JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.252.198.168

138.252.198.168 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 40%: ?

40%

ISP	Softimist Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS153610
Domain Name	softimist.com
Country	🇧🇩 Bangladesh
City	Gazipur, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.252.198.168

Whois 138.252.198.168

IP Abuse Reports for 138.252.198.168:

This IP address has been reported a total of 26 times from 7 distinct sources. 138.252.198.168 was first reported on May 20th 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-11 21:41:08 (3 hours ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 17:41:00.833906 2026] [security2:error] [pid 24370:tid 24394] [client 138.252.198.168:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.mindgardens.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mindgardens.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aisrbNBIXDY7ckd85xRWnAAAAFU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 20:17:35 (4 hours ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 16:17:30.384918 2026] [security2:error] [pid 12184:tid 12184] [client 138.252.198.168:52736] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.97films.media\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.97films.media"] [uri "/wp-json/wp/v2/users"] [unique_id "aisX2papCIT3a3orCn5SXgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 18:40:36 (6 hours ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 14:40:31.541442 2026] [security2:error] [pid 32406:tid 32529] [client 138.252.198.168:55100] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.asetiadi.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.asetiadi.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aisBH_kLT_XxnQ5kArdpUgAAAQ0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 13:46:38 (11 hours ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 09:46:35.094793 2026] [security2:error] [pid 27142:tid 27145] [client 138.252.198.168:57414] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.datuinc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.datuinc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiq8O-1o9xD5k-pUbbLIfgAAAQA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 zam	2026-06-11 08:14:09 (16 hours ago)	138.252.198.168 - - [11/Jun/2026:08:14:07 +0000] "POST /xmlrpc.php HTTP/1.1" 403 239	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 04:57:23 (20 hours ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 00:57:15.970779 2026] [security2:error] [pid 27129:tid 27129] [client 138.252.198.168:38542] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.christaylorjazzpianist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.christaylorjazzpianist.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aipAK6qVfMU-WhjrYizuSgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 18:23:57 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 14:23:51.864378 2026] [security2:error] [pid 27822:tid 27822] [client 138.252.198.168:53310] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.batesstrategygroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.batesstrategygroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aimrt9B9mHTwCOeSGBq-CwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 12:39:02 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 08:38:55.736891 2026] [security2:error] [pid 8670:tid 8670] [client 138.252.198.168:36234] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.consolidatedoperationsgroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.consolidatedoperationsgroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aila38gahPzBGzkae0fLeQAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 23:20:19 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 19:20:13.327422 2026] [security2:error] [pid 15336:tid 15336] [client 138.252.198.168:37448] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|twogocamping.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "twogocamping.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiifrSxDH1CIDrGO1cgOxwAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-09 17:52:05 (2 days ago)	Bot / scanning and/or hacking attempts: GET / HTTP/1.1, POST /xmlrpc.php HTTP/1.1, POST /wp-login.ph ... show more Bot / scanning and/or hacking attempts: GET / HTTP/1.1, POST /xmlrpc.php HTTP/1.1, POST /wp-login.php HTTP/1.1, GET /?author=2 HTTP/1.1, GET /?author=1 HTTP/1.1, GET /wp-json/wp/v2/users HTTP/1.1, GET /?author=3 HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 15:27:34 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 11:27:29.084877 2026] [security2:error] [pid 3441:tid 3441] [client 138.252.198.168:34000] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.starvationacres.us\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.starvationacres.us"] [uri "/wp-json/wp/v2/users"] [unique_id "ahMY4Vt_Ur5W318sjbH-fgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Apache	2026-05-24 08:18:59 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (BD/Bangladesh/-): 5 in the las ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (BD/Bangladesh/-): 5 in the last 300 secs (CF_ENABLE) show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-24 08:07:52 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 04:07:46.135400 2026] [security2:error] [pid 20579:tid 20579] [client 138.252.198.168:41104] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|warpedweed.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "warpedweed.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahKx0os2Z5HUxHEws_l9RQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-05-24 06:28:56 (2 weeks ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 TPI-Abuse	2026-05-24 05:52:23 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:225170) triggered by 138.252.198.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 01:52:17.028272 2026] [security2:error] [pid 28942:tid 28942] [client 138.252.198.168:42468] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.apexhumanoidrobots.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.apexhumanoidrobots.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahKSETtFhMTtoPeq1KqVBAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.17.224.139

🇺🇸 185.199.93.189

🇺🇸 185.199.93.188

🇸🇬 107.150.112.233

🇻🇳 103.75.180.250

🇳🇱 78.142.18.172

🇺🇸 66.132.195.26

🇺🇸 209.222.101.194

🇺🇸 184.105.247.244

🇺🇾 167.63.146.109

🇺🇸 162.216.150.249

🇫🇮 147.185.133.102

🇨🇳 121.29.84.34

🇵🇭 120.28.222.39

🇨🇳 113.100.177.83

🇧🇬 91.148.190.150

🇧🇬 78.128.112.6

🇧🇷 45.164.251.67

🇬🇧 35.203.211.237

🇨🇳 1.83.125.231