JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.153.138.96

38.153.138.96 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	Server Mania Inc.
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	servermania.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.153.138.96

Whois 38.153.138.96

IP Abuse Reports for 38.153.138.96:

This IP address has been reported a total of 15 times from 5 distinct sources. 38.153.138.96 was first reported on October 30th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2024-05-26 23:50:44 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-05-21 23:19:09 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 21 19:17:56.488052 2024] [security2:error] [pid 4011:tid 47525674960640] [client 38.153.138.96:39727] [client 38.153.138.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kettlehill.com"] [uri "/wp-content/plugins/jsmol2wp/php/jsmol.php"] [unique_id "Zk0rpDHjro3uQnb1ONk7gwAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2024-05-08 07:00:43 (2 years ago)	Unauthorized login attempts []	Brute-Force
🇪🇸 10dencehispahard SL	2024-05-08 06:48:08 (2 years ago)	Web Attack	DDoS Attack Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2024-03-27 07:00:25 (2 years ago)	Unauthorized login attempts [ BI-16635]	Brute-Force
🇪🇸 10dencehispahard SL	2024-03-27 06:46:54 (2 years ago)	WP scan	Web App Attack
Anonymous	2024-03-06 00:46:53 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-02-27 23:08:23 (2 years ago)	(mod_security) mod_security (id:212620) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:212620) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 27 18:07:27.851196 2024] [security2:error] [pid 10328:tid 47999354943232] [client 38.153.138.96:42747] [client 38.153.138.96] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|ftp.kettlehill.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /squid.svg?title=notfound&text=thisisnotthepageyouarelookingfor!&background=\\x22><script>alert(document.domain)</script><imgsrc=\\x22&small"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "ftp.kettlehill.com"] [uri "/squid.svg"] [unique_id "Zd5rL1CtMmZCGssmksS3OgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-01-25 23:27:15 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 25 18:27:08.705039 2024] [security2:error] [pid 20402] [client 38.153.138.96:60697] [client 38.153.138.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.stdavids-media.com"] [uri "/.env.www"] [unique_id "ZbLuTIJdfCOglJYaqWLCZgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-12-07 10:03:19 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack
🇺🇸 TPI-Abuse	2023-12-05 17:20:27 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.153.138.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 05 12:20:19.451558 2023] [security2:error] [pid 7279:tid 47036192249600] [client 38.153.138.96:60657] [client 38.153.138.96] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kettlehill.com"] [uri "/.env.old"] [unique_id "ZW9b06rwAVy4kEnMIimB_gAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-11-27 13:35:03 (2 years ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 00:33:14 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 04:01:20 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 19:46:04 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.143

🇨🇳 183.220.223.3

🇨🇳 115.236.53.198

🇺🇸 100.29.192.4

🇫🇷 51.178.137.163

🇹🇼 198.235.24.96

🇷🇴 193.46.255.86

🇩🇪 141.11.45.97

🇵🇰 110.39.248.117

🇱🇹 81.30.98.158

🇳🇱 45.198.224.5

🇹🇭 203.154.158.195

🇧🇴 181.188.176.242

🇺🇸 174.138.87.36

🇨🇳 117.176.131.191

🇫🇷 77.237.242.240

🇬🇧 51.89.166.236

🇨🇳 49.232.200.56

🇳🇱 45.148.10.151

🇯🇵 210.156.0.132