JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.140.223.242

37.140.223.242 was found in our database!

This IP was reported 247 times. Confidence of Abuse is 41%: ?

41%

ISP	Turkbil Sunucu Hizmetleri
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	turkbil.net.tr
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.140.223.242

Whois 37.140.223.242

IP Abuse Reports for 37.140.223.242:

This IP address has been reported a total of 247 times from 84 distinct sources. 37.140.223.242 was first reported on May 28th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-26 01:12:12 (1 day ago)	Aggressive web search of vulnerable pages: /wp-admin/maint/wp-conflg.php /wp-admin/zz.php /wp-admin/ ... show more Aggressive web search of vulnerable pages: /wp-admin/maint/wp-conflg.php /wp-admin/zz.php /wp-admin/includes/about.php /wp-content/admin-header ... show less	Web App Attack
Anonymous	2026-06-26 01:06:03 (1 day ago)	37.140.223.242 - - [26/Jun/2026:01:06:02 +0000] "GET /wp-content/plugins/advanced-product-fields-for ... show more 37.140.223.242 - - [26/Jun/2026:01:06:02 +0000] "GET /wp-content/plugins/advanced-product-fields-for-woocommerce/db.php HTTP/1.1" 404 31900 "http://ashbee.buzz/wp-content/plugins/advanced-product-fields-for-woocommerce/db.php" "Go-http-client/1.1" ... show less	Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-21 17:47:46 (6 days ago)	Web vulnerability probing: /wp-head.php	Web App Attack
🇳🇱 Mangelot Hosting	2026-06-03 08:36:15 (3 weeks ago)	(wp_login_try) srv101 WP Login Attempt 37.140.223.242 (US/United States/-): 10 in the last 3600 secs ... show more (wp_login_try) srv101 WP Login Attempt 37.140.223.242 (US/United States/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇭🇺 bcsaba	2026-06-02 12:37:28 (3 weeks ago)	CMS (WordPress or Joomla) login attempt. 37.140.223.242 - - [02/Jun/2026:14:37:26 +0200] "POST /wp-l ... show more CMS (WordPress or Joomla) login attempt. 37.140.223.242 - - [02/Jun/2026:14:37:26 +0200] "POST /wp-login.php HTTP/1.1" 200 4014 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Chrome/129.0.0.0 Safari/537.36" show less	Hacking Brute-Force Web App Attack
🇺🇸 cyfordtechnologies.com	2026-06-01 22:10:25 (3 weeks ago)	High-abuse ASN prefix: 37.140.223. : Reported by Cyford API	Web App Attack
🇩🇪 LRob.fr	2026-06-01 22:00:10 (3 weeks ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇮🇹 VHosting	2026-06-01 16:45:03 (3 weeks ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-05-06 13:14:40 (1 month ago)	37.140.223.242 - - [06/May/2026:15:14:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "WordPress. ... show more 37.140.223.242 - - [06/May/2026:15:14:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "WordPress.com; https://wordpress.com" 37.140.223.242 - - [06/May/2026:15:14:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.4)" 37.140.223.242 - - [06/May/2026:15:14:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "Jetpack by WordPress.com" show less	Hacking Web App Attack
🇫🇷 SpaceHost-Server	2026-05-06 12:57:54 (1 month ago)	37.140.223.242 - - [06/May/2026:14:57:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "WordPress. ... show more 37.140.223.242 - - [06/May/2026:14:57:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "WordPress.com; https://wordpress.com" 37.140.223.242 - - [06/May/2026:14:57:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "Jetpack by WordPress.com (Jetpack 13.0; WordPress 6.3)" 37.140.223.242 - - [06/May/2026:14:57:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4985 "-" "Jetpack by WordPress.com" show less	Hacking Web App Attack
🇺🇸 lostswordfish.com	2026-03-20 18:00:05 (3 months ago)	Wordfence waf block on registrymatters	Web App Attack
🇩🇪 LRob.fr	2026-03-20 03:30:14 (3 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-03-20 00:46:52 (3 months ago)	Failed Wordpress Logins	Web App Attack
Anonymous	2026-03-18 20:46:03 (3 months ago)	Failed Wordpress Logins	Web App Attack
🇩🇪 FeG Deutschland	2026-03-18 19:24:33 (3 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack

Showing 1 to 15 of 247 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇪 196.216.65.186

🇺🇸 162.216.150.107

🇳🇱 91.92.40.11

🇺🇸 66.132.172.45

🇺🇸 44.247.86.244

🇬🇧 35.203.210.34

🇶🇦 34.153.64.29

🇵🇱 23.230.80.11

🇱🇻 196.196.53.137

🇺🇸 172.110.223.135

🇧🇷 170.79.114.78

🇺🇸 164.90.129.12

🇺🇸 157.230.9.33

🇯🇵 156.227.235.77

🇺🇸 135.237.127.14

🇮🇳 122.177.243.15

🇮🇹 85.155.151.201

🇺🇸 64.62.156.194

🇺🇸 44.244.7.90

🇺🇸 44.122.137.163