JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.242.131.164

38.242.131.164 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 80%: ?

80%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi2991144.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.242.131.164

Whois 38.242.131.164

IP Abuse Reports for 38.242.131.164:

This IP address has been reported a total of 19 times from 15 distinct sources. 38.242.131.164 was first reported on November 23rd 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 6kilowatti	2026-06-09 04:58:57 (3 days ago)	2026-06-09T07:58:54.665637+03:00 oh6ah sshd[227264]: pam_unix(sshd:auth): authentication failure; lo ... show more 2026-06-09T07:58:54.665637+03:00 oh6ah sshd[227264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 2026-06-09T07:58:56.933362+03:00 oh6ah sshd[227264]: Failed password for invalid user miner from 38.242.131.164 port 43978 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-09 04:56:30 (3 days ago)	38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [roo ... show more 38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 8 23:56:09 14418 sshd[6847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 user=root Jun 8 23:53:39 14418 sshd[5253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.172.195.51 user=root Jun 8 23:53:42 14418 sshd[5253]: Failed password for root from 188.172.195.51 port 32968 ssh2 Jun 8 23:54:39 14418 sshd[5842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.153.237 user=root Jun 8 23:54:41 14418 sshd[5842]: Failed password for root from 139.59.153.237 port 58608 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇩🇪 formality	2026-06-09 03:59:41 (3 days ago)	Invalid user daten from 38.242.131.164 port 47652	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-09 03:31:47 (3 days ago)	38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [roo ... show more 38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 8 22:04:02 14445 sshd[12438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 user=root Jun 8 22:04:04 14445 sshd[12438]: Failed password for root from 38.242.131.164 port 42550 ssh2 Jun 8 22:31:32 14445 sshd[27587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.12.64.44 user=root Jun 8 22:05:02 14445 sshd[12988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.90.19.40 user=root Jun 8 22:05:04 14445 sshd[12988]: Failed password for root from 78.90.19.40 port 39854 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇩🇪 formality	2026-06-09 03:31:21 (3 days ago)	Invalid user walrus from 38.242.131.164 port 40594	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-09 03:06:12 (3 days ago)	38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [roo ... show more 38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 9 03:05:59 23306 sshd[6552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.238.23.5 user=root Jun 9 03:02:59 23306 sshd[4688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.13.10.100 user=root Jun 9 03:03:02 23306 sshd[4688]: Failed password for root from 197.13.10.100 port 50522 ssh2 Jun 9 03:05:29 23306 sshd[6381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 user=root Jun 9 03:05:31 23306 sshd[6381]: Failed password for root from 38.242.131.164 port 55036 ssh2 IP Addresses Blocked: 62.238.23.5 (FI/Finland/static.5.23.238.62.clients.your-server.de) 197.13.10.100 (TN/Tunisia/-) show less	Brute-Force SSH
🇳🇱 donarev419	2026-06-09 03:00:58 (3 days ago)	2026-06-09T05:00:56.187712+02:00 donarev419.com sshd[1067495]: pam_unix(sshd:auth): authentication f ... show more 2026-06-09T05:00:56.187712+02:00 donarev419.com sshd[1067495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 user=root 2026-06-09T05:00:57.768617+02:00 donarev419.com sshd[1067495]: Failed password for root from 38.242.131.164 port 53274 ssh2 ... show less	Brute-Force SSH
🇩🇪 D3vNu11	2026-06-09 02:44:02 (3 days ago)	Level: (LOW): Known Attacker via Cowrie IOC Country: France 1x -> Target Country: Polen SSH	Hacking Brute-Force SSH
Anonymous	2026-06-09 02:16:49 (3 days ago)	38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [roo ... show more 38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Jun 9 12:11:17 syd2 sshd[2111222]: Failed password for root from 157.180.28.153 port 60574 ssh2 Jun 9 12:13:16 syd2 sshd[2111735]: Failed password for root from 38.242.131.164 port 36568 ssh2 Jun 9 12:15:13 syd2 sshd[2111912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.1.220.166 user=root Jun 9 12:15:16 syd2 sshd[2111912]: Failed password for root from 1.1.220.166 port 50940 ssh2 Jun 9 12:16:42 syd2 sshd[2112011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.164.200 user=root IP Addresses Blocked: 157.180.28.153 (FI/Finland/static.153.28.180.157.clients.your-server.de) show less	Port Scan
🇩🇪 _ArminS_	2026-06-09 01:56:51 (3 days ago)	Bad SSHAUTH 2026.06.09 03:56:51 blocked until 2026.06.12 03:56:51 by HoneyPot DE_State of Berlin01	SSH Brute-Force Hacking
🇳🇱 EGP Abuse Dept	2026-06-09 00:32:57 (3 days ago)	Unauthorized connection to SSH port 22	Port Scan Hacking SSH
Anonymous	2026-06-09 00:22:20 (3 days ago)	2026-06-09T00:22:18.190483+00:00 HongKong1 sshd-session[1616785]: pam_unix(sshd:auth): authenticatio ... show more 2026-06-09T00:22:18.190483+00:00 HongKong1 sshd-session[1616785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 2026-06-09T00:22:20.062014+00:00 HongKong1 sshd-session[1616785]: Failed password for invalid user bitcoin from 38.242.131.164 port 42394 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-09 00:16:36 (3 days ago)	38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [roo ... show more 38.242.131.164 (DE/Germany/vmi2991144.contaboserver.net), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 8 19:16:31 15145 sshd[25219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 user=root Jun 8 19:15:01 15145 sshd[24443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.248.215.252 user=root Jun 8 19:15:03 15145 sshd[24443]: Failed password for root from 155.248.215.252 port 51030 ssh2 Jun 8 19:12:31 15145 sshd[23427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.121.66 user=root Jun 8 19:12:32 15145 sshd[23427]: Failed password for root from 134.122.121.66 port 59068 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇩🇪 ghostwarriors	2026-06-08 23:50:31 (3 days ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 F63NNKJ4	2026-06-08 23:36:55 (3 days ago)	Jun 9 01:36:52 v22019058497090703 sshd[31095]: pam_unix(sshd:auth): authentication failure; logname ... show more Jun 9 01:36:52 v22019058497090703 sshd[31095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.242.131.164 Jun 9 01:36:54 v22019058497090703 sshd[31095]: Failed password for invalid user debian from 38.242.131.164 port 34282 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 160.25.166.88

🇷🇺 81.211.72.167

🇻🇳 42.96.20.16

🇺🇸 194.187.179.187

🇺🇸 165.154.162.111

🇺🇸 130.131.220.154

🇨🇳 101.132.183.164

🇳🇱 88.151.33.226

🇨🇦 85.217.149.32

🇸🇬 85.203.21.139

🇿🇦 41.185.64.163

🇸🇬 194.233.79.161

🇭🇰 194.187.178.33

🇧🇷 189.56.0.19

🇮🇳 167.71.239.213

🇱🇹 85.206.68.80

🇺🇸 74.7.229.154

🇫🇷 51.15.132.164

🇳🇱 45.153.34.71

🇮🇩 36.66.16.233