JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.19.197.248

37.19.197.248 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 0%: ?

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-37-19-197-248.datapacket.com
Domain Name	datacamp.co.uk
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.19.197.248

Whois 37.19.197.248

IP Abuse Reports for 37.19.197.248:

This IP address has been reported a total of 39 times from 17 distinct sources. 37.19.197.248 was first reported on July 12th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-05-22 18:49:52 (1 month ago)	Fail2Ban banned 37.19.197.248 for security violations in jail wp-armour. Log: 2026/05/22 18:49:52 [e ... show more Fail2Ban banned 37.19.197.248 for security violations in jail wp-armour. Log: 2026/05/22 18:49:52 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 37.19.197.248 \| Target: wplogin" , client: 37.19.197.248, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇳🇱 EGP Abuse Dept	2026-03-09 10:47:24 (3 months ago)	Scanning for web/db/file exploits on haaitsma.nl	SQL Injection Bad Web Bot Web App Attack
🇩🇪 int8	2026-03-05 15:35:34 (3 months ago)	2026-03-05T15:35:34.108028651Z Minecraft server scanner: status request	Port Scan
🇺🇸 cpxducky	2026-03-05 15:35:27 (3 months ago)	2026-03-05 15:35:27: Minecraft server scan detected from 37.19.197.248 on port 25565 of mail.cpxduck ... show more 2026-03-05 15:35:27: Minecraft server scan detected from 37.19.197.248 on port 25565 of mail.cpxducky.com show less	Port Scan
🇹🇷 rtbh.com.tr	2026-02-20 20:11:39 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2025-11-12 09:19:40 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 37.19.197.248 (unn-37-19-197-248.datapacket.com ... show more (mod_security) mod_security (id:225170) triggered by 37.19.197.248 (unn-37-19-197-248.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 04:19:36.626106 2025] [security2:error] [pid 30284:tid 30284] [client 37.19.197.248:23360] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|larsholm.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "larsholm.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRRRKOnsyCFf6SZa7VBalgAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2025-08-17 13:50:00 (10 months ago)	Blocked by UFW (TCP on 49355) Source port: 49572 TTL: 116 Packet length: 52 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 49355) Source port: 49572 TTL: 116 Packet length: 52 TOS: 0x08 This report (for 37.19.197.248) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2025-08-17 05:04:17 (10 months ago)	WordPress Brute Force	Brute-Force
🇩🇪 John Chrys.	2025-05-04 11:49:02 (1 year ago)	May 4 14:49:01 diego postfix/smtpd[1530402]: warning: unknown[37.19.197.248]: SASL LOGIN authentica ... show more May 4 14:49:01 diego postfix/smtpd[1530402]: warning: unknown[37.19.197.248]: SASL LOGIN authentication failed: authentication failure ... show less	Email Spam Brute-Force
🇨🇿 lp	2025-03-15 20:51:23 (1 year ago)	Email account brute force: 1 attempts were recorded from 37.19.197.248 2025-03-15T20:13:47+01:00 war ... show more Email account brute force: 1 attempts were recorded from 37.19.197.248 2025-03-15T20:13:47+01:00 warning: unknown[37.19.197.248]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Brute-Force
🇨🇦 Mediashaker	2025-03-15 19:12:06 (1 year ago)	(smtpauth) Failed SMTP AUTH login from 37.19.197.248 (US/United States/unn-37-19-197-248.datapacket. ... show more (smtpauth) Failed SMTP AUTH login from 37.19.197.248 (US/United States/unn-37-19-197-248.datapacket.com) show less	Brute-Force
🇺🇸 vestibtech	2025-03-07 16:53:46 (1 year ago)	37.19.197.248 - - [07/Mar/2025:09:53:45 -0700] "GET /wp-login.php HTTP/1.1" 301 4302 "-" "Mozilla/5. ... show more 37.19.197.248 - - [07/Mar/2025:09:53:45 -0700] "GET /wp-login.php HTTP/1.1" 301 4302 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64)" ... show less	Web App Attack
🇦🇺 MAGIC	2025-03-03 11:12:51 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇿 lp	2025-02-21 05:51:38 (1 year ago)	Email account brute force: 3 attempts were recorded from 37.19.197.248 2025-02-21T05:27:38+01:00 war ... show more Email account brute force: 3 attempts were recorded from 37.19.197.248 2025-02-21T05:27:38+01:00 warning: unknown[37.19.197.248]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-02-21T05:27:38+01:00 warning: unknown[37.19.197.248]: SASL LOGIN authentication failed: authentication failure, [email protected] 2025-02-21T05:27:38+01:00 warning: unknown[37.19.197.248]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Brute-Force
🇺🇸 TPI-Abuse	2025-01-04 22:30:28 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 37.19.197.248 (unn-37-19-197-248.datapacket.com ... show more (mod_security) mod_security (id:210730) triggered by 37.19.197.248 (unn-37-19-197-248.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 04 17:30:23.877104 2025] [security2:error] [pid 9828:tid 9841] [client 37.19.197.248:49801] [client 37.19.197.248] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|nobledyn.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "nobledyn.com"] [uri "/site/default/settings.php.BAK"] [unique_id "Z3m2fzrBFkWCLCbnYAE-6AAAAUQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.11

🇮🇶 185.166.25.150

🇸🇬 156.67.221.49

🇰🇷 112.151.178.49

🇷🇴 80.94.92.171

🇺🇸 67.173.58.47

🇮🇪 34.247.47.229

🇺🇸 34.201.239.10

🇺🇸 24.199.94.229

🇺🇸 20.163.61.13

🇮🇪 2a05:d018:10df:d402:a1d0:ed23:4df6:1f00

🇨🇳 223.88.58.75

🇨🇳 219.159.91.46

🇬🇧 198.244.242.196

🇫🇮 147.185.133.2

🇺🇸 147.182.130.92

🇨🇳 120.48.84.64

🇺🇸 108.178.17.26

🇨🇳 61.145.56.3

🇺🇸 24.173.86.122