JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.247.161.252

38.247.161.252 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 9%: ?

ISP	Database Mart LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS393398
Domain Name	databasemart.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.247.161.252

Whois 38.247.161.252

IP Abuse Reports for 38.247.161.252:

This IP address has been reported a total of 3 times from 2 distinct sources. 38.247.161.252 was first reported on May 29th 2026, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇱 SinaiCL	2026-05-30 20:28:12 (3 weeks ago)	Automated Nginx block. Attack type: Scan for config files. Total malicious requests: 1 across multip ... show more Automated Nginx block. Attack type: Scan for config files. Total malicious requests: 1 across multiple servers. show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-29 06:12:09 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.247.161.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.247.161.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 02:12:06.048086 2026] [security2:error] [pid 22767:tid 22767] [client 38.247.161.252:52386] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ctrussell.us"] [uri "/.env"] [unique_id "ahkuNr-aE5SkkskDMHLzMQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 05:15:51 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 38.247.161.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 38.247.161.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 01:15:44.109800 2026] [security2:error] [pid 31732:tid 31732] [client 38.247.161.252:52382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chriseaton.com"] [uri "/.env"] [unique_id "ahkhAAOfDv7JmIKN6kzbLwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 92.207.4.157

🇺🇸 44.219.20.78

🇺🇸 20.55.29.197

🇺🇸 13.86.116.129

🇬🇧 5.226.140.98

🇵🇾 181.123.62.210

🇭🇰 165.154.41.97

🇬🇧 159.253.63.187

🇺🇸 157.230.15.107

🇺🇸 44.211.88.27

🇺🇸 44.186.57.25

🇻🇳 27.71.230.31

🇺🇸 152.32.183.236

🇨🇳 111.9.22.102

🇳🇬 102.88.137.80

🇰🇷 61.37.150.6

🇺🇸 44.180.231.246

🇺🇸 135.232.227.144

🇺🇸 44.166.113.230

🇺🇸 44.25.133.131