JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.19.197.201

37.19.197.201 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 8%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-37-19-197-201.datapacket.com
Domain Name	datacamp.co.uk
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.19.197.201

Whois 37.19.197.201

IP Abuse Reports for 37.19.197.201:

This IP address has been reported a total of 23 times from 15 distinct sources. 37.19.197.201 was first reported on October 24th 2021, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-05-29 07:33:54 (3 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mw	2026-05-03 00:00:52 (1 month ago)	GET /index.cfm/manual/t330286_mu/?euyif=zdnsg HTTP/1.1	Web App Attack
🇬🇧 consul.to	2026-05-02 18:33:36 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
Anonymous	2026-04-03 03:55:01 (2 months ago)	...	Brute-Force
Anonymous	2026-04-01 16:31:48 (2 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇺🇸 xmission.com	2026-02-19 14:27:48 (4 months ago)	Blocked by UFW (TCP on 55196) Source port: 39891 TTL: 51 Packet length: 60 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 55196) Source port: 39891 TTL: 51 Packet length: 60 TOS: 0x08 This report (for 37.19.197.201) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇭 backslash	2026-01-19 12:10:06 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-06 22:25:23 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com ... show more (mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 06 17:25:16.578398 2025] [security2:error] [pid 3483688:tid 3483688] [client 37.19.197.201:39066] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sternscape.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sternscape.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQ0gTLam0Tq0flNV0RSwCAAAABg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-06 00:30:56 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com ... show more (mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 19:30:49.905125 2025] [security2:error] [pid 14810:tid 14810] [client 37.19.197.201:55092] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|maycockfamily.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "maycockfamily.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQvsOWf3UTdjMZYyJeJgHgAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-05 20:28:08 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com ... show more (mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 15:28:04.897053 2025] [security2:error] [pid 7243:tid 7243] [client 37.19.197.201:40448] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|toepfer.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "toepfer.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aQuzVOAU9063xQPHyFKp9AAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-05 20:03:30 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com ... show more (mod_security) mod_security (id:225170) triggered by 37.19.197.201 (unn-37-19-197-201.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 05 15:03:22.387880 2025] [security2:error] [pid 5058:tid 5058] [client 37.19.197.201:54816] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|chapa.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chapa.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aQutihevvNmhTS6mG0uVGQAAABA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 unhfree.net	2025-09-08 22:24:52 (9 months ago)	Sep 8 20:51:24 canopus postfix/smtpd[1297068]: NOQUEUE: reject: RCPT from unknown[37.19.197.201]: 5 ... show more Sep 8 20:51:24 canopus postfix/smtpd[1297068]: NOQUEUE: reject: RCPT from unknown[37.19.197.201]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.12.18.148]> Sep 8 21:53:36 canopus postfix/smtpd[1299795]: NOQUEUE: reject: RCPT from unknown[37.19.197.201]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.12.18.148]> Sep 8 22:04:28 canopus postfix/smtpd[1300301]: NOQUEUE: reject: RCPT from unknown[37.19.197.201]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.12.18.148]> Sep 9 00:24:10 canopus postfix/smtpd[1306592]: NOQUEUE: reject: RCPT from unknown[37.19.197.201]: 554 5.7.1 <[email protected]>: Sender address rejected: Access denied; from=<[email protected]> to=< ... show less	Brute-Force Exploited Host
🇮🇹 VHosting	2025-09-08 20:11:04 (9 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇩🇪 marzzzello	2025-07-24 02:11:23 (10 months ago)	Ports: 17x 46532	Port Scan
🇩🇪 marzzzello	2025-07-24 01:59:47 (10 months ago)	Ports: 8x 46532	Port Scan

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.235

🇺🇸 173.44.180.42

🇺🇸 2604:a880:400:d1:0:4:9e97:e001

🇺🇸 2604:a880:400:d1:0:4:9e8d:1001

🇷🇺 178.177.40.170

🇩🇪 167.94.146.52

🇷🇺 147.45.48.17

🇰🇪 102.207.168.62

🇮🇹 93.42.33.238

🇮🇳 45.118.49.18

🇦🇺 211.27.6.90

🇭🇰 199.45.154.176

🇯🇵 152.32.204.21

🇬🇪 146.255.228.189

🇰🇪 102.210.148.41

🇩🇪 94.16.17.139

🇺🇸 34.16.225.84

🇳🇱 2a06:a880:5:67e0::1

🇷🇺 178.177.55.11

🇺🇸 40.124.175.233