JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.252.213.122

38.252.213.122 was found in our database!

This IP was reported 201 times. Confidence of Abuse is 100%: ?

100%

ISP	TELCOM MIKROTIK PERU S.A.C.
Usage Type	Fixed Line ISP
ASN	AS273000
Hostname(s)	cpe-38-252-213-122.tmp.pe
Domain Name	tmp.pe
Country	🇵🇪 Peru
City	Lima, Lima Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.252.213.122

Whois 38.252.213.122

IP Abuse Reports for 38.252.213.122:

This IP address has been reported a total of 201 times from 141 distinct sources. 38.252.213.122 was first reported on July 13th 2025, and the most recent report was 12 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Thorn	2026-06-29 17:48:29 (12 minutes ago)	2026-06-29T19:48:29.307217+02:00 webmail sshd[1611076]: Invalid user photos from 38.252.213.122 port ... show more 2026-06-29T19:48:29.307217+02:00 webmail sshd[1611076]: Invalid user photos from 38.252.213.122 port 48372 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-06-29 17:33:44 (27 minutes ago)	2026-06-29T19:22:22.559297+02:00 router01.hotel-kniep.com sshd-session[1541410]: Invalid user umc fr ... show more 2026-06-29T19:22:22.559297+02:00 router01.hotel-kniep.com sshd-session[1541410]: Invalid user umc from 38.252.213.122 port 48804 2026-06-29T19:22:22.752498+02:00 router01.hotel-kniep.com sshd-session[1541410]: Disconnected from invalid user umc 38.252.213.122 port 48804 [preauth] 2026-06-29T19:31:26.484790+02:00 router01.hotel-kniep.com sshd-session[1543811]: Invalid user profkom from 38.252.213.122 port 38692 2026-06-29T19:31:26.678464+02:00 router01.hotel-kniep.com sshd-session[1543811]: Disconnected from invalid user profkom 38.252.213.122 port 38692 [preauth] 2026-06-29T19:33:43.742628+02:00 router01.hotel-kniep.com sshd-session[1544361]: Invalid user phone from 38.252.213.122 port 51714 show less	Brute-Force
🇩🇪 Thorn	2026-06-29 17:32:35 (28 minutes ago)	2026-06-29T19:29:06.876558+02:00 webmail sshd[1606366]: Invalid user umc from 38.252.213.122 port 50 ... show more 2026-06-29T19:29:06.876558+02:00 webmail sshd[1606366]: Invalid user umc from 38.252.213.122 port 50066 2026-06-29T19:32:35.043011+02:00 webmail sshd[1607198]: Invalid user profkom from 38.252.213.122 port 49156 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-29 16:51:36 (1 hour ago)	Jun 29 10:51:33 b146-72 sshd[70743]: Invalid user user from 38.252.213.122 port 59062 Jun 29 10:51:3 ... show more Jun 29 10:51:33 b146-72 sshd[70743]: Invalid user user from 38.252.213.122 port 59062 Jun 29 10:51:33 b146-72 sshd[70743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.252.213.122 Jun 29 10:51:35 b146-72 sshd[70743]: Failed password for invalid user user from 38.252.213.122 port 59062 ssh2 ... show less	Brute-Force SSH
🇳🇱 mythicalkitten	2026-06-29 16:29:48 (1 hour ago)	Jun 29 16:15:06 mk-bgp sshd[752993]: Invalid user admin from 38.252.213.122 port 48400 Jun 29 16:24: ... show more Jun 29 16:15:06 mk-bgp sshd[752993]: Invalid user admin from 38.252.213.122 port 48400 Jun 29 16:24:09 mk-bgp sshd[753049]: Invalid user test from 38.252.213.122 port 41136 Jun 29 16:26:06 mk-bgp sshd[753063]: Invalid user testuser from 38.252.213.122 port 59946 Jun 29 16:28:01 mk-bgp sshd[753073]: Invalid user ftpuser from 38.252.213.122 port 44170 Jun 29 16:29:47 mk-bgp sshd[753088]: Invalid user jenkins from 38.252.213.122 port 40034 ... show less	Hacking Brute-Force
🇺🇸 heyzg	2026-06-29 16:12:08 (1 hour ago)	SSH honeypot \| SSH Backdoor Install + Password Guessing (Heavy) \| 17 auths (6 users), 3 cmds, 26.8m ... show more SSH honeypot \| SSH Backdoor Install + Password Guessing (Heavy) \| 17 auths (6 users), 3 cmds, 26.8m \| libssh \| tactics: SSH key injection, tunnel/proxy show less	Hacking Exploited Host SSH
🇺🇸 heyzg	2026-06-29 15:57:04 (2 hours ago)	SSH SSH Backdoor Install + Password Guessing (Heavy) (observed): 17 auths (6 users), 3 cmds, 26.8m; ... show more SSH SSH Backdoor Install + Password Guessing (Heavy) (observed): 17 auths (6 users), 3 cmds, 26.8m; libssh; attempted SSH key injection & tunnel/proxy show less	Hacking Exploited Host SSH
Anonymous	2026-06-29 15:24:37 (2 hours ago)	38.252.213.122 (US/United States/-), 5 distributed sshd attacks on account [root] in the last 3600 s ... show more 38.252.213.122 (US/United States/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Jun 29 11:24:31 server5 sshd[9201]: Failed password for root from 172.174.72.225 port 38822 ssh2 Jun 29 11:24:34 server5 sshd[9208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.252.213.122 user=root Jun 29 11:24:29 server5 sshd[9201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.174.72.225 user=root Jun 29 11:23:49 server5 sshd[9098]: Failed password for root from 51.75.194.44 port 41552 ssh2 Jun 29 11:23:13 server5 sshd[9016]: Failed password for root from 72.240.125.133 port 50342 ssh2 IP Addresses Blocked: 172.174.72.225 (DE/Germany/-) show less	Brute-Force
🇮🇹 Progetto1	2026-06-29 15:20:04 (2 hours ago)	SSH - Failed Auth	Brute-Force Exploited Host SSH
🇺🇸 zwebvigil	2026-06-29 14:00:12 (4 hours ago)	Jun 29 06:44:23 <server> sshd[67624]: Invalid user stp from 38.252.213.122 port 58990 Jun 29 06:56:2 ... show more Jun 29 06:44:23 <server> sshd[67624]: Invalid user stp from 38.252.213.122 port 58990 Jun 29 06:56:21 <server> sshd[68700]: Invalid user gtc from 38.252.213.122 port 36654 Jun 29 06:58:15 <server> sshd[68730]: Invalid user fleet from 38.252.213.122 port 52962 Jun 29 07:00:11 <server> sshd[68752]: Invalid user madrid from 38.252.21 show less	Brute-Force SSH
🇺🇸 sh97	2026-06-29 14:00:08 (4 hours ago)	US905-RN-ASH.vps.992969.xyz: SSH Brute Force from 38.252.213.122 at 2026-06-29 19:30:08 IST	Brute-Force SSH
🇺🇸 oralunal	2026-06-29 13:42:47 (4 hours ago)	IP banned by Fail2Ban in jail sshd auth.log ah-app-1 ...	SSH
🇺🇸 yzfdude1	2026-06-29 13:12:36 (4 hours ago)	Jun 29 07:09:44 brown sshd[51070]: Failed password for root from 38.252.213.122 port 45534 ssh2 Jun ... show more Jun 29 07:09:44 brown sshd[51070]: Failed password for root from 38.252.213.122 port 45534 ssh2 Jun 29 07:12:34 brown sshd[51145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=38.252.213.122 user=root Jun 29 07:12:36 brown sshd[51145]: Failed password for root from 38.252.213.122 port 52278 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-29 13:10:29 (4 hours ago)	Large amount of failed SSH access attempts (brute-force)	Brute-Force SSH
Anonymous	2026-06-29 12:51:19 (5 hours ago)	2026-06-29T12:34:57.058956+00:00 de-fra2-srt1 sshd[1591143]: Invalid user elasticsearch from 38.252. ... show more 2026-06-29T12:34:57.058956+00:00 de-fra2-srt1 sshd[1591143]: Invalid user elasticsearch from 38.252.213.122 port 39582 2026-06-29T12:45:42.472791+00:00 de-fra2-srt1 sshd[1591268]: Invalid user ftp1 from 38.252.213.122 port 49828 2026-06-29T12:51:18.630967+00:00 de-fra2-srt1 sshd[1591577]: Invalid user esuser from 38.252.213.122 port 54618 ... show less	Brute-Force SSH

Showing 1 to 15 of 201 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇳 202.72.245.146

🇭🇰 199.45.154.141

🇨🇱 186.64.123.124

🇺🇸 44.86.80.6

🇨🇳 36.129.53.173

🇹🇷 5.175.136.100

🇨🇳 221.229.220.180

🇨🇳 203.132.58.109

🇬🇧 194.50.235.148

🇬🇧 193.176.29.22

🇨🇱 186.103.188.94

🇨🇳 180.102.249.186

🇧🇷 179.127.94.244

🇭🇰 165.154.41.232

🇯🇵 139.162.113.212

🇨🇳 113.140.95.250

🇧🇩 113.11.34.221

🇨🇳 112.86.146.178

🇨🇳 112.66.1.20

🇳🇱 107.189.27.179