JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.100.221.106

38.100.221.106 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 14%: ?

14%

ISP	Z COM NETWORKS
Usage Type	Fixed Line ISP
ASN	AS152605
Domain Name	zcomnetworks.com.pk
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.100.221.106

Whois 38.100.221.106

IP Abuse Reports for 38.100.221.106:

This IP address has been reported a total of 3 times from 2 distinct sources. 38.100.221.106 was first reported on May 21st 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-19 10:56:38 (1 hour ago)	(mod_security) mod_security (id:240335) triggered by 38.100.221.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.100.221.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 06:56:30.442489 2026] [security2:error] [pid 3765:tid 3765] [client 38.100.221.106:15031] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.100.221.106 (+1 hits since last alert)\|johncyphers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "johncyphers.com"] [uri "/xmlrpc.php"] [unique_id "ajUgXsfBQqOVcL_qJ8e3mgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 SOCBR	2026-06-18 23:45:53 (12 hours ago)	IPS: Command Injection Over HTTP.	Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 13:21:12 (4 weeks ago)	(mod_security) mod_security (id:240335) triggered by 38.100.221.106 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.100.221.106 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 09:21:06.500121 2026] [security2:error] [pid 21928:tid 21928] [client 38.100.221.106:7920] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.100.221.106 (+1 hits since last alert)\|microbooty.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "microbooty.com"] [uri "/xmlrpc.php"] [unique_id "ag8Gwt4TefEr3g1WNkMikAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.57.9.216

🇮🇩 202.152.204.159

🇺🇸 137.184.119.51

🇮🇩 103.186.31.66

🇺🇸 64.62.156.211

🇨🇳 47.113.195.229

🇳🇱 45.148.10.183

🇩🇿 41.111.215.65

🇭🇰 199.45.154.129

🇵🇱 194.24.174.59

🇭🇰 118.193.38.26

🇺🇸 104.9.60.148

🇩🇪 94.249.230.161

🇨🇦 173.35.124.214

🇧🇬 79.124.62.178

🇯🇵 45.252.188.23

🇩🇪 2.26.80.121

🇺🇸 2602:80d:1007::2c

🇮🇳 203.190.153.90

🇬🇧 194.74.196.10