JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.165.230.218

38.165.230.218 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 28%: ?

28%

ISP	IPXON Networks Argentina - Buenos Aires AR-EZE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS263812
Hostname(s)	218.ip-230-165-38.eze.ar.ipxon.net
Domain Name	ipxon.com
Country	🇦🇷 Argentina
City	Berisso, Buenos Aires

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.165.230.218

Whois 38.165.230.218

IP Abuse Reports for 38.165.230.218:

This IP address has been reported a total of 15 times from 14 distinct sources. 38.165.230.218 was first reported on May 23rd 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-16 11:22:40 (3 days ago)	IM360 WAF: Rate limit exceeded for XMLRPC DoS (fault code)	Web App Attack
🇯🇵 demonsword	2026-06-15 11:07:46 (4 days ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.verymobile.it:443 show less	Open Proxy Port Scan
🇺🇸 Axel	2026-06-13 11:10:35 (6 days ago)	Blocked by UFW on MVI [57314/tcp] \| SPT: 8081 \| TTL: 55 \| LEN: 52 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on MVI [57314/tcp] \| SPT: 8081 \| TTL: 55 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 oncord	2026-05-06 07:21:03 (1 month ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-04-30 18:19:07 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 38.165.230.218 (218.ip-230-165-38.eze.ar.ipxon. ... show more (mod_security) mod_security (id:225170) triggered by 38.165.230.218 (218.ip-230-165-38.eze.ar.ipxon.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 14:19:03.892533 2026] [security2:error] [pid 31271:tid 31271] [client 38.165.230.218:53871] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|susanleeward.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "susanleeward.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afOdF_qyi1FussR86ZbP4gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 hermawan	2026-04-06 06:07:13 (2 months ago)	1775455624.863059 38.165.230.218 103.166.156.58 65535_2-4-8-1-3_1286_6 2026-04-06 20:07:04 WIB ...	Email Spam Hacking
🇮🇩 sockominfo	2025-12-03 20:05:48 (6 months ago)	[WAZUH] SUPPRESSED: IP 38.165.230.218 blocked - 8 times fired in 6 hour	Hacking Web App Attack
Anonymous	2025-11-12 13:02:16 (7 months ago)	High Number of Destinations	Port Scan
Anonymous	2025-11-04 08:20:03 (7 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-09-26 04:00:59 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇹🇷 Doruk	2025-09-03 22:30:02 (9 months ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 exxos	2025-08-12 20:03:01 (10 months ago)	HTTP1.x attacks	DDoS Attack
Anonymous	2025-06-28 18:22:58 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-06-13 03:38:00 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇹🇷 pamircil	2025-05-23 17:59:03 (1 year ago)	🍯 WinnieThePooh Honeypot : GET request to '/' on (http/80)💀	Hacking Brute-Force SSH

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 93.94.141.115

🇨🇭 209.99.189.138

🇭🇰 199.45.155.83

🇫🇷 185.188.249.30

🇮🇳 168.144.19.206

🇹🇭 118.27.146.111

🇺🇸 91.230.168.95

🇳🇱 45.148.10.147

🇷🇺 5.44.169.178

🇷🇺 188.19.161.99

🇨🇳 119.249.100.114

🇲🇾 47.250.171.20

🇷🇴 2.57.121.112

🇹🇿 197.186.17.164

🇧🇷 189.50.142.82

🇷🇺 188.17.218.104

🇲🇽 187.136.34.236

🇻🇳 165.154.187.159

🇷🇺 138.124.77.177

🇨🇳 115.190.197.74