JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 137.184.163.20

137.184.163.20 was found in our database!

This IP was reported 53 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 137.184.163.20

Whois 137.184.163.20

IP Abuse Reports for 137.184.163.20:

This IP address has been reported a total of 53 times from 45 distinct sources. 137.184.163.20 was first reported on October 21st 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-21 09:39:54 (5 days ago)	tcp/5555 (2 or more attempts)	Port Scan
🇺🇸 Axel	2026-06-21 08:24:21 (5 days ago)	Blocked by UFW on MVI [3000/tcp] \| SPT: 61005 \| TTL: 241 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [3000/tcp] \| SPT: 61005 \| TTL: 241 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sumnone	2026-06-21 06:42:32 (5 days ago)	Port probing on unauthorized port 8089	Port Scan Hacking Exploited Host
🇺🇸 xmission.com	2026-06-21 06:32:10 (5 days ago)	Blocked by UFW (TCP on 80) Source port: 61006 TTL: 241 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 61006 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 137.184.163.20) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇩🇪 Holger	2026-06-13 12:33:25 (1 week ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇩🇪 Holger	2026-06-11 09:26:59 (2 weeks ago)	WordPress WebAttack	Brute-Force Web App Attack
🇫🇷 Lacrimosa99	2026-06-09 22:43:49 (2 weeks ago)	137.184.163.20 - - [10/Jun/2026:00:43:48 +0200] "GET //assets/admin/bower_components/jquery.filer/ph ... show more 137.184.163.20 - - [10/Jun/2026:00:43:48 +0200] "GET //assets/admin/bower_components/jquery.filer/php/readme.txt HTTP/1.1" 404 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 137.184.163.20 - - [10/Jun/2026:00:43:48 +0200] "GET //file-manager/initialize HTTP/1.1" 404 363 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 137.184.163.20 - - [10/Jun/2026:00:43:48 +0200] "GET //vendor/laravel-filemanager/js/script.js HTTP/1.1" 404 4838 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" ... show less	Web Spam
Anonymous	2026-06-09 22:35:08 (2 weeks ago)	SOHODE WEBEXPLOIT 137.184.163.20 (137.184.163.20)	Web App Attack
🇳🇱 Site.eu	2026-06-09 22:08:51 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 Viveronese	2026-06-09 21:24:20 (2 weeks ago)	HTTP vulnerability scanning	Web App Attack
🇩🇪 wsyq	2026-06-09 20:38:44 (2 weeks ago)	Fail2Ban - \[NGINX\]40x-Forcing to access a restricted resource ...	Bad Web Bot Web App Attack
🇫🇷 Little Iguana	2026-06-09 20:38:21 (2 weeks ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇩🇪 curiosity	2026-06-09 20:38:14 (2 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/appsec-vpatch	Web App Attack
🇳🇱 Savvii	2026-06-09 19:53:00 (2 weeks ago)	20 attempts against mh-misbehave-ban on moon	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Nevermind	2026-06-09 17:13:11 (2 weeks ago)	137.184.163.20 - - [09/Jun/2026:19:13:09 +0200] "GET /.git/config HTTP/1.1" 403 4743 "-" "Mozilla/5. ... show more 137.184.163.20 - - [09/Jun/2026:19:13:09 +0200] "GET /.git/config HTTP/1.1" 403 4743 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 137.184.163.20 - - [09/Jun/2026:19:13:09 +0200] "GET /.git/config HTTP/1.1" 403 4743 "http://siniba.de/.git/config" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 137.184.163.20 - - [09/Jun/2026:19:13:10 +0200] "POST //vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 4756 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 137.184.163.20 - - [09/Jun/2026:19:13:10 +0200] "GET //js/kcfinder/upload.php HTTP/1.1" 404 4756 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" ... show less	Web App Attack

Showing 1 to 15 of 53 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 118.194.251.75

🇩🇴 179.53.34.23

🇳🇱 175.110.112.8

🇵🇰 160.187.180.146

🇨🇴 108.174.156.122

🇲🇰 92.53.24.47

🇬🇧 80.76.58.49

🇳🇱 45.148.10.151

🇺🇸 205.210.31.92

🇧🇪 198.235.24.146

🇨🇳 183.253.150.189

🇺🇸 154.16.119.22

🇺🇸 137.184.225.216

🇨🇳 120.48.60.44

🇨🇳 111.77.114.226

🇨🇳 111.44.239.36

🇬🇧 89.37.172.147

🇪🇸 68.221.141.72

🇳🇱 45.148.10.152

🇳🇱 45.148.10.141