JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.154.217.35

38.154.217.35 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 0%: ?

ISP	B2 Net Solutions Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55286
Domain Name	b2netsolutions.com
Country	🇺🇸 United States of America
City	Piscataway, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.154.217.35

Whois 38.154.217.35

IP Abuse Reports for 38.154.217.35:

This IP address has been reported a total of 10 times from 5 distinct sources. 38.154.217.35 was first reported on August 13th 2023, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 SCHAPPY	2025-07-27 16:10:05 (10 months ago)	IP was involved in L7 DDoS attack.	DDoS Attack
🇺🇸 TPI-Abuse	2025-07-26 23:34:50 (10 months ago)	(mod_security) mod_security (id:221260) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:221260) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 19:34:01.255266 2025] [security2:error] [pid 26440:tid 26638] [client 38.154.217.35:46027] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|mail.kettlehill.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kettlehill.net"] [uri "/cgi-bin/login.php"] [unique_id "aIVl6ci-n1PXCScDgLv8YAAAAVg"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 17:20:19 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 13:20:02.661093 2025] [security2:error] [pid 3044065:tid 3044065] [client 38.154.217.35:40857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.farmers123.com"] [uri "/.env.www"] [unique_id "aDiXQhmIbdl2goc33zX0dgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-19 05:31:59 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 19 01:29:22.619814 2025] [security2:error] [pid 22650:tid 22664] [client 38.154.217.35:57119] [client 38.154.217.35] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.blog.spinningdesigns.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "blog.spinningdesigns.com"] [uri "/php_errors.log"] [unique_id "aAM0ssLYwl69KqC_78icWQAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-11-14 23:08:28 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.154.217.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 14 18:06:53.910617 2023] [security2:error] [pid 12580:tid 47672905537280] [client 38.154.217.35:33391] [client 38.154.217.35] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autoconfig.kettlehill.com"] [uri "/.env.www"] [unique_id "ZVP9je0IgWLb3EJV1XUiHwAAAEM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 04:37:33 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 05:56:19 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 20:51:27 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇩🇪 ps-center	2023-09-26 03:38:50 (2 years ago)	SS1: Web Attack GET /wp-config.php-backup	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2023-08-13 04:25:01 (2 years ago)	\| XSS (Cross Site Scripting) attempt.	Hacking SQL Injection Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.97.195.179

🇧🇷 191.195.99.221

🇧🇷 177.6.162.182

🇨🇳 120.48.60.44

🇫🇷 92.103.134.183

🇵🇱 87.251.64.158

🇺🇸 66.132.195.20

🇩🇪 43.228.157.8

🇬🇧 2a06:4880:2000::37

🇭🇰 216.236.6.93

🇧🇪 198.235.24.240

🇫🇮 147.185.133.255

🇷🇴 85.122.120.118

🇺🇸 208.69.161.149

🇺🇸 193.56.28.55

🇺🇸 162.216.149.147

🇨🇦 144.217.72.74

🇸🇬 140.245.44.106

🇺🇸 104.207.37.187

🇹🇼 104.199.176.250