JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.153.139.71

38.153.139.71 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	Server Mania Inc.
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	servermania.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.153.139.71

Whois 38.153.139.71

IP Abuse Reports for 38.153.139.71:

This IP address has been reported a total of 9 times from 4 distinct sources. 38.153.139.71 was first reported on November 27th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 nyuuzyou	2024-10-07 16:19:56 (1 year ago)	Intensive scraping: /web?s=%22powered%20by%20byteflow%22%20%22You%20can%20use%20Markdown%20here%22%2 ... show more Intensive scraping: /web?s=%22powered%20by%20byteflow%22%20%22You%20can%20use%20Markdown%20here%22%20renta%20de%20consultorios%20por%20hora%20en%20polanco&scraper=yandex. User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68. show less	Bad Web Bot
🇺🇸 TPI-Abuse	2024-05-15 01:53:01 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 14 21:52:56.473565 2024] [security2:error] [pid 20071:tid 47952296691456] [client 38.153.139.71:47075] [client 38.153.139.71] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.staging.kettlehill.com"] [uri "/.env.prod"] [unique_id "ZkQVeMyVcBsnUGAerAqbWQAAAVM"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2024-05-08 06:01:07 (2 years ago)	Unauthorized login attempts [ accesslogs]	Brute-Force
🇪🇸 10dencehispahard SL	2024-03-27 07:00:25 (2 years ago)	Unauthorized login attempts [ BI-16635]	Brute-Force
🇪🇸 10dencehispahard SL	2024-03-27 06:46:55 (2 years ago)	WP scan	Web App Attack
🇺🇸 TPI-Abuse	2024-02-21 11:51:06 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 21 06:49:56.564772 2024] [security2:error] [pid 12887:tid 47945775429376] [client 38.153.139.71:41153] [client 38.153.139.71] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/Web.config" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.com"] [uri "/web.config_inc"] [unique_id "ZdXjZMbjnMwWpUrUADE95QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-01-27 02:36:18 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 26 21:36:11.732802 2024] [security2:error] [pid 5358] [client 38.153.139.71:36989] [client 38.153.139.71] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|autodiscover.stdavids-media.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.stdavids-media.com"] [uri "/footer.php.bak"] [unique_id "ZbRsGw__iWVaenMBDx5PxAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-12-05 17:21:38 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 38.153.139.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 05 12:21:30.268832 2023] [security2:error] [pid 4373:tid 47074393470720] [client 38.153.139.71:35077] [client 38.153.139.71] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.kettlehill.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.kettlehill.com"] [uri "/mail.kettlehill.com/errors.log"] [unique_id "ZW9cGjxsjBBOxdeyni060QAAABE"], referer: http://mail.kettlehill.com/mail.kettlehill.com/errors.log show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2023-11-27 13:05:09 (2 years ago)	\| Common web attack.	Hacking SQL Injection Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.115

🇸🇪 213.66.197.199

🇺🇸 40.124.174.248

🇸🇬 194.5.82.127

🇩🇪 185.249.74.198

🇺🇸 165.154.255.26

🇺🇸 158.222.113.241

🇻🇳 123.31.45.232

🇰🇷 59.21.37.60

🇵🇰 182.180.154.234

🇳🇱 176.65.139.242

🇺🇸 149.57.17.78

🇮🇳 103.125.154.72

🇵🇱 87.251.64.147

🇫🇷 85.217.140.4

🇮🇳 49.205.149.16

🇳🇱 45.142.193.10

🇻🇳 14.191.20.114

🇳🇱 176.65.131.188

🇻🇳 14.176.62.254