AbuseIPDB » 38.154.194.199
38.154.194.199 was found in our database!
This IP was reported 7 times. Confidence of
Abuse
is 0% : ?
ISP
B2 Net Solutions Inc.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS55286
Domain Name
b2netsolutions.com
Country
πΊπΈ
United States of America
City
Piscataway, New Jersey
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 38.154.194.199 :
This IP address has been reported a total of
7
times from
5 distinct
sources.
38.154.194.199 was first reported on
February 26th 2024 , and the most recent report was
1 month ago .
Old Reports:
The most recent abuse report for this IP address is from
1 month ago
. It is possible that this IP is no longer involved in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
π©πͺ
rh24
2026-05-09 07:03:25
(1 month ago)
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 38.154.194.199 (US/U ...
show more
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 38.154.194.199 (US/United States/-)
show less
Bad Web Bot
πΊπΈ
TPI-Abuse
2025-07-27 01:22:47
(11 months ago)
(mod_security) mod_security (id:210492) triggered by 38.154.194.199 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 38.154.194.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 21:22:41.941176 2025] [security2:error] [pid 729659:tid 729735] [client 38.154.194.199:60505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kettlehill.com"] [uri "/events../.git/config"] [unique_id "aIV_YX2RRV3bCvyhjSKUmgAAAE4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-05-29 17:16:53
(1 year ago)
(mod_security) mod_security (id:211190) triggered by 38.154.194.199 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 38.154.194.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 13:16:45.786935 2025] [security2:error] [pid 3053604:tid 3053604] [client 38.154.194.199:44731] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||ftp.farmers123.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?option=com_pro_desk&include_file=../../../../../../etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.farmers123.com"] [uri "/index.php"] [unique_id "aDiWfTA4ZPmd3ivnGrRFbQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2025-01-17 08:10:38
(1 year ago)
| Common web attack.
Hacking
SQL Injection
Web App Attack
π©πͺ
Vegascosmetics
2024-02-27 06:00:48
(2 years ago)
Potential Dangerous Requests Sucker
Bad Web Bot
π¬π§
AvonleaConsulting
2024-02-26 23:57:42
(2 years ago)
Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
Bad Web Bot
Web App Attack
π¬π§
AvonleaConsulting
2024-02-26 08:32:03
(2 years ago)
Attempts to probe web pages for vulnerable PHP or other applications
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: