JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.140.192.36

37.140.192.36 was found in our database!

This IP was reported 51 times. Confidence of Abuse is 0%: ?

ISP	Reg.Ru Hosting
Usage Type	Content Delivery Network
ASN	AS197695
Hostname(s)	server63.hosting.reg.ru
Domain Name	reg.ru
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.140.192.36

Whois 37.140.192.36

IP Abuse Reports for 37.140.192.36:

This IP address has been reported a total of 51 times from 35 distinct sources. 37.140.192.36 was first reported on March 10th 2022, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-04-06 04:52:33 (2 months ago)	Blocked by UFW (TCP on 37996) Source port: 80 TTL: 42 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 37996) Source port: 80 TTL: 42 Packet length: 40 TOS: 0x08 This report (for 37.140.192.36) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇭 teamsecure	2023-11-29 14:26:33 (2 years ago)	Banned for trying to access wp-login	Web App Attack
🇺🇸 TPI-Abuse	2023-11-29 14:26:19 (2 years ago)	(mod_security) mod_security (id:225170) triggered by 37.140.192.36 (server63.hosting.reg.ru): 1 in t ... show more (mod_security) mod_security (id:225170) triggered by 37.140.192.36 (server63.hosting.reg.ru): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 29 09:26:15.627124 2023] [security2:error] [pid 15552] [client 37.140.192.36:41946] [client 37.140.192.36] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lspfest.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lspfest.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZWdKB-vX0AsLx7-Zv7PCgQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇷 gbetsis	2023-10-11 21:27:56 (2 years ago)	TCP Port Scanning	Port Scan Exploited Host
🇦🇺 MAGIC	2023-06-09 07:00:42 (3 years ago)	Distributed DDOS attempts for multiple sites	DDoS Attack Bad Web Bot
🇧🇬 pa4080	2023-06-08 23:01:38 (3 years ago)	Detected by ModSecurity. Request URI: /bg/wp-login.php	Web App Attack
🇩🇪 Mr.Kruger	2023-06-07 16:59:20 (3 years ago)	Brute Force -> Login attempts as Admin (blocked)	Brute-Force
🇩🇪 bsoft.de	2023-05-26 09:32:46 (3 years ago)	37.140.192.36 - - [26/May/2023:05:02:15 +0200] "GET /wp-login.php HTTP/1.1" 404 74535 "http://www.dc ... show more 37.140.192.36 - - [26/May/2023:05:02:15 +0200] "GET /wp-login.php HTTP/1.1" 404 74535 "http://www.dcctrade.eu/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" 37.140.192.36 - - [26/May/2023:05:05:24 +0200] "GET /wp-login.php HTTP/1.1" 404 74533 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" 37.140.192.36 - - [26/May/2023:11:32:43 +0200] "GET /de/wp-login.php HTTP/1.1" 404 148158 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" show less	Web App Attack
Anonymous	2023-05-26 04:35:33 (3 years ago)	Crude brute	Brute-Force
🇩🇪 bsoft.de	2023-05-26 03:05:26 (3 years ago)	37.140.192.36 - - [26/May/2023:05:02:14 +0200] "GET /wp-login.php HTTP/1.1" 301 244 "" "Mozilla/5.0 ... show more 37.140.192.36 - - [26/May/2023:05:02:14 +0200] "GET /wp-login.php HTTP/1.1" 301 244 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" 37.140.192.36 - - [26/May/2023:05:02:15 +0200] "GET /wp-login.php HTTP/1.1" 404 74535 "http://www.dcctrade.eu/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" 37.140.192.36 - - [26/May/2023:05:05:24 +0200] "GET /wp-login.php HTTP/1.1" 404 74533 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" show less	Web App Attack
🇦🇺 MAGIC	2023-05-25 16:15:27 (3 years ago)	Distributed DDOS attempts for multiple sites	DDoS Attack Bad Web Bot
🇩🇪 Tha_14	2023-05-22 21:15:08 (3 years ago)	Attempt to log in with non-existing username: constra	Bad Web Bot
🇩🇪 Dadelinux	2023-05-21 00:28:09 (3 years ago)	37.140.192.36 - - [21/May/2023:02:28:05 +0200] "GET /wp-login.php HTTP/1.1" 302 623 "" "Mozilla/5.0 ... show more 37.140.192.36 - - [21/May/2023:02:28:05 +0200] "GET /wp-login.php HTTP/1.1" 302 623 "" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" 37.140.192.36 - - [21/May/2023:02:28:06 +0200] "GET /wp-login.php HTTP/2.0" 302 0 "http://lorenzogramaccia.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" 37.140.192.36 - - [21/May/2023:02:28:07 +0200] "GET /wp-login.php HTTP/2.0" 302 0 "https://lorenzogramaccia.com/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/113.0" show less	SQL Injection Web App Attack
🇩🇪 Jaime	2023-05-20 03:54:44 (3 years ago)	37.140.192.36 - This day 2 times Access forbidden ... /wp-login.php	Brute-Force
🇦🇺 MAGIC	2023-05-20 00:01:16 (3 years ago)	Distributed DDOS attempts for multiple sites	DDoS Attack Bad Web Bot

Showing 1 to 15 of 51 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 193.36.85.91

🇺🇸 174.210.71.64

🇮🇳 139.59.83.32

🇯🇵 133.125.62.131

🇹🇷 89.252.131.17

🇵🇱 87.251.64.176

🇺🇸 72.214.49.194

🇨🇳 14.103.123.166

🇪🇸 5.182.83.231

🇩🇪 213.209.159.242

🇳🇱 204.76.203.15

🇮🇳 202.94.163.137

🇬🇧 198.244.226.26

🇬🇧 193.163.125.159

🇵🇰 180.149.210.43

🇦🇺 170.64.167.72

🇰🇷 121.164.135.251

🇲🇾 121.123.141.251

🇭🇰 113.28.194.47

🇧🇪 66.249.93.100