JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.2.37.229

138.2.37.229 was found in our database!

This IP was reported 124 times. Confidence of Abuse is 100%: ?

100%

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇯🇵 Japan
City	Osaka, Osaka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.2.37.229

Whois 138.2.37.229

IP Abuse Reports for 138.2.37.229:

This IP address has been reported a total of 124 times from 71 distinct sources. 138.2.37.229 was first reported on May 15th 2026, and the most recent report was 9 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 agenciahypelab.com.br	2026-06-04 17:00:20 (9 minutes ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇧🇪 taivas.nl	2026-06-04 16:32:08 (37 minutes ago)	Bad_requests	Bad Web Bot
Anonymous	2026-06-04 14:47:48 (2 hours ago)	138.2.37.229 - - > saratollon.it [04/Jun/2026:16:47:38 +0200] "POST /wp-login.php HTTP/1.1" 301 162 ... show more 138.2.37.229 - - > saratollon.it [04/Jun/2026:16:47:38 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "https://saratollon.it/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36" "-" 138.2.37.229 - - > saratollon.it [04/Jun/2026:16:47:41 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "https://saratollon.it/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36" "-" 138.2.37.229 - - > saratollon.it [04/Jun/2026:16:47:43 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "https://saratollon.it/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Safari/605.1.15" "-" 138.2.37.229 - - > saratollon.it [04/Jun/2026:16:47:45 +0200] "POST /wp-login.php HTTP/1.1" 301 162 "https://saratollon.it/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:93.0) Gecko/20100101 Firefox/93.0" "-" 138.2.37. ... show less	Hacking Bad Web Bot Web App Attack
🇺🇸 Jason Howell	2026-06-04 10:14:05 (6 hours ago)	138.2.37.229 - - [04/Jun/2026:05:14:02 -0500] "GET /wp-login.php HTTP/1.1" 200 4793 "-" "Mozilla/5.0 ... show more 138.2.37.229 - - [04/Jun/2026:05:14:02 -0500] "GET /wp-login.php HTTP/1.1" 200 4793 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.0 Safari/605.1.15" 138.2.37.229 - - [04/Jun/2026:05:14:02 -0500] "POST /wp-login.php HTTP/1.1" 200 2551 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/94.0.4606.71 Safari/537.36" 138.2.37.229 - - [04/Jun/2026:05:14:03 -0500] "GET /wp-admin/index.php HTTP/1.1" 302 476 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36" 138.2.37.229 - - [04/Jun/2026:05:14:04 -0500] "GET /wp-login.php?redirect_to=https%3A%2F%2Ftatpl-traffic.com%2Fwp-admin%2Findex.php&reauth=1 HTTP/1.1" 200 6958 "https://tatpl-traffic.com/wp-login.php" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.63 Safari/537.36" 138. ... show less	Web App Attack
🇳🇱 middelkoopcc	2026-06-04 09:55:05 (7 hours ago)	2026-06-04 11:50:33 WordPress login error from 138.2.37.229: invalid_username && 2026-06-04 11:50:43 ... show more 2026-06-04 11:50:33 WordPress login error from 138.2.37.229: invalid_username && 2026-06-04 11:50:43 WordPress login error from 138.2.37.229: invalid_username && 2026-06-04 11:50:54 WordPress login error from 138.2.37.229: invalid_username && 23 more within 20 minutes show less	Brute-Force
🇪🇸 masterguru	2026-06-04 09:19:47 (7 hours ago)	(wplogin) Failed WordPress login from 138.2.37.229 (JP/Japan/-): 5 in the last 3600 secs (0-122)	Hacking
🇺🇸 dtorrer	2026-06-04 08:35:46 (8 hours ago)	Brute-force general attack.	Brute-Force
🇩🇪 FeG Deutschland	2026-06-04 06:35:33 (10 hours ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 25	Exploited Host Web App Attack
🇩🇪 Viveronese	2026-06-04 03:44:16 (13 hours ago)	Wordpress vulnerability scanning	Web App Attack
Anonymous	2026-06-04 01:46:12 (15 hours ago)	Failed Wordpress Logins	Web App Attack
🇳🇱 MyGlobalFlowers	2026-06-03 05:34:34 (1 day ago)	Multiple WAF Violations	Web App Attack
🇩🇪 yvoictra	2026-06-03 04:38:50 (1 day ago)	138.2.37.229 - - [03/Jun/2026:06:38:45 +0200] "POST /wp-login.php HTTP/1.1" 301 178 "https://flickr. ... show more 138.2.37.229 - - [03/Jun/2026:06:38:45 +0200] "POST /wp-login.php HTTP/1.1" 301 178 "https://flickr.yvoictra.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.1 Safari/605.1.15" 138.2.37.229 - - [03/Jun/2026:06:38:47 +0200] "POST /wp-login.php HTTP/1.1" 301 178 "https://flickr.yvoictra.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Safari/605.1.15" 138.2.37.229 - - [03/Jun/2026:06:38:48 +0200] "POST /wp-login.php HTTP/1.1" 301 178 "https://flickr.yvoictra.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.212 Safari/537.36" 138.2.37.229 - - [03/Jun/2026:06:38:49 +0200] "POST /wp-login.php HTTP/1.1" 301 178 "https://flickr.yvoictra.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0.3 Safari/605.1.15" ... show less	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-06-03 01:44:30 (1 day ago)	Unauthorized access to webpage admin	Web App Attack
Anonymous	2026-06-02 07:03:45 (2 days ago)	(wordpress) Failed wordpress login from 138.2.37.229 (JP/Japan/-)	Brute-Force
🇺🇸 Equity Steward	2026-06-02 05:07:41 (2 days ago)	Systematic automated scraping and endpoint enumeration against equitysteward.org. 1 offences recorde ... show more Systematic automated scraping and endpoint enumeration against equitysteward.org. 1 offences recorded. Trigger: Honeypot path accessed: /wp-login.php — deliberately ignored robots.txt Disallow directive.. Canary ref: d7c7169b-3f8. show less	Web App Attack Bad Web Bot

Showing 1 to 15 of 124 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 152.32.150.26

🇪🇸 141.109.168.149

🇷🇺 81.23.173.32

🇨🇳 60.13.7.139

🇧🇷 201.77.124.248

🇵🇱 162.158.102.31

🇹🇷 131.222.247.53

🇨🇳 101.96.234.229

🇭🇰 101.36.124.127

🇳🇱 81.19.216.72

🇸🇪 65.99.181.123

🇺🇸 52.190.140.97

🇺🇸 23.22.99.102

🇺🇸 2607:f8b0:4023:1006::12c

🇸🇾 193.43.145.226

🇧🇷 177.86.21.41

🇳🇱 159.223.238.255

🇺🇦 95.158.29.196

🇰🇷 59.16.212.232

🇹🇿 41.59.229.33