JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.140.223.74

37.140.223.74 was found in our database!

This IP was reported 236 times. Confidence of Abuse is 44%: ?

44%

ISP	Turkbil Sunucu Hizmetleri
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	turkbil.net.tr
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.140.223.74

Whois 37.140.223.74

IP Abuse Reports for 37.140.223.74:

This IP address has been reported a total of 236 times from 104 distinct sources. 37.140.223.74 was first reported on June 14th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 bescared	2026-06-20 13:13:00 (1 day ago)	WAF (2) - Malicious activity detected: URL probing.	Bad Web Bot Web App Attack Hacking
🇺🇸 nyt	2026-06-17 15:13:20 (4 days ago)	WP Author Enumeration, WP User Enumeration	Web App Attack
🇷🇴 INTEQ	2026-06-17 05:52:45 (4 days ago)	Web attack from 37.140.223.74	Web App Attack
🇬🇷 setupgr	2026-06-16 19:10:17 (5 days ago)	(mod_security) mod_security (id:900001) triggered by 37.140.223.74: 1 in the last 86400 secs; Ports: ... show more (mod_security) mod_security (id:900001) triggered by 37.140.223.74: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 16 22:10:16.416828 2026] [security2:error] [pid 2210176:tid 2210253] [client 37.140.223.74:60443] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: doityourself.gr"] [severity "CRITICAL"] [tag "security"] [hostname "doityourself.gr"] [uri "/wp-login.php"] [unique_id "ajGfmI0pb6dkgQfaMdC3fgAAAQQ"] show less	Port Scan
🇧🇷 opastorello	2026-06-15 00:07:47 (1 week ago)	T-Pot honeypot: 359 hits in 15min on port(s) 9010 (P0f/Suricata/Honeytrap). Port scan / unsolicited ... show more T-Pot honeypot: 359 hits in 15min on port(s) 9010 (P0f/Suricata/Honeytrap). Port scan / unsolicited connection. Automated report. show less	Port Scan
🇧🇷 opastorello	2026-06-13 19:36:45 (1 week ago)	T-Pot honeypot: 175 hits in 15min on port(s) 9010 (P0f/Suricata/Honeytrap). Port scan / unsolicited ... show more T-Pot honeypot: 175 hits in 15min on port(s) 9010 (P0f/Suricata/Honeytrap). Port scan / unsolicited connection. Automated report. show less	Port Scan
🇫🇷 Octopuce	2026-05-23 23:22:52 (4 weeks ago)	Aggressive web search of vulnerable pages: /wp-login.php /nf_tracking.php /wp-admin/css/about.php7 / ... show more Aggressive web search of vulnerable pages: /wp-login.php /nf_tracking.php /wp-admin/css/about.php7 /filefuns.php /.well-known/pki-validation/cl ... show less	Web App Attack
🇺🇸 integrantservices.com	2026-05-22 09:26:32 (4 weeks ago)	(wordpress) Failed wordpress login from 37.140.223.74 (US/United States/-)	Brute-Force
🇺🇸 factor1	2026-05-07 11:20:10 (1 month ago)	Fail2ban at saturn Reports Abuse.	Brute-Force Web App Attack
Anonymous	2026-05-01 21:06:27 (1 month ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Webshell probing, Backup file probing show less	Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-05-01 07:32:23 (1 month ago)	37.140.223.74 - - [01/May/2026:10:32:22 +0300] "GET /amax.php HTTP/1.1" 404 717 "-" "Mozilla/5.0 (Wi ... show more 37.140.223.74 - - [01/May/2026:10:32:22 +0300] "GET /amax.php HTTP/1.1" 404 717 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/84.0.4147.105 Safari/537.36 OPR/70.0.3728.95" 37.140.223.74 - - [01/May/2026:10:32:23 +0300] "GET /wp-content/hello.php HTTP/1.1" 404 717 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" ... show less	Web App Attack
Anonymous	2026-04-30 20:07:35 (1 month ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Webshell probing, Backup file probing show less	Bad Web Bot Web App Attack
🇯🇵 demonsword	2026-04-30 13:33:41 (1 month ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: www.expressapisv2.net:443 show less	Open Proxy Port Scan
Anonymous	2026-04-29 17:42:22 (1 month ago)	37.140.223.74 - - [29/Apr/2026:19:41:36 +0200] "POST /xmlrpc.php HTTP/1.0" 200 593 "-" "Mozilla/5.0 ... show more 37.140.223.74 - - [29/Apr/2026:19:41:36 +0200] "POST /xmlrpc.php HTTP/1.0" 200 593 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/82.0.0.0 Safari/537.36" 37.140.223.74 - - [29/Apr/2026:19:41:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/82.0.0.0 Safari/537.36" 37.140.223.74 - - [29/Apr/2026:19:42:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/87.0.0.0 Safari/537.36" 37.140.223.74 - - [29/Apr/2026:19:41:58 +0200] "POST /xmlrpc.php HTTP/1.0" 200 593 "-" "Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Edge/87.0.0.0 Safari/537.36" 37.140.223.74 - - [29/Apr/2026:19:42:20 +0200] "POST /xmlrpc.php HTTP/1.0" 200 593 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇳🇿 Antinson	2026-04-24 01:57:43 (1 month ago)	Scraping with a high error ratio and request rate	Bad Web Bot

Showing 1 to 15 of 236 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.79

🇧🇷 187.61.110.105

🇳🇱 195.178.110.42

🇧🇷 192.141.106.17

🇳🇱 176.65.149.180

🇳🇱 176.65.139.31

🇮🇳 156.67.110.237

🇺🇸 154.30.108.70

🇫🇷 149.50.220.159

🇵🇰 110.36.64.245

🇲🇲 103.215.194.17

🇫🇮 94.183.234.128

🇷🇺 78.107.31.154

🇩🇪 69.5.169.123

🇩🇪 69.5.169.96

🇩🇪 69.5.169.83

🇩🇪 69.5.169.48

🇰🇷 61.72.55.130

🇨🇳 60.13.7.229

🇸🇬 47.128.21.31