JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.2.100.192

138.2.100.192 was found in our database!

This IP was reported 164 times. Confidence of Abuse is 100%: ?

100%

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇸🇬 Singapore
City	Kampong Loyang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.2.100.192

Whois 138.2.100.192

IP Abuse Reports for 138.2.100.192:

This IP address has been reported a total of 164 times from 106 distinct sources. 138.2.100.192 was first reported on April 23rd 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 francoisunix	2026-06-06 11:23:56 (1 hour ago)	138.2.100.192 - - [06/Jun/2026:11:23:51 +0000] "GET /wp-login.php HTTP/1.0" 401 14903 "-" "Mozilla/5 ... show more 138.2.100.192 - - [06/Jun/2026:11:23:51 +0000] "GET /wp-login.php HTTP/1.0" 401 14903 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [06/Jun/2026:11:23:54 +0000] "POST /xmlrpc.php HTTP/1.0" 401 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [06/Jun/2026:11:23:54 +0000] "POST /xmlrpc.php HTTP/1.0" 401 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [06/Jun/2026:11:23:54 +0000] "POST /xmlrpc.php HTTP/1.0" 401 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [06/Jun/2026:11:23:55 +0000] "POST /xmlrpc.php HTTP/1.0" 401 413 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/8 ... show less	Web App Attack
🇮🇩 hermawan	2026-06-06 07:47:58 (5 hours ago)	1780732068.507480 138.2.100.192 103.166.156.58 62720_2-1-3-1-1-4_8960_8 2026-06-06 14:47:48 WIB ...	Email Spam Hacking
🇮🇩 zam	2026-06-06 07:24:48 (5 hours ago)	138.2.100.192 - - [06/Jun/2026:07:24:44 +0000] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 9335 ... show more 138.2.100.192 - - [06/Jun/2026:07:24:44 +0000] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 9335 138.2.100.192 - - [06/Jun/2026:07:24:44 +0000] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 7449 138.2.100.192 - - [06/Jun/2026:07:24:45 +0000] "GET //xmlrpc.php?rsd HTTP/1.1" 404 9335 138.2.100.192 - - [06/Jun/2026:07:24:45 +0000] "GET //xmlrpc.php?rsd HTTP/1.1" 404 7449 138.2.100.192 - - [06/Jun/2026:07:24:44 +0000] "GET //wp-includes/wlwmanifest.xml HTTP/1.1" 404 9110 {"log":"138.2.100. show less	Web App Attack
🇩🇪 Nerdscave Hosting	2026-06-06 05:00:48 (8 hours ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-06 04:46:12 (8 hours ago)	Failed Wordpress Logins	Web App Attack
🇩🇪 conseilgouz	2026-06-06 01:36:39 (11 hours ago)	sle-7 : Trying access unauthorized files/dir=>//wp-includes/wlwmanifest.xml	Hacking
🇫🇷 votrewebfacile	2026-06-06 00:00:31 (13 hours ago)	xmlrpc abuse	Brute-Force
🇫🇷 applemooz	2026-06-05 21:06:01 (16 hours ago)	<abuseipdb_matches> ...	Brute-Force Web App Attack
🇫🇷 applemooz	2026-06-05 20:21:44 (16 hours ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇩🇪 itsolon	2026-06-05 19:02:25 (18 hours ago)	138.2.100.192 - - [05/Jun/2026:21:02:18 +0200] "POST //wp-login.php HTTP/1.1" 200 53425 "https://www ... show more 138.2.100.192 - - [05/Jun/2026:21:02:18 +0200] "POST //wp-login.php HTTP/1.1" 200 53425 "https://www.autogarage-erlangen.de//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [05/Jun/2026:21:02:20 +0200] "POST //wp-login.php HTTP/1.1" 200 53425 "https://www.autogarage-erlangen.de//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [05/Jun/2026:21:02:21 +0200] "POST //wp-login.php HTTP/1.1" 200 53425 "https://www.autogarage-erlangen.de//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4240.193 Safari/537.36" 138.2.100.192 - - [05/Jun/2026:21:02:23 +0200] "POST //wp-login.php HTTP/1.1" 200 53425 "https://www.autogarage-erlangen.de//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/8 ... show less	Brute-Force Web App Attack
🇫🇷 Sklurk	2026-06-05 16:05:27 (21 hours ago)	Web App Attack	Web App Attack
🇺🇸 ipblock.com	2026-06-05 12:46:00 (1 day ago)	IPBlock protected site ID [669-fx]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇩🇪 FeG Deutschland	2026-06-05 11:14:23 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12457	Exploited Host Web App Attack
🇬🇧 Yosi	2026-06-05 10:24:31 (1 day ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇧🇷 dominioz	2026-06-05 09:08:23 (1 day ago)	2026-06-05 09:07:29 GET /wp-includes/wlwmanifest.xml - - 138.2.100.192 HTTP/1.1 Mozilla/5.0+(Windows ... show more 2026-06-05 09:07:29 GET /wp-includes/wlwmanifest.xml - - 138.2.100.192 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/88.0.4240.193+Safari/537.36 - 404 1440 2026-06-05 09:07:30 GET /xmlrpc.php rsd - 138.2.100.192 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/88.0.4240.193+Safari/537.36 - 404 1440 2026-06-05 09:07:30 GET /wp - - 138.2.100.192 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/88.0.4240.193+Safari/537.36 - 404 1440 2026-06-05 09:07:30 GET /blog/wp-includes/wlwmanifest.xml - - 138.2.100.192 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/88.0.4240.193+Safari/537.36 - 404 1440 ... show less	Web App Attack

Showing 1 to 15 of 164 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.118.69

🇺🇸 99.60.18.106

🇳🇱 172.211.56.214

🇺🇸 104.168.4.239

🇺🇸 103.144.28.85

🇺🇸 64.62.197.23

🇮🇳 61.95.199.54

🇳🇱 45.148.10.152

🇮🇳 43.227.185.238

🇸🇬 8.222.128.242

🇬🇧 2a06:4880:8000::9e

🇭🇰 199.45.154.184

🇺🇸 172.236.111.197

🇮🇩 103.101.216.26

🇵🇹 78.137.206.183

🇳🇱 45.148.10.147

🇺🇸 45.58.52.25

🇩🇪 43.165.7.135

🇰🇷 220.80.92.17

🇧🇷 189.89.93.35