JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.154.224.254

38.154.224.254 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	B2 Net Solutions Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS55286
Domain Name	b2netsolutions.com
Country	🇺🇸 United States of America
City	Piscataway, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.154.224.254

Whois 38.154.224.254

IP Abuse Reports for 38.154.224.254:

This IP address has been reported a total of 8 times from 4 distinct sources. 38.154.224.254 was first reported on October 30th 2023, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇪 RoboSOC	2025-10-16 08:40:12 (8 months ago)	Apache Struts Jakarta Multipart Parser Remote Code Execution Vulnerability CVE-2017-5638, PTR: PTR ... show more Apache Struts Jakarta Multipart Parser Remote Code Execution Vulnerability CVE-2017-5638, PTR: PTR record not found show less	Hacking
🇺🇸 TPI-Abuse	2025-07-27 00:05:41 (10 months ago)	(mod_security) mod_security (id:221260) triggered by 38.154.224.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:221260) triggered by 38.154.224.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 20:02:09.400355 2025] [security2:error] [pid 24712:tid 24854] [client 38.154.224.254:46769] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(?:\\\\'\\\\w+?=)?\\\\(\\\\)\\\\s{" at MATCHED_VAR. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "77"] [id "221260"] [rev "3"] [msg "COMODO WAF: Shellshock Command Injection Vulnerabilities in GNU Bash through 4.3 bash43-026 (CVE-2014-7187, CVE-2014-7186, CVE-2014-7169, CVE-2014-6278, CVE-2014-6277, CVE-2014-6271)\|\|webmail.kettlehill.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kettlehill.net"] [uri "/cgi-bin/status"] [unique_id "aIVsgbzNFJM38bDc9Xm0TwAAAQM"], referer: () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-30 02:02:01 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 38.154.224.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.224.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 22:01:54.938096 2025] [security2:error] [pid 3947393:tid 3947393] [client 38.154.224.254:44659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whm.farmers123.com"] [uri "/wp-admin/admin-ajax.php"] [unique_id "aDkRkhSAvN7ywGpEk3u4EgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-27 14:36:51 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 38.154.224.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.154.224.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 09:34:44.545677 2025] [security2:error] [pid 27062:tid 27186] [client 38.154.224.254:32879] [client 38.154.224.254] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.staging.kettlehill.com"] [uri "/.env.live"] [unique_id "Z8B4BAgBT3qhfe6UoI1AzAAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-17 08:10:06 (1 year ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 00:32:07 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-04 01:37:01 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 20:33:51 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 79.175.176.177

🇧🇷 45.5.102.93

🇺🇸 2607:f8b0:4002:c11::12e

🇺🇸 216.180.246.41

🇺🇸 209.126.84.139

🇺🇸 205.210.31.76

🇺🇸 165.154.255.63

🇫🇷 91.231.89.220

🇫🇷 91.231.89.30

🇳🇱 91.92.40.231

🇺🇸 70.172.164.55

🇺🇸 66.132.172.150

🇫🇷 62.210.185.4

🇹🇭 49.231.192.36

🇧🇪 34.53.140.87

🇻🇳 2402:800:612d:2dea:fd7d:d582:39cb:9ad6

🇮🇳 223.178.208.244

🇺🇸 141.11.88.22

🇨🇳 116.179.32.103

🇯🇵 111.238.174.6