JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.248.95.248

38.248.95.248 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 100%: ?

100%

ISP	Limestone Networks, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Hostname(s)	shoplachica.com
Domain Name	limestonenetworks.com
Country	🇺🇸 United States of America
City	Centreville, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.248.95.248

Whois 38.248.95.248

IP Abuse Reports for 38.248.95.248:

This IP address has been reported a total of 40 times from 21 distinct sources. 38.248.95.248 was first reported on June 6th 2026, and the most recent report was 21 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 polycoda	2026-06-07 10:34:57 (21 minutes ago)	🔥 VERY AGGRESSIVE SCANNER probed over 100 inexistent files and PHP scripts in less than an hour.	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 09:31:58 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 05:31:53.384981 2026] [security2:error] [pid 965:tid 1124] [client 38.248.95.248:60208] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lead-sleds.com"] [uri "/.git/config"] [unique_id "aiU6icsSqwNjsbofQU9lZgAAARI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 09:05:16 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 05:05:11.228045 2026] [security2:error] [pid 23889:tid 23889] [client 38.248.95.248:42768] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lcssouth.com"] [uri "/.git/config"] [unique_id "aiU0R-o-G1_QeDq0572arQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 Halux	2026-06-07 09:00:14 (1 hour ago)	38.248.95.248 Web Application Firewall multiple violations	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 08:31:13 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 04:31:05.990043 2026] [security2:error] [pid 3478:tid 3478] [client 38.248.95.248:53180] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lazymanvegan.com"] [uri "/.git/config"] [unique_id "aiUsSbcDNL4QcRb_t173IAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 07:54:54 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 03:54:51.300639 2026] [security2:error] [pid 12159:tid 12159] [client 38.248.95.248:35504] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lawrencehale.com"] [uri "/.git/config"] [unique_id "aiUjy1J7qy_hyCY-vB56GgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-06-07 07:39:05 (3 hours ago)	BAD BOT - Detected and Blocked.. Matched phrase "GPTBot" at REQUEST_HEADERS:User-Agent. (1100000-122 ... show more BAD BOT - Detected and Blocked.. Matched phrase "GPTBot" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-07 07:33:15 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 03:33:09.109643 2026] [security2:error] [pid 29243:tid 29243] [client 38.248.95.248:39210] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lavozdominicana.com"] [uri "/.env"] [unique_id "aiUetUmEATbMIjBslgQJygAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Victor López	2026-06-07 07:07:30 (3 hours ago)	lavadodepisosbogota.com 38.248.95.248 - - [07/Jun/2026:02:07:26 -0500] "GET /.git/HEAD HTTP/1.1" 403 ... show more lavadodepisosbogota.com 38.248.95.248 - - [07/Jun/2026:02:07:26 -0500] "GET /.git/HEAD HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)" lavadodepisosbogota.com 38.248.95.248 - - [07/Jun/2026:02:07:26 -0500] "GET /.git/config HTTP/1.1" 403 199 "-" "Mozilla/5.0 (compatible; DeepSeekBot/1.0; +https://www.deepseek.com/bot)" lavadodepisosbogota.com 38.248.95.248 - - [07/Jun/2026:02:07:29 -0500] "GET /.env.backup HTTP/1.1" 404 10319 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)" ... show less	Hacking Web App Attack
🇺🇸 Matthew Ping	2026-06-07 06:30:02 (4 hours ago)	ModSecurity rule 949110 triggered on d865. Web application attack blocked by CSF/LFD.	Web App Attack Hacking
🇫🇷 masterguru	2026-06-07 06:21:35 (4 hours ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 06:18:00 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last ... show more (mod_security) mod_security (id:210492) triggered by 38.248.95.248 (shoplachica.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 02:17:51.371895 2026] [security2:error] [pid 8059:tid 8059] [client 38.248.95.248:53270] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "laura-stone.com"] [uri "/.git/config"] [unique_id "aiUNDxCiO-wdQs0dhFZybwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-07 06:02:37 (4 hours ago)	[SunJun0708:02:32.9136742026][security2:error][pid3416011:tid3416160][client38.248.95.248:0]ModSecur ... show more [SunJun0708:02:32.9136742026][security2:error][pid3416011:tid3416160][client38.248.95.248:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"laumeiconsulting.com\"][uri\"/.git/HEAD\"][unique_id\"aiUJeHB6qOz1jQZC6udsPwAAAJI\"] show less	Port Scan Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-07 06:00:06 (4 hours ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇫🇷 pm33	2026-06-07 05:46:04 (5 hours ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 180.93.32.67

🇺🇸 159.89.227.10

🇰🇷 112.216.129.27

🇨🇳 112.94.98.112

🇸🇬 43.134.5.186

🇧🇪 193.74.139.69

🇺🇸 172.86.126.246

🇮🇳 157.48.101.245

🇨🇦 148.113.221.241

🇭🇰 144.48.8.10

🇰🇷 112.175.29.94

🇻🇳 103.237.144.204

🇫🇷 91.174.234.179

🇳🇱 91.92.42.182

🇺🇸 74.249.128.248

🇸🇬 68.183.178.130

🇬🇧 35.203.211.254

🇬🇧 35.203.211.83

🇩🇪 213.209.159.241

🇸🇬 194.233.74.201