JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 122.8.47.37

122.8.47.37 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 24%: ?

24%

ISP	Beijing CNISP Technology Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	cnisp.org.cn
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 122.8.47.37

Whois 122.8.47.37

IP Abuse Reports for 122.8.47.37:

This IP address has been reported a total of 11 times from 7 distinct sources. 122.8.47.37 was first reported on April 17th 2023, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nationaleventpros.com	2026-06-14 18:25:29 (23 hours ago)	WordPress login attempt	Brute-Force
🇺🇸 TPI-Abuse	2026-06-12 16:23:43 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:23:40.203990 2026] [security2:error] [pid 16338:tid 16338] [client 122.8.47.37:13631] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|corstratinc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "corstratinc.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiwyjI5rOWNNEPcNaeWdywAAAAk"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 07:16:12 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 03:15:50.981591 2026] [security2:error] [pid 32277:tid 32277] [client 122.8.47.37:31985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "walkerscayproductions.theavgroup.com"] [uri "/wp-config.php.swp"] [unique_id "aie9pgHv0fgK98d8aW-A9wAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-26 13:33:53 (2 weeks ago)	(mod_security) mod_security (id:225170) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 09:33:48.758868 2026] [security2:error] [pid 15370:tid 15370] [client 122.8.47.37:63281] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|faeriefeelers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "faeriefeelers.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahWhPIRxeHN5kIXVjPKIQwAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2026-05-19 13:37:52 (3 weeks ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇫🇷 tilellit.pro	2026-05-07 17:54:45 (1 month ago)	Fail2Ban banned 122.8.47.37 for security violations in jail wp-armour. Log: 2026/05/07 17:54:44 [err ... show more Fail2Ban banned 122.8.47.37 for security violations in jail wp-armour. Log: 2026/05/07 17:54:44 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 122.8.47.37 \| Target: wplogin" , client: 122.8.47.37, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-05-06 19:22:21 (1 month ago)	Fail2Ban banned 122.8.47.37 for security violations in jail wp-armour. Log: 2026/05/06 19:22:21 [err ... show more Fail2Ban banned 122.8.47.37 for security violations in jail wp-armour. Log: 2026/05/06 19:22:21 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 122.8.47.37 \| Target: wplogin" , client: 122.8.47.37, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇮 stinpriza	2026-01-22 18:04:09 (4 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 10:24:50 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 122.8.47.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 05:24:43.926527 2026] [security2:error] [pid 25359:tid 25359] [client 122.8.47.37:26239] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fusionrep.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fusionrep.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aXH66x5Q93UpHUZ6DqR9NwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-29 11:31:32 (5 months ago)	wordpress-trap	Web App Attack
🇩🇪 Fusl	2023-04-17 11:20:50 (3 years ago)	received unsolicited smtp data stream: Date: Mon, 17 Apr 2023 07:08:03 -0400 From: postmaster@mnnkir ... show more received unsolicited smtp data stream: Date: Mon, 17 Apr 2023 07:08:03 -0400 From: [email protected] Subject: Delivery report To: [email protected] MIME-Version: 1.0 Content-Type: multipart/report; report-type=delivery-status; boundary="[email protected]" [email protected] Content-Type: text/plain Hello, this is the mail server on mnnkiroj.com. I am sending you this message to inform you on the delivery status of a message you previously sent. Immediately below you will find a list of the affected recipients; also attached is a Delivery Status Notification (DSN) report in standard format, as well as the headers of the original message. <[email protected]> delivery failed; will not continue trying [email protected] Content-Type: message/delivery-status Original-Envelope-Id: 383;639855;0000007010;pawan1 Reporting-MTA: dns;mnnkiroj.com X-PowerMTA-VirtualMTA: nvmta_0776 Received-From-MTA: dns;localhost (127.0.0.1) Arrival-Date: Mon, 17 Apr 2023 07:0 show less	Email Spam

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 136.116.158.217

🇺🇸 135.119.27.130

🇺🇸 107.123.36.1

🇩🇪 69.5.169.229

🇸🇬 45.82.78.106

🇺🇸 45.79.191.178

🇺🇸 44.192.6.116

🇺🇸 40.124.186.155

🇨🇳 1.30.217.250

🇬🇧 2a06:4880::23

🇵🇰 175.107.0.66

🇸🇪 171.25.158.70

🇮🇶 169.224.64.115

🇷🇺 158.160.209.126

🇳🇱 91.92.40.37

🇨🇦 57.134.215.133

🇮🇩 43.157.210.132

🇺🇸 34.10.19.24

🇵🇰 203.135.42.52

🇧🇷 186.195.16.41