JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.122.43.166

138.122.43.166 was found in our database!

This IP was reported 187 times. Confidence of Abuse is 84%: ?

84%

ISP	IZAZ PROCESSAMENTO DE DADOS LTDA
Usage Type	Fixed Line ISP
ASN	AS264316
Hostname(s)	asn-138-122-43-166.izaz.com.br
Domain Name	izaz.com.br
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.122.43.166

Whois 138.122.43.166

IP Abuse Reports for 138.122.43.166:

This IP address has been reported a total of 187 times from 77 distinct sources. 138.122.43.166 was first reported on December 18th 2025, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 12:57:31 (12 hours ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 08:57:24.511239 2026] [security2:error] [pid 2353:tid 2353] [client 138.122.43.166:38336] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.97films.media\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.97films.media"] [uri "/wp-json/wp/v2/users"] [unique_id "ai1TtOr-yEpTjSktVUzT4QAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-06-12 22:28:41 (1 day ago)	138.122.43.166 - - [13/Jun/2026:01:28:40 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 3347 "-" ... show more 138.122.43.166 - - [13/Jun/2026:01:28:40 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 3347 "-" "Mozilla/5.0" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-12 19:28:35 (1 day ago)	138.122.43.166 - - [12/Jun/2026:22:28:34 +0300] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 764 "-" ... show more 138.122.43.166 - - [12/Jun/2026:22:28:34 +0300] "POST /wp-admin/admin-ajax.php HTTP/1.1" 404 764 "-" "Mozilla/5.0" ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-12 13:42:25 (1 day ago)	138.122.43.166 - - [12/Jun/2026:16:42:09 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 3363 "-" ... show more 138.122.43.166 - - [12/Jun/2026:16:42:09 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 3363 "-" "Mozilla/5.0" 138.122.43.166 - - [12/Jun/2026:16:42:24 +0300] "GET /wp-admin/admin-ajax.php HTTP/1.1" 404 3361 "-" "Mozilla/5.0" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 13:26:25 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 09:26:19.241875 2026] [security2:error] [pid 31321:tid 31321] [client 138.122.43.166:39792] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.cycontechnology.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.cycontechnology.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiwI-795V-FdpSfx-q9G4wAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 03:21:48 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 23:21:40.650467 2026] [security2:error] [pid 16531:tid 16531] [client 138.122.43.166:33000] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.ohiohca.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.ohiohca.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ait7RAJp-BoYRW6QHsFTSAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 23:23:35 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 19:23:28.077144 2026] [security2:error] [pid 2705:tid 2705] [client 138.122.43.166:33256] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nextstepplus.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nextstepplus.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aitDcAc8c4sLJY-78u_WvQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 13:04:17 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 09:04:13.765985 2026] [security2:error] [pid 2737:tid 2737] [client 138.122.43.166:48176] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|joevallone.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "joevallone.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiqyTVytPc6CpPyR1g-wqAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 06:24:43 (2 days ago)	Attac	Brute-Force
🇺🇸 TPI-Abuse	2026-06-11 04:23:51 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 00:23:47.717284 2026] [security2:error] [pid 25215:tid 25215] [client 138.122.43.166:57378] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.consolidatedoperationsgroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.consolidatedoperationsgroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aio4U-yuQlONvm9_4zADAwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 11:09:28 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 07:09:20.523488 2026] [security2:error] [pid 13437:tid 13437] [client 138.122.43.166:51656] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.terfgunclub.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.terfgunclub.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ailF4OIUn9CHnYEJlxBIAgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 R.G.	2026-06-10 08:46:47 (3 days ago)	(WPLOGINorWHATEVER) Get lost please 138.122.43.166 (BR/Brazil/asn-138-122-43-166.izaz.com.br): 7 in ... show more (WPLOGINorWHATEVER) Get lost please 138.122.43.166 (BR/Brazil/asn-138-122-43-166.izaz.com.br): 7 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇫🇷 dynamix	2026-06-09 23:14:06 (4 days ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-06-09 21:35:02 (4 days ago)	[redacted] 138.122.43.166 - - [09/Jun/2026:23:35:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" " ... show more [redacted] 138.122.43.166 - - [09/Jun/2026:23:35:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:40.0) Gecko/20100101 Firefox/40.0" [redacted] 138.122.43.166 - - [09/Jun/2026:23:35:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0" [redacted] 138.122.43.166 - - [09/Jun/2026:23:35:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:43.0) Gecko/20100101 Firefox/43.0" [redacted] 138.122.43.166 - - [09/Jun/2026:23:35:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0" [redacted] 138.122.43.166 - - [09/Jun/2026:23:35:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 216 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 138.122.43.166 - - ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 20:58:26 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br) ... show more (mod_security) mod_security (id:225170) triggered by 138.122.43.166 (asn-138-122-43-166.izaz.com.br): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 16:58:18.970922 2026] [security2:error] [pid 29670:tid 29670] [client 138.122.43.166:59260] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.garantaconsulting.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.garantaconsulting.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aih-ai3BsaQH2F75TWZibAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 187 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 154.83.197.130

🇩🇪 151.243.11.35

🇵🇱 95.214.55.226

🇳🇱 85.11.167.46

🇸🇪 74.241.134.117

🇨🇳 58.219.66.188

🇲🇦 41.142.67.30

🇯🇵 20.78.0.33

🇳🇱 2001:67c:e60:c0c:192:42:116:94

🇳🇱 213.177.179.80

🇺🇸 209.222.101.194

🇩🇪 194.88.98.87

🇳🇱 193.25.217.247

🇬🇧 185.216.145.165

🇳🇱 185.205.194.170

🇵🇰 182.183.143.71

🇲🇾 161.142.140.9

🇺🇸 138.197.91.157

🇧🇪 128.90.145.17

🇦🇿 109.237.113.49