JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.170.169.67

38.170.169.67 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 0%: ?

ISP	Server Mania Inc.
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	servermania.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.170.169.67

Whois 38.170.169.67

IP Abuse Reports for 38.170.169.67:

This IP address has been reported a total of 9 times from 4 distinct sources. 38.170.169.67 was first reported on October 5th 2023, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-11-12 04:34:26 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 23:34:20.891752 2025] [security2:error] [pid 3110:tid 3110] [client 38.170.169.67:40209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.nbcnewsradio.com"] [uri "/.env"] [unique_id "aRQOTKPRtOLsvmNnZJ28FAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-01 16:42:49 (8 months ago)	(mod_security) mod_security (id:210492) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 12:42:41.571651 2025] [security2:error] [pid 30111:tid 30171] [client 38.170.169.67:35873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kettlehill.net"] [uri "/.env.prod.local"] [unique_id "aN1aARH4YjaIRtXIcLCctwAAAgE"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-07-16 23:50:30 (11 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-02-27 14:19:57 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 09:19:49.472135 2025] [security2:error] [pid 4462:tid 4661] [client 38.170.169.67:59957] [client 38.170.169.67] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.staging.kettlehill.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.staging.kettlehill.com"] [uri "/new/newhttp:/example.com"] [unique_id "Z8B0hRx5vezH7jlwby3YCQAAApY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2023-11-14 23:10:10 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 38.170.169.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 14 18:09:38.427936 2023] [security2:error] [pid 12302:tid 47672909739776] [client 38.170.169.67:45645] [client 38.170.169.67] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kettlehill.net"] [uri "/.env.webdisk"] [unique_id "ZVP-Midj61v58clFOioUuQAAAkU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ChamberofCommerce.com	2023-11-06 02:28:30 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-11-02 01:21:29 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 ChamberofCommerce.com	2023-10-30 20:23:47 (2 years ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:227 show less	Bad Web Bot
🇮🇪 Andrew Katz	2023-10-05 09:02:33 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 128.14.225.164

🇬🇧 35.203.211.78

🇳🇱 204.76.203.81

🇺🇸 185.191.171.3

🇸🇪 171.25.158.82

🇺🇸 162.216.150.201

🇺🇸 162.216.150.123

🇱🇹 158.173.79.102

🇩🇪 154.14.23.208

🇮🇳 152.52.236.122

🇫🇮 147.185.133.222

🇻🇳 123.24.45.192

🇨🇳 116.63.245.187

🇳🇱 77.83.39.75

🇱🇹 45.227.254.170

🇳🇱 45.148.121.138

🇹🇷 45.136.7.132

🇺🇸 45.79.0.144

🇨🇳 39.103.56.123

🇵🇰 223.123.43.6