11-12 04:11:48 (7 months ago)	(sshd) Failed SSH login from 213.199.38.115 (DE/Germany/vmi2796569.contaboserver.net): 5 in the last ... show more (sshd) Failed SSH login from 213.199.38.115 (DE/Germany/vmi2796569.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Nov 12 04:07:11 23620 sshd[3607]: Invalid user tes from 213.199.38.115 port 49722 Nov 12 04:07:13 23620 sshd[3607]: Failed password for invalid user tes from 213.199.38.115 port 49722 ssh2 Nov 12 04:10:13 23620 sshd[3824]: Invalid user alma from 213.199.38.115 port 42640 Nov 12 04:10:15 23620 sshd[3824]: Failed password for invalid user alma from 213.199.38.115 port 42640 ssh2 Nov 12 04:11:39 23620 sshd[3911]: Invalid user ubuntu from 213.199.38.115 port 60074 show less	Brute-Force SSH
🇺🇸 wordpresshosting.solutions	2025-11-12 04:09:43 (7 months ago)	SSH brute-force detected	Brute-Force SSH
🇧🇾 lns.bz	2025-11-12 04:05:34 (7 months ago)	SSH bruteforce [BY]	SSH
🇩🇪 formality	2025-11-12 04:05:30 (7 months ago)	Invalid user tes from 213.199.38.115 port 39284	Brute-Force SSH
🇫🇷 LRNP	2025-11-12 03:15:14 (7 months ago)	2025-11-12T03:15:10.653402+00:00 helium sshd-session[3146874]: pam_unix(sshd:auth): authentication f ... show more 2025-11-12T03:15:10.653402+00:00 helium sshd-session[3146874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.199.38.115 2025-11-12T03:15:13.364081+00:00 helium sshd-session[3146874]: Failed password for invalid user teamspeak from 213.199.38.115 port 58194 ssh2 2025-11-12T03:15:13.750209+00:00 helium sshd-session[3146874]: Disconnected from invalid user teamspeak 213.199.38.115 port 58194 [preauth] ... show less	Brute-Force SSH
🇵🇱 Wepted	2025-11-12 02:27:03 (7 months ago)	2025-11-12T03:20:31.550580+01:00 axisverse sshd-session[580298]: Invalid user oracle from 213.199.38 ... show more 2025-11-12T03:20:31.550580+01:00 axisverse sshd-session[580298]: Invalid user oracle from 213.199.38.115 port 39280 2025-11-12T03:22:08.690676+01:00 axisverse sshd-session[583179]: Invalid user dimas from 213.199.38.115 port 51448 2025-11-12T03:27:03.299420+01:00 axisverse sshd-session[592758]: Invalid user streaming from 213.199.38.115 port 54898 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2025-11-12 02:23:44 (7 months ago)	2025-11-12T03:16:43.994640+01:00 gw-de15-01.guestgw.net sshd[79648]: Disconnected from authenticatin ... show more 2025-11-12T03:16:43.994640+01:00 gw-de15-01.guestgw.net sshd[79648]: Disconnected from authenticating user root 213.199.38.115 port 46284 [preauth] 2025-11-12T03:22:10.600559+01:00 gw-de15-01.guestgw.net sshd[80771]: Invalid user dimas from 213.199.38.115 port 48000 2025-11-12T03:22:10.632043+01:00 gw-de15-01.guestgw.net sshd[80771]: Disconnected from invalid user dimas 213.199.38.115 port 48000 [preauth] 2025-11-12T03:23:43.816641+01:00 gw-de15-01.guestgw.net sshd[81063]: Invalid user jamie from 213.199.38.115 port 57294 2025-11-12T03:23:43.854765+01:00 gw-de15-01.guestgw.net sshd[81063]: Disconnected from invalid user jamie 213.199.38.115 port 57294 [preauth] show less	Brute-Force
🇺🇸 bigscoots.com	2025-11-12 02:23:09 (7 months ago)	(sshd) Failed SSH login from 213.199.38.115 (DE/Germany/vmi2796569.contaboserver.net): 5 in the last ... show more (sshd) Failed SSH login from 213.199.38.115 (DE/Germany/vmi2796569.contaboserver.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Nov 11 20:18:45 15499 sshd[28208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.199.38.115 user=root Nov 11 20:18:47 15499 sshd[28208]: Failed password for root from 213.199.38.115 port 57822 ssh2 Nov 11 20:21:22 15499 sshd[28421]: Invalid user oracle from 213.199.38.115 port 41554 Nov 11 20:21:24 15499 sshd[28421]: Failed password for invalid user oracle from 213.199.38.115 port 41554 ssh2 Nov 11 20:22:56 15499 sshd[28503]: Invalid user dimas from 213.199.38.115 port 50412 show less	Brute-Force SSH

Showing 1 to 15 of 234 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.242.3.195

🇳🇱 176.65.139.247

🇨🇳 121.227.31.13

🇺🇸 107.167.34.125

🇻🇳 103.186.101.231

🇨🇿 78.44.192.210

🇺🇸 69.9.171.233

🇷🇺 62.33.1.13

🇨🇳 36.249.60.142

🇧🇪 35.195.110.198

🇮🇩 182.253.156.173

🇫🇮 147.185.133.121

🇹🇷 94.154.43.158

🇳🇱 45.153.34.144

🇳🇱 45.148.10.152

🇿🇦 41.10.157.202

🇻🇳 27.79.42.228

🇺🇸 192.204.132.244

🇬🇧 185.216.145.164

🇨🇳 114.55.34.71