JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 105.242.38.154

105.242.38.154 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 14%: ?

14%

ISP	Vodacom_ENS
Usage Type	Fixed Line ISP
ASN	AS36994
Hostname(s)	vc-gp-n-105-242-38-154.umts.vodacom.co.za
Domain Name	vodacom.co.za
Country	🇿🇦 South Africa
City	Cape Town, Western Cape

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 105.242.38.154

Whois 105.242.38.154

IP Abuse Reports for 105.242.38.154:

This IP address has been reported a total of 4 times from 3 distinct sources. 105.242.38.154 was first reported on March 15th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-29 05:36:31 (12 hours ago)	(mod_security) mod_security (id:210492) triggered by 105.242.38.154 (vc-gp-n-105-242-38-154.umts.vod ... show more (mod_security) mod_security (id:210492) triggered by 105.242.38.154 (vc-gp-n-105-242-38-154.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:36:24.762176 2026] [security2:error] [pid 22902:tid 23058] [client 105.242.38.154:49133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fiefseigneur.com"] [uri "/private/.env"] [unique_id "akIEWLehW3QJWLz43N0UXAAAAgE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-29 04:48:56 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 105.242.38.154 (vc-gp-n-105-242-38-154.umts.vod ... show more (mod_security) mod_security (id:210492) triggered by 105.242.38.154 (vc-gp-n-105-242-38-154.umts.vodacom.co.za): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 00:48:52.329711 2026] [security2:error] [pid 7188:tid 7188] [client 105.242.38.154:52529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mspish2.com"] [uri "/.env.bak"] [unique_id "akH5NHtGX32eckSUMEtrzQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇴 jad-abuse	2026-06-29 01:43:02 (16 hours ago)	ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe ... show more ActiveDefense automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. Observed by 1 sensor(s); 1 hits. show less	Web App Attack
🇩🇪 FeG Deutschland	2026-03-15 23:02:10 (3 months ago)	Mail: - login with unknown user - bruteforce	Brute-Force

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.160.59

🇳🇱 213.21.248.107

🇳🇱 195.178.110.30

🇹🇭 184.82.219.29

🇰🇷 175.198.62.180

🇺🇸 162.216.149.15

🇺🇸 107.152.44.215

🇮🇳 106.51.92.114

🇳🇱 91.92.42.7

🇬🇧 87.236.176.26

🇷🇺 46.73.98.249

🇳🇱 45.153.34.114

🇻🇳 14.225.253.26

🇭🇰 199.45.154.176

🇬🇧 195.96.139.178

🇬🇧 185.247.137.165

🇮🇳 154.84.242.115

🇰🇭 150.107.5.176

🇨🇳 118.196.87.226

🇨🇳 112.111.53.130