JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 109.123.253.38

109.123.253.38 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51167
Hostname(s)	vmi3267271.contaboserver.net
Domain Name	contabo.com
Country	🇫🇷 France
City	Lauterbourg, Grand Est

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 109.123.253.38

Whois 109.123.253.38

IP Abuse Reports for 109.123.253.38:

This IP address has been reported a total of 18 times from 13 distinct sources. 109.123.253.38 was first reported on March 13th 2026, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 MBombeck	2026-04-05 06:30:24 (2 months ago)	Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures	Web App Attack
Anonymous	2026-04-04 14:47:02 (2 months ago)	$f2bV_matches	Brute-Force Web App Attack
🇩🇪 MBombeck	2026-04-04 00:59:22 (2 months ago)	Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures	Web App Attack
🇬🇧 Axel	2026-03-31 06:30:02 (2 months ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /server/.env ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /server/.env Server: UK-01 show less	Web App Attack Hacking SQL Injection
🇺🇸 masterguru	2026-03-28 07:51:00 (2 months ago)	Host header is a numeric IP address. Pattern match "^ (920350-147)	Hacking Bad Web Bot
🇺🇸 Floofie	2026-03-27 12:18:37 (2 months ago)	109.123.253.38 - - [27/Mar/2026:08:18:36 -0400] "GET /phpinfo HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Wind ... show more 109.123.253.38 - - [27/Mar/2026:08:18:36 -0400] "GET /phpinfo HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" 109.123.253.38 - - [27/Mar/2026:08:18:36 -0400] "GET /index.php/phpinfo HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" 109.123.253.38 - - [27/Mar/2026:08:18:36 -0400] "GET /api/phpinfo HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 masterguru	2026-03-26 06:13:29 (2 months ago)	Host header is a numeric IP address. Pattern match "^ (920350-163)	Hacking Bad Web Bot
🇺🇸 antlac1	2026-03-25 07:50:25 (2 months ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇩🇪 MBombeck	2026-03-22 06:30:26 (2 months ago)	Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures	Web App Attack
🇺🇸 jfz-abuse	2026-03-22 05:33:50 (2 months ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇩🇪 MBombeck	2026-03-21 00:03:41 (2 months ago)	Fail2Ban/traefik-botsearch on apps-01: banned after 5 failures	Web App Attack
Anonymous	2026-03-19 16:00:11 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 109.123.253.38 (FR/France/vmi3151447.co ... show more (mod_security) mod_security triggered on hostname [redacted] 109.123.253.38 (FR/France/vmi3151447.contaboserver.net) show less	SQL Injection
🇺🇸 Floofie	2026-03-14 15:26:50 (3 months ago)	109.123.253.38 - - [14/Mar/2026:11:26:50 -0400] "GET /index.php/phpinfo HTTP/1.1" 444 0 "-" "Mozilla ... show more 109.123.253.38 - - [14/Mar/2026:11:26:50 -0400] "GET /index.php/phpinfo HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 109.123.253.38 - - [14/Mar/2026:11:26:50 -0400] "GET /phpinfo HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 109.123.253.38 - - [14/Mar/2026:11:26:50 -0400] "GET /x.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 XICTRON	2026-03-14 14:10:03 (3 months ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
Anonymous	2026-03-14 04:33:38 (3 months ago)	Bot detected scanning for vulnerable pages	Port Scan

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2601:201:8486:d960:dc8c:1f6:7909:54c9

🇨🇳 218.207.25.249

🇭🇰 199.45.154.147

🇧🇷 186.236.240.56

🇧🇷 177.8.70.160

🇸🇬 167.99.66.42

🇻🇳 157.66.80.124

🇮🇩 110.139.68.71

🇨🇳 101.126.89.57

🇺🇸 100.58.156.28

🇱🇹 91.224.92.82

🇬🇧 45.198.224.141

🇿🇦 41.181.156.205

🇬🇧 35.203.211.203

🇩🇪 4.182.219.135

🇭🇰 199.45.155.76

🇺🇸 172.174.244.189

🇦🇹 159.100.25.10

🇨🇳 114.141.150.73

🇺🇸 66.132.195.41