JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.238.49.39

104.238.49.39 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 10%: ?

10%

ISP	Web2Objects LLC
Usage Type	Fixed Line ISP
ASN	AS62874
Domain Name	web2objects.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.238.49.39

Whois 104.238.49.39

IP Abuse Reports for 104.238.49.39:

This IP address has been reported a total of 4 times from 3 distinct sources. 104.238.49.39 was first reported on June 1st 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-01 01:46:53 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 104.238.49.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.238.49.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 21:45:59.204535 2026] [security2:error] [pid 11742:tid 12091] [client 104.238.49.39:43319] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.kettlehill.net\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.kettlehill.net"] [uri "/error/error.log"] [unique_id "ahzkV1C4agaQG9FVRcmuswAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-18 06:40:17 (1 month ago)	\| SQL injection attempt.	Web App Attack Hacking SQL Injection
🇮🇹 VHosting	2025-07-15 20:00:07 (11 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 14:32:05 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 104.238.49.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.238.49.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 10:31:58.539740 2025] [security2:error] [pid 2908666:tid 2908666] [client 104.238.49.39:58851] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nbcnewsradio.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nbcnewsradio.com"] [uri "/application/logs/application.log"] [unique_id "aDxkXsXcBQB8ruI48dcHygAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇿 197.204.23.80

🇲🇽 189.203.163.10

🇺🇸 45.148.233.96

🇳🇱 45.128.199.55

🇳🇱 45.128.199.47

🇺🇸 44.64.43.37

🇺🇦 37.221.146.234

🇸🇬 212.73.148.38

🇮🇪 168.63.79.147

🇩🇪 167.233.68.137

🇸🇬 103.189.234.244

🇧🇬 89.106.110.215

🇰🇷 47.80.29.108

🇺🇸 44.54.37.212

🇩🇿 41.111.99.8

🇮🇷 2.179.8.65

🇫🇷 172.69.223.104

🇺🇸 147.185.132.85

🇱🇹 141.98.11.41

🇺🇦 77.87.40.114