JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.199.103.240

38.199.103.240 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 45%: ?

45%

ISP	Telecable el Limón S.R.L.
Usage Type	Fixed Line ISP
ASN	AS273121
Domain Name	telecablelimon.com.do
Country	🇩🇴 Dominican Republic
City	Samana, Samana

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.199.103.240

Whois 38.199.103.240

IP Abuse Reports for 38.199.103.240:

This IP address has been reported a total of 18 times from 13 distinct sources. 38.199.103.240 was first reported on February 20th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 20:29:12 (1 day ago)	(mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 16:29:04.935295 2026] [security2:error] [pid 28380:tid 28380] [client 38.199.103.240:56655] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.199.103.240 (+1 hits since last alert)\|csm-dtc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "csm-dtc.com"] [uri "/xmlrpc.php"] [unique_id "ajw-ELoEFJS9kriPZzGj8wAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 integrantservices.com	2026-06-24 20:06:51 (1 day ago)	(wordpress) Failed wordpress login from 38.199.103.240 (DO/Dominican Republic/-)	Brute-Force
🇩🇪 abdubhai	2026-06-22 00:01:48 (3 days ago)	38.199.103.240 - - [22/Jun/2026: ...	Brute-Force
🇺🇸 TPI-Abuse	2026-06-21 23:22:59 (3 days ago)	(mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 19:22:56.145574 2026] [security2:error] [pid 19575:tid 19575] [client 38.199.103.240:59778] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.199.103.240 (+1 hits since last alert)\|laura-stone.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "laura-stone.com"] [uri "/xmlrpc.php"] [unique_id "ajhyUNdzwcAwSuu6D5Ka9gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 lostswordfish.com	2026-06-19 20:26:03 (6 days ago)	Wordfence waf block on kcuar	Web App Attack
🇺🇸 Dolphi	2026-06-18 18:20:05 (1 week ago)	Excessive POST /xmlrpc.php requests	Brute-Force Web App Attack
🇺🇸 integrantservices.com	2026-06-17 18:33:41 (1 week ago)	(wordpress) Failed wordpress login from 38.199.103.240 (DO/Dominican Republic/-)	Brute-Force
🇺🇸 TPI-Abuse	2026-06-17 13:23:16 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 09:23:12.296033 2026] [security2:error] [pid 29781:tid 29781] [client 38.199.103.240:63996] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.199.103.240 (+1 hits since last alert)\|athletefirst.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "athletefirst.org"] [uri "/xmlrpc.php"] [unique_id "ajKfwDuaT7UhjJl_ee0P0wAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Yepngo	2026-06-17 12:17:29 (1 week ago)	38.199.103.240 - - [17/Jun/2026:14:17:18 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack/13. ... show more 38.199.103.240 - - [17/Jun/2026:14:17:18 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "Jetpack/13.0; WordPress/6.4; http://site99508624.com" 38.199.103.240 - - [17/Jun/2026:14:17:28 +0200] "POST /xmlrpc.php HTTP/2.0" 200 410 "-" "WordPress.com; https://wordpress.com" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 13:17:24 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 09:17:19.309964 2026] [security2:error] [pid 8567:tid 8567] [client 38.199.103.240:49200] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.199.103.240 (+1 hits since last alert)\|exhaustthelimits.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "exhaustthelimits.org"] [uri "/xmlrpc.php"] [unique_id "ajFM33BJruZJ-yTrw9S7BwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 13:34:03 (1 week ago)	(mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:240335) triggered by 38.199.103.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 09:33:55.195885 2026] [security2:error] [pid 15467:tid 15467] [client 38.199.103.240:64328] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)\|Source 38.199.103.240 (+1 hits since last alert)\|microkerneltechnologies.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "microkerneltechnologies.com"] [uri "/xmlrpc.php"] [unique_id "aiwKw_qzn2FU5nzWDGW5OQAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-27 18:46:17 (4 weeks ago)	Attac	Brute-Force
🇺🇸 MPL	2026-05-23 22:21:35 (1 month ago)	tcp/23	Port Scan
Anonymous	2025-11-17 04:39:42 (7 months ago)	scanning http requests from known botnet	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-09-07 15:09:28 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇶 65.20.135.235

🇨🇭 34.65.100.146

🇳🇱 176.65.139.215

🇩🇰 145.11.34.31

🇧🇪 104.155.40.10

🇺🇸 95.164.235.163

🇷🇴 80.94.92.156

🇱🇹 62.60.130.219

🇩🇪 62.54.176.203

🇺🇸 57.154.172.166

🇳🇱 45.148.10.141

🇩🇪 34.185.208.118

🇺🇸 34.169.127.97

🇧🇦 195.222.43.138

🇸🇪 188.126.241.118

🇳🇱 176.65.139.254

🇺🇸 95.164.235.124

🇺🇸 95.164.233.62

🇺🇸 95.164.233.53

🇺🇸 95.164.159.225