JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.94.219.179

138.94.219.179 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 10%: ?

10%

ISP	Philadelphia PA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS263744
Domain Name	udasha.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.94.219.179

Whois 138.94.219.179

IP Abuse Reports for 138.94.219.179:

This IP address has been reported a total of 5 times from 3 distinct sources. 138.94.219.179 was first reported on April 14th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-14 00:23:42 (1 week ago)	[Sun Jun 14 07:23:37.809554 2026] [security2:error] [pid 1370546:tid 139664540284608] [client 138.94 ... show more [Sun Jun 14 07:23:37.809554 2026] [security2:error] [pid 1370546:tid 139664540284608] [client 138.94.219.179:27664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php/prediksi-iklim/prediksi-dasarian/monitoring-dan-prediksi-curah-hujan HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/prediksi-iklim/prediksi-dasarian/monitoring-dan-prediksi-curah-hujan"] [unique_id "ai30iVHqn3lZuP1f577CFgAAEwM"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1370551] [ZgSWuCswF1w] [ai30iVHqn3lZuP1f577CFgAAEwM] keep_alive=[1] [2026-06-14 07:23:37.809561] [R:ai30iVHqn3lZuP1f577CFgAAEwM] UA:'Mozilla/5.0 (iP ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-07 01:01:56 (2 weeks ago)	[Sun Jun 07 08:01:56.175153 2026] [security2:error] [pid 474212:tid 140593901508288] [client 138.94. ... show more [Sun Jun 07 08:01:56.175153 2026] [security2:error] [pid 474212:tid 140593901508288] [client 138.94.219.179:44432] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bing" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "254"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bing found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 15; SM-A256E Build/AP3A.240905.015.A2; ) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36 BingSapphire/32.3.430811006 request_line = GET /index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/e-buletin-untuk-kota-dan-kabupaten-di-provinsi-jawa-timur"] [unique_id "aiTDBHVJeo080FWClpp_TgAAjRU"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[474234] [UVOxcB+ ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-05 09:27:37 (3 weeks ago)	[Fri Jun 05 16:27:28.448324 2026] [authz_core:error] [pid 900578:tid 140021639145152] [client 138.94 ... show more [Fri Jun 05 16:27:28.448324 2026] [authz_core:error] [pid 900578:tid 140021639145152] [client 138.94.219.179:20688] AH01630: client denied by server configuration: /var/www/index.php [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[900580] [ITT0RD7yjmE] [aiKWgKJIWud7BONxmwhlAQAARwE] keep_alive=[1] [2026-06-05 16:27:28.448335] [R:aiKWgKJIWud7BONxmwhlAQAARwE] UA:'Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'/' Accept-Encoding:'gzip, deflate, br Accept-Language:'en-US,en;q=0.8 ... show less	Email Spam Hacking
🇸🇬 mypatricks	2026-05-27 00:49:59 (1 month ago)	138.94.219.179 \| Port: 11261 \| DNS: 138.94.219.179 2026-05-27T08:49:58+08:00 America/New_York \| Bad ... show more 138.94.219.179 \| Port: 11261 \| DNS: 138.94.219.179 2026-05-27T08:49:58+08:00 America/New_York \| Bad Behavior Activity \| UA: Mozilla/5.0 (iPhone; CPU iPhone OS 17_4 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Mobile/15E148 Safari/604.1 HTTP/1.1 443 GET \| URL: /fondant-3d-popeye-the-sailor-man/ \| Ref: - \| Country: US/United States/-08:00 IP City: New York City a02105d2bee12633-EWR/Newark, NJ, United States 1 hits/0 secs Robots 1 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇮🇩 securejdprop	2026-04-14 19:29:33 (2 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus D ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET DROP Spamhaus DROP Listed Traffic Inbound group 26). Ip 138.94.219.179 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-04-14 19:29:32.211189039 +0000 UTC show less	Hacking Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 100.27.121.171

🇩🇪 194.187.176.118

🇮🇳 152.58.177.137

🇺🇸 147.185.132.25

🇺🇸 135.119.88.100

🇲🇦 105.72.176.66

🇧🇩 103.183.62.3

🇷🇴 80.94.92.156

🇨🇦 76.71.248.114

🇨🇳 219.154.173.255

🇮🇳 202.142.89.89

🇸🇬 188.166.183.133

🇨🇴 186.180.77.237

🇨🇳 182.106.216.78

🇮🇳 182.95.185.142

🇺🇸 135.148.171.117

🇮🇳 103.70.197.53

🇫🇷 85.217.140.33

🇺🇦 37.221.159.43

🇵🇱 20.215.211.246