JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.153.152.25

38.153.152.25 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	Server Mania Inc.
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	servermania.com
Country	🇺🇸 United States of America
City	Piscataway, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.153.152.25

Whois 38.153.152.25

IP Abuse Reports for 38.153.152.25:

This IP address has been reported a total of 4 times from 3 distinct sources. 38.153.152.25 was first reported on May 4th 2025, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2025-09-05 02:53:55 (9 months ago)	Blocked by UFW (TCP on 8085) Source port: 34045 TTL: 51 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 8085) Source port: 34045 TTL: 51 Packet length: 60 TOS: 0x08 This report (for 38.153.152.25) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 TPI-Abuse	2025-07-01 06:09:54 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 38.153.152.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.153.152.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 01 02:09:46.398179 2025] [security2:error] [pid 15240:tid 15274] [client 38.153.152.25:36449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.kettlehill.com"] [uri "/wp-config.php.old"] [unique_id "aGN7qlEMdJRstfLTz5SAdwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-06-05 16:00:08 (11 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-05-04 08:48:31 (1 year ago)	(mod_security) mod_security (id:217200) triggered by 38.153.152.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:217200) triggered by 38.153.152.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 04 04:48:24.252252 2025] [security2:error] [pid 3771527:tid 3771527] [client 38.153.152.25:53699] [client 38.153.152.25] ModSecurity: Access denied with code 403 (phase 1). Match of "endsWith /wp-cron.php" against "REQUEST_FILENAME" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "103"] [id "217200"] [rev "2"] [msg "COMODO WAF: HTTP/1.1 POST request missing Content-Length Header\|\|cpcontacts.nbcnewsradio.com\|F\|2"] [data "/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh"] [severity "CRITICAL"] [tag "CWAF"] [tag "Protocol"] [hostname "cpcontacts.nbcnewsradio.com"] [uri "/cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh"] [unique_id "aBcp2P4rLcomKLwwWrQlMwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.248.243.247

🇨🇳 182.119.56.103

🇰🇪 102.219.208.158

🇮🇹 93.48.24.181

🇫🇷 92.205.57.72

🇫🇮 37.27.9.174

🇬🇧 35.203.210.113

🇨🇭 209.99.185.195

🇺🇿 95.214.211.21

🇩🇪 8.211.47.83

🇺🇸 2001:470:2cc:1::245

🇺🇸 165.227.209.27

🇫🇮 147.185.133.9

🇰🇷 119.203.251.187

🇹🇷 88.250.44.60

🇩🇪 78.46.173.96

🇮🇩 38.253.239.21

🇺🇸 20.65.193.150

🇯🇵 8.209.233.112

🇷🇴 2.57.121.112