JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.199.60.37

138.199.60.37 was found in our database!

This IP was reported 221 times. Confidence of Abuse is 100%: ?

100%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	datacamp.co.uk
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.199.60.37

Whois 138.199.60.37

IP Abuse Reports for 138.199.60.37:

This IP address has been reported a total of 221 times from 143 distinct sources. 138.199.60.37 was first reported on April 24th 2023, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 WellSpring	2026-06-13 13:35:46 (9 hours ago)	xmlrpc exploit on freegrounds.org/wp/xmlrpc.php — WellSpr.ing/NetSentinel civic-AI security layer	Brute-Force Web App Attack
Anonymous	2026-06-11 17:46:09 (2 days ago)	Failed Wordpress Logins	Web App Attack
🇩🇪 Starburst SysOp Team	2026-06-11 08:48:00 (2 days ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-nue6-1)	Hacking Bad Web Bot
🇫🇷 SpaceHost-Server	2026-06-10 22:26:35 (3 days ago)		Brute-Force Web App Attack
🇲🇽 octageeks.com	2026-06-10 04:16:05 (3 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇧🇪 cmbplf	2026-06-09 08:13:10 (4 days ago)	326.378 requests from abuseipdb.com blacklisted IP (1yr1mo3w)	Brute-Force Bad Web Bot
🇺🇸 bigwavedave	2026-06-09 06:40:47 (4 days ago)	Wordpress Attack	Web App Attack
🇺🇸 lostswordfish.com	2026-06-09 06:26:04 (4 days ago)	Wordfence waf block on advocates4change	Web App Attack
🇨🇭 4server	2026-06-09 05:28:17 (4 days ago)	[TueJun0907:28:12.0511322026][security2:error][pid3764025:tid3764288][client138.199.60.37:0]ModSecur ... show more [TueJun0907:28:12.0511322026][security2:error][pid3764025:tid3764288][client138.199.60.37:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"python-requests/\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"203\"][id\"332039\"][rev\"4\"][msg\"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/.\"][severity\"CRITICAL\"][hostname\"mail.avvnicolaurbani.ch\"][uri\"/wp-login.php\"][unique_id\"aiekbFQy4NkgzUzg9Xr2WQAAAM4\"] show less	Hacking Web App Attack
Anonymous	2026-06-09 04:18:50 (4 days ago)	138.199.60.37 - - [09/Jun/2026:06:17:36 +0200] "POST /wp-login.php HTTP/1.1" 503 7321 "-" "Mozilla/5 ... show more 138.199.60.37 - - [09/Jun/2026:06:17:36 +0200] "POST /wp-login.php HTTP/1.1" 503 7321 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 138.199.60.37 - - [09/Jun/2026:06:17:58 +0200] "POST /wp-login.php HTTP/1.1" 503 7119 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 138.199.60.37 - - [09/Jun/2026:06:18:18 +0200] "POST /wp-login.php HTTP/1.1" 503 7119 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 138.199.60.37 - - [09/Jun/2026:06:18:33 +0200] "POST /wp-login.php HTTP/1.1" 503 7120 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 138.199.60.37 - - [09/Jun/2026:06:18:48 +0200] "POST /wp-login.php HTTP/1.1" 503 7119 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0 ... show less	Web App Attack
🇲🇽 octageeks.com	2026-06-09 04:09:50 (4 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
Anonymous	2026-06-09 03:43:54 (4 days ago)	138.199.60.37 - - > allacasadilucia.it [09/Jun/2026:05:43:13 +0200] "POST /wp-login.php HTTP/1.1" 30 ... show more 138.199.60.37 - - > allacasadilucia.it [09/Jun/2026:05:43:13 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" 138.199.60.37 - - > allacasadilucia.it [09/Jun/2026:05:43:22 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" 138.199.60.37 - - > allacasadilucia.it [09/Jun/2026:05:43:32 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" 138.199.60.37 - - > allacasadilucia.it [09/Jun/2026:05:43:45 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" "-" 138.199.60.37 - - > allacasadilucia.it [09/Jun/2026:05:43:53 +0200] "POST /wp-login.php ... show less	Hacking Bad Web Bot Web App Attack
🇩🇪 Marc	2026-06-09 03:41:22 (4 days ago)	138.199.60.37 - - [09/Jun/2026:05:39:58 +0200] "GET /wp-login.php HTTP/1.1" 200 6320 "-" "python-req ... show more 138.199.60.37 - - [09/Jun/2026:05:39:58 +0200] "GET /wp-login.php HTTP/1.1" 200 6320 "-" "python-requests/2.33.1" 138.199.60.37 - - [09/Jun/2026:05:40:58 +0200] "POST /wp-login.php HTTP/1.1" 200 6526 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 138.199.60.37 - - [09/Jun/2026:05:41:05 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Ffachanwaelte-iserlohn.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 8456 "-" "python-requests/2.33.1" 138.199.60.37 - - [09/Jun/2026:05:41:13 +0200] "POST /wp-login.php HTTP/1.1" 200 6531 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 138.199.60.37 - - [09/Jun/2026:05:41:21 +0200] "GET /wp-login.php?redirect_to=https%3A%2F%2Ffachanwaelte-iserlohn.de%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 8458 "-" "python-requests/2.33.1" show less	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-06-09 03:33:02 (4 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
Anonymous	2026-06-09 01:22:10 (4 days ago)	Attac	Brute-Force

Showing 1 to 15 of 221 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 203.170.192.251

🇮🇩 103.154.231.122

🇧🇷 185.100.215.213

🇺🇸 147.185.132.188

🇨🇳 120.246.79.212

🇮🇩 103.176.79.137

🇲🇾 102.211.234.171

🇺🇸 68.40.139.39

🇺🇸 52.240.186.21

🇩🇪 43.228.157.161

🇰🇪 41.60.246.252

🇩🇪 212.30.36.162

🇺🇸 192.241.150.170

🇲🇴 182.93.50.90

🇧🇷 138.185.145.78

🇩🇪 43.228.157.155

🇧🇪 34.76.112.219

🇨🇳 183.195.135.222

🇯🇵 152.32.203.18

🇧🇪 144.86.173.115