JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.120.158.138

37.120.158.138 was found in our database!

This IP was reported 189 times. Confidence of Abuse is 14%: ?

14%

ISP	M247 LTD Paris Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	m247.com
Country	🇫🇷 France
City	Saint-Denis, Ile-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.120.158.138

Whois 37.120.158.138

IP Abuse Reports for 37.120.158.138:

This IP address has been reported a total of 189 times from 128 distinct sources. 37.120.158.138 was first reported on September 18th 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-06-28 13:35:21 (2 days ago)	[Sun Jun 28 15:35:21.256036 2026] [authz_core:error] [pid 2180703:tid 2180724] [remote 37.120.158.13 ... show more [Sun Jun 28 15:35:21.256036 2026] [authz_core:error] [pid 2180703:tid 2180724] [remote 37.120.158.138:55659] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php, referer: http://wordpress.diegoweb.it/ show less	Brute-Force Web App Attack
🇲🇽 octageeks.com	2026-06-28 04:20:50 (2 days ago)	Wordpress malicious attack:[octaxmlrpc]	Web App Attack
🇫🇮 Flock4325	2025-11-24 00:12:55 (7 months ago)	Attempted direct HTTP(s) request to server IP. URI: /	Brute-Force
🇩🇪 Grizzlytools	2025-09-13 05:27:35 (9 months ago)	Kingcopy(AI-IDS)RouterOS: Portscanner detected.	Port Scan
🇩🇪 invalidLuca	2025-09-12 20:04:45 (9 months ago)	[UFW2] Unauthorized connection attempt from 37.120.158.138	Port Scan
🇩🇪 sbajic	2025-09-12 19:55:08 (9 months ago)	...	Brute-Force
🇩🇪 Admins@FBN	2025-09-12 19:51:25 (9 months ago)	FW-PortScan: Traffic Blocked srcport=42652 dstport=1433	Port Scan Hacking SQL Injection
🇩🇪 sthoyer.de	2025-09-12 19:45:27 (9 months ago)	Sep 12 21:45:27 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:b6:ef:8 ... show more Sep 12 21:45:27 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:b6:ef:8f:08:00 SRC=37.120.158.138 DST=173.212.223.67 LEN=44 TOS=0x08 PREC=0x20 TTL=245 ID=7056 PROTO=TCP SPT=42668 DPT=1433 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 iNetWorker	2025-09-12 14:53:05 (9 months ago)	trying to access non-authorized port	Port Scan
🇩🇪 Admins@FBN	2025-09-12 14:43:05 (9 months ago)	FW-PortScan: Traffic Blocked srcport=44995 dstport=8080	Port Scan
🇩🇪 Ad0lar	2025-09-12 14:23:42 (9 months ago)	ports, 8080/24H:1/7D:1	Port Scan
🇩🇪 Admins@FBN	2025-09-12 13:56:36 (9 months ago)	FW-PortScan: Traffic Blocked srcport=45011 dstport=8080	Port Scan
🇩🇪 KPS	2025-09-12 13:45:17 (9 months ago)	PortscanM	Port Scan
🇩🇪 Jochen Pretli	2025-09-12 13:33:59 (9 months ago)	connection to honeypot	Email Spam Port Scan
🇩🇪 Admins@FBN	2025-09-12 13:29:36 (9 months ago)	FW-PortScan: Traffic Blocked srcport=58058 dstport=80	Port Scan

Showing 1 to 15 of 189 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 183.171.49.144

🇨🇴 181.119.203.146

🇮🇹 151.0.160.69

🇺🇸 148.153.121.223

🇮🇪 86.40.119.74

🇳🇱 81.19.216.74

🇷🇺 79.174.56.182

🇸🇪 78.67.161.64

🇱🇹 45.227.254.170

🇳🇱 45.148.10.152

🇸🇬 43.172.194.138

🇺🇸 43.159.140.163

🇨🇳 8.134.124.8

🇫🇷 4.211.84.189

🇺🇸 216.25.89.157

🇪🇨 205.235.2.176

🇲🇽 187.191.2.213

🇧🇷 177.54.191.230

🇧🇷 177.53.6.64

🇨🇳 114.55.106.197