JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.145.197.8

38.145.197.8 was found in our database!

This IP was reported 74 times. Confidence of Abuse is 17%: ?

17%

ISP	Enzu Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS18978
Hostname(s)	server.hightechpos.com
Domain Name	enzu.com
Country	🇺🇸 United States of America
City	Miami, Florida

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.145.197.8

Whois 38.145.197.8

IP Abuse Reports for 38.145.197.8:

This IP address has been reported a total of 74 times from 34 distinct sources. 38.145.197.8 was first reported on April 22nd 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Oakley	2026-06-12 00:12:54 (2 days ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇩🇪 Oakley	2026-05-20 13:10:12 (3 weeks ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇮🇹 VHosting	2026-04-26 13:01:29 (1 month ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇫🇷 ✨	2026-04-21 23:21:10 (1 month ago)	Rule : Security 13656 \device\harddiskvolume5\program files (x86)\mail enable\bin64\meimaps.exe %59 ... show more Rule : Security 13656 \device\harddiskvolume5\program files (x86)\mail enable\bin64\meimaps.exe %592 38.145.197.8 62903 *hidden-privacy* 993 6 255499732 %610 44 show less	Port Scan Hacking Brute-Force
🇮🇩 xveil	2026-04-16 21:22:01 (1 month ago)	2026-04-17T04:21:59.020735 mail-honeypot postfix/submission/smtpd[20784]: warning: unknown[38.145.19 ... show more 2026-04-17T04:21:59.020735 mail-honeypot postfix/submission/smtpd[20784]: warning: unknown[38.145.197.8]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
Anonymous	2025-11-12 07:54:51 (7 months ago)	Failed Wordpress login	Hacking Brute-Force Web App Attack
🇩🇪 kjaerulff	2025-11-12 06:14:03 (7 months ago)	Failed Wordpress login using wp-login.php (server.hightechpos.com)	Web App Attack
🇺🇸 TPI-Abuse	2025-10-27 07:31:51 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 27 03:31:47.487841 2025] [security2:error] [pid 19521:tid 19521] [client 38.145.197.8:58678] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pleasurecube.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pleasurecube.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP8f42exK7z6ahC7buK0PwAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-27 06:43:02 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 27 02:42:55.983818 2025] [security2:error] [pid 6740:tid 6740] [client 38.145.197.8:39444] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|armrms.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "armrms.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP8Ub9Tv_bZfErVl1V22TgAAAAo"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-27 04:49:18 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 27 00:49:11.625306 2025] [security2:error] [pid 2444:tid 2464] [client 38.145.197.8:44956] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|philacentric.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "philacentric.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP75x-oahgkVsstLg3tsQgAAANI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-27 03:58:21 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 26 23:58:18.025340 2025] [security2:error] [pid 1150:tid 1150] [client 38.145.197.8:42800] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|brewhound.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "brewhound.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aP7t2oEABJ5yCTQkF3EG2QAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-27 03:09:59 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the ... show more (mod_security) mod_security (id:225170) triggered by 38.145.197.8 (server.hightechpos.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 26 23:09:51.781716 2025] [security2:error] [pid 29403:tid 29403] [client 38.145.197.8:45372] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ageiron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ageiron.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aP7if-oMqRxfe42Wr07bigAAAAw"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 [email protected]	2025-10-27 03:05:29 (7 months ago)	Attack attempt against Interwebbi servers; (WPNINJA) Ninja Firewall attack on exlibrisband.com (User ... show more Attack attempt against Interwebbi servers; (WPNINJA) Ninja Firewall attack on exlibrisband.com (User enumeration scan (WP REST API)) 38.145.197.8 (US/United States/server.hightechpos.com): 1 in the last 3600 secs (CF_ENABLE); IP: 38.145.197.8; Ports: *; Direction: 0; Trigger: LF_CUSTOMTRIGGER; show less	Web App Attack
🇳🇱 exxos	2025-09-25 03:03:01 (8 months ago)	Attacks with Bad user agents	Hacking
Anonymous	2025-08-01 20:36:14 (10 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 74 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 2400:cb00:1031:1000:b662:99d9:9738:d5eb

🇨🇦 142.44.220.128

🇰🇷 119.205.179.217

🇨🇳 111.32.153.180

🇧🇬 91.191.209.46

🇨🇳 180.108.17.65

🇺🇸 161.129.211.63

🇯🇵 160.251.182.78

🇨🇦 142.44.225.241

🇺🇸 108.51.63.234

🇨🇳 106.13.182.13

🇧🇷 104.22.10.206

🇺🇸 93.152.208.38

🇷🇺 77.223.99.43

🇺🇸 199.195.254.215

🇳🇱 193.176.31.253

🇬🇧 188.240.59.46

🇨🇦 148.113.128.67

🇨🇦 142.44.228.0

🇨🇳 115.190.215.101