JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.154.200.39

38.154.200.39 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 10%: ?

10%

ISP	B2 Net Solutions Inc.
Usage Type	Fixed Line ISP
ASN	AS55286
Domain Name	b2netsolutions.com
Country	🇺🇸 United States of America
City	Piscataway, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.154.200.39

Whois 38.154.200.39

IP Abuse Reports for 38.154.200.39:

This IP address has been reported a total of 8 times from 2 distinct sources. 38.154.200.39 was first reported on May 26th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-28 22:03:36 (3 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27. show less	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-05-28 02:42:25 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 22:42:16.737339 2026] [security2:error] [pid 23147:tid 23147] [client 38.154.200.39:46139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.cromaki.com"] [uri "/.env"] [unique_id "aheriIdyzwvefMQXxJbGBgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-28 01:53:49 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 21:53:40.961471 2026] [security2:error] [pid 12849:tid 12849] [client 38.154.200.39:53679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greed.wisk.org"] [uri "/.env.bak"] [unique_id "ahegJEukWXZYcmcA1vW_kQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 17:45:45 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 13:45:40.532567 2026] [security2:error] [pid 8132:tid 8132] [client 38.154.200.39:57955] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.title-26.vittariadesign.com"] [uri "/wp-config.php.save"] [unique_id "ahctxIthJEgSSLZOqRmxewAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 12:18:42 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 08:18:36.013223 2026] [security2:error] [pid 29455:tid 29455] [client 38.154.200.39:59533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.old" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bernabeu.org"] [uri "/wp-config.old"] [unique_id "ahbhHAKdw4z5nV-kfbufrAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:57:25 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:56:59.280021 2026] [security2:error] [pid 14400:tid 14400] [client 38.154.200.39:48125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/config/parameters.yml" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pocosfarm.littlehorndesign.com"] [uri "/app/config/parameters.yml"] [unique_id "ahZBWyANowaCcdsVV-wtLQAAABU"], referer: https://www.google.com/search?q=www.pocosfarm.littlehorndesign.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 00:22:07 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.200.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 20:21:56.962623 2026] [security2:error] [pid 26488:tid 26618] [client 38.154.200.39:48483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brucejoell.com"] [uri "/wp-config.php"] [unique_id "ahY5JCaZlgStTS-rKETVlAAAAQI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-05-26 21:59:14 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-26	Web App Attack SSH Hacking

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 221.161.235.168

🇹🇼 221.120.73.24

🇮🇳 182.95.48.154

🇺🇸 162.216.150.118

🇺🇸 152.32.235.69

🇰🇪 102.210.148.41

🇺🇸 65.73.230.102

🇺🇸 45.156.129.138

🇺🇸 45.156.129.136

🇺🇸 2600:6c5e:1800:534d:67f3:c2ff:f632:1bbf

🇳🇱 195.178.110.30

🇧🇷 189.123.37.115

🇮🇳 139.167.216.26

🇺🇸 138.68.4.170

🇺🇸 97.211.156.184

🇷🇺 91.122.145.74

🇵🇹 89.152.82.108

🇳🇱 81.19.216.90

🇺🇸 66.54.101.252

🇩🇪 46.101.180.162