JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.154.193.180

38.154.193.180 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 15%: ?

15%

ISP	B2 Net Solutions Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55286
Domain Name	b2netsolutions.com
Country	🇺🇸 United States of America
City	Piscataway, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.154.193.180

Whois 38.154.193.180

IP Abuse Reports for 38.154.193.180:

This IP address has been reported a total of 9 times from 3 distinct sources. 38.154.193.180 was first reported on May 27th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bigorre.org	2026-06-01 14:09:40 (3 weeks ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-27 22:45:17 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 18:44:07.372885 2026] [security2:error] [pid 11703:tid 11703] [client 38.154.193.180:47477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "louisianamasons.com"] [uri "/wp-config.php"] [unique_id "ahdzt5qREDLyPJ3WUJpCrwAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-27 22:00:56 (3 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-26. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-27 18:05:51 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 14:05:48.465481 2026] [security2:error] [pid 32187:tid 32187] [client 38.154.193.180:33721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "modelengines.info"] [uri "/.env.local"] [unique_id "ahcyfOCMMXKkDbEbDXlV3gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 17:49:51 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 13:49:46.271977 2026] [security2:error] [pid 11725:tid 11725] [client 38.154.193.180:39089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cnbruselas.oficinasydespachosmurcia.com"] [uri "/.env.development"] [unique_id "ahcuurNL1WAf4xjgMIrHHgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 14:42:04 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 10:41:57.353364 2026] [security2:error] [pid 17345:tid 17345] [client 38.154.193.180:60495] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.agirlwithaguitar.misscharlottemusic.com"] [uri "/sftp-config.json"] [unique_id "ahcCtezpBpq47vyUvChWQgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 11:31:03 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 07:30:56.064676 2026] [security2:error] [pid 18588:tid 18604] [client 38.154.193.180:48467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.artmarialeon.com"] [uri "/wp-config.php.save"] [unique_id "ahbV8HRSqMjSioAgNmFLaAAAAEw"], referer: https://www.google.com/search?q=cpanel.artmarialeon.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:50:25 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:50:21.308685 2026] [security2:error] [pid 19396:tid 19396] [client 38.154.193.180:58977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lbee.com"] [uri "/sftp-config.json"] [unique_id "ahY_zUweGIU-NBgs3tg41gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:13:27 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.193.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:13:13.575071 2026] [security2:error] [pid 31573:tid 31573] [client 38.154.193.180:33239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boardingatthewedge.com"] [uri "/.env"] [unique_id "ahY3GXRKpuHEp30Kr8Ol6wAAACo"], referer: https://www.google.com/search?q=boardingatthewedge.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 95.214.53.157

🇺🇸 45.79.114.248

🇩🇪 212.132.120.41

🇺🇸 107.175.156.160

🇫🇷 88.172.202.84

🇸🇪 79.76.58.113

🇳🇱 45.153.34.112

🇩🇿 41.104.83.251

🇧🇷 200.108.174.4

🇮🇳 168.144.95.137

🇫🇷 163.172.143.147

🇮🇩 103.154.231.122

🇺🇸 68.235.61.155

🇺🇾 190.135.101.201

🇫🇷 91.196.152.124

🇱🇻 81.30.98.144

🇺🇸 52.146.21.44

🇺🇸 3.131.220.121

🇹🇳 197.5.145.114

🇩🇪 167.94.145.28