JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.246.32.200

38.246.32.200 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 25%: ?

25%

ISP	Limestone Networks, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Hostname(s)	200-32-246-38.static.reverse.lstn.net
Domain Name	limestonenetworks.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.246.32.200

Whois 38.246.32.200

IP Abuse Reports for 38.246.32.200:

This IP address has been reported a total of 23 times from 15 distinct sources. 38.246.32.200 was first reported on September 9th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ger-stg-sifi1	2026-06-05 21:36:02 (1 week ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 21:34:34 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 38.246.32.200 (200-32-246-38.static.reverse.lst ... show more (mod_security) mod_security (id:240335) triggered by 38.246.32.200 (200-32-246-38.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 17:34:29.338511 2026] [security2:error] [pid 23284:tid 23284] [client 38.246.32.200:61680] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.246.32.200 (+1 hits since last alert)\|odysseydogasporlari.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "odysseydogasporlari.com"] [uri "/xmlrpc.php"] [unique_id "aiNA5cBAoqKAOnpn_vyWegAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 20:22:26 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 38.246.32.200 (200-32-246-38.static.reverse.lst ... show more (mod_security) mod_security (id:240335) triggered by 38.246.32.200 (200-32-246-38.static.reverse.lstn.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 16:22:19.179618 2026] [security2:error] [pid 6108:tid 6108] [client 38.246.32.200:59466] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.246.32.200 (+1 hits since last alert)\|thesalonx.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "thesalonx.com"] [uri "/xmlrpc.php"] [unique_id "aiMv-6RanVIAhwu7YIF4KAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 [email protected]	2026-05-10 00:00:00 (1 month ago)		Fraud VoIP
🇺🇸 [email protected]	2026-05-08 00:00:00 (1 month ago)	Unauthorized SIP/VoIP traffic against PBX: brute-force SIP registration and/or fraudulent call attem ... show more Unauthorized SIP/VoIP traffic against PBX: brute-force SIP registration and/or fraudulent call attempts. show less	DDoS Attack
🇺🇸 nyt	2026-05-07 23:22:23 (1 month ago)	WP Author Enumeration, WP User Enumeration	Web App Attack
🇳🇱 ipoac.nl	2026-05-07 11:48:54 (1 month ago)	[2026-05-07 13:48:53] NOTICE- res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '<sip:11184.27 ... show more [2026-05-07 13:48:53] NOTICE- res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '<sip:11184.27.222.8>' failed for '38.246.32.200:50907' (callid: 1198949652-2023215803-214447722) - No matching endpoint found show less	Fraud VoIP Brute-Force
🇺🇸 [email protected]	2026-05-07 11:36:00 (1 month ago)		Fraud VoIP
🇺🇸 [email protected]	2026-05-07 11:23:12 (1 month ago)	[Fail2Ban] SIP: 2+ bans on managed VoIP infrastructure; coordinated 38.246.32-33.0/24 campaign (8 un ... show more [Fail2Ban] SIP: 2+ bans on managed VoIP infrastructure; coordinated 38.246.32-33.0/24 campaign (8 unique IPs). Reported by M C Boyd Services MSP. show less	Port Scan Brute-Force
🇩🇪 scolastico	2026-05-07 11:21:44 (1 month ago)	[automated] IP failed to authenticate or send unauthenticated INVITE requests	Brute-Force Fraud VoIP
🇳🇱 ipoac.nl	2026-05-07 11:21:39 (1 month ago)	[2026-05-07 13:21:37] NOTICE- res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '<sip:20099984 ... show more [2026-05-07 13:21:37] NOTICE- res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '<sip:20099984.27.222.8>' failed for '38.246.32.200:62261' (callid: 1149853122-1245657271-95554352) - No matching endpoint found show less	Fraud VoIP Brute-Force
🇲🇹 Malta	2026-04-13 23:06:12 (2 months ago)	38.246.32.200 - - [14/Apr/2026:01:06:12 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Linux; An ... show more 38.246.32.200 - - [14/Apr/2026:01:06:12 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Linux; Android 12; SM-G991B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Mobile Safari/537.36" show less	Hacking Web App Attack VPN IP
🇺🇸 octageeks.com	2026-02-02 05:06:35 (4 months ago)	Wordpress malicious attack:[octawpauthor]	Web App Attack
Anonymous	2026-02-01 08:15:38 (4 months ago)	Failed Wordpress Logins	Web App Attack
🇩🇪 grassau.com	2026-01-29 19:29:33 (4 months ago)	Port Scan detected from 38.246.32.200 (DE/Germany/200-32-246-38.static.reverse.lstn.net).	Port Scan

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 185.64.78.204

🇺🇸 172.96.161.212

🇫🇷 166.88.183.143

🇹🇿 41.93.28.23

🇺🇸 35.243.238.28

🇨🇦 20.104.75.74

🇰🇷 222.98.44.218

🇮🇷 185.213.165.138

🇧🇷 179.228.54.137

🇮🇷 79.127.66.250

🇺🇸 35.253.136.180

🇮🇩 34.128.104.146

🇮🇹 185.15.171.39

🇰🇷 140.238.9.246

🇨🇳 124.251.110.186

🇫🇷 91.231.89.219

🇨🇳 8.152.99.77

🇬🇧 209.97.183.43

🇳🇱 185.136.15.10

🇧🇷 177.39.122.214