JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.19.220.17

37.19.220.17 was found in our database!

This IP was reported 183 times. Confidence of Abuse is 39%: ?

39%

ISP	Datacamp Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Hostname(s)	unn-37-19-220-17.datapacket.com
Domain Name	datacamp.co.uk
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.19.220.17

Whois 37.19.220.17

IP Abuse Reports for 37.19.220.17:

This IP address has been reported a total of 183 times from 83 distinct sources. 37.19.220.17 was first reported on March 20th 2025, and the most recent report was 7 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇪 McHoneypot	2026-06-18 22:20:07 (7 minutes ago)	Minecraft server scanning dectected on port 25565	Port Scan
🇩🇪 int8	2026-06-18 22:17:32 (10 minutes ago)	2026-06-18T22:17:32.644415058Z Minecraft server scanner: status request	Port Scan
🇳🇱 FREAKISH	2026-06-18 22:17:08 (10 minutes ago)	2026-06-19 00:17:08: Minecraft server scan detected from 37.19.220.17 on port 25565 of 127.0.0.1	Port Scan
🇩🇪 zUnlegit	2026-06-18 22:16:57 (10 minutes ago)	2026-06-18 22:16:56: Minecraft server scan detected from 37.19.220.17 on port 25565 of mailserver	Port Scan
🇺🇸 cpxducky	2026-06-18 22:16:55 (10 minutes ago)	2026-06-18 22:16:55: Minecraft server scan detected from 37.19.220.17 on port 25565 of mail.cpxducky ... show more 2026-06-18 22:16:55: Minecraft server scan detected from 37.19.220.17 on port 25565 of mail.cpxducky.com show less	Port Scan
🇳🇱 e.fierstra	2026-05-16 21:13:50 (1 month ago)	Failed SMTP logins	Brute-Force
🇺🇸 TPI-Abuse	2026-05-03 21:01:03 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): ... show more (mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 17:00:55.480243 2026] [security2:error] [pid 4159:tid 4159] [client 37.19.220.17:5309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mrconway.com"] [uri "/.git/config"] [unique_id "afe3h_N9nCPlVHPj43ZTjgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-03 20:25:39 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): ... show more (mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 16:25:31.449799 2026] [security2:error] [pid 17807:tid 17807] [client 37.19.220.17:16727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twinls.com"] [uri "/.git/config"] [unique_id "afevOx01DiqmKe_3jaxJHQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-03 18:30:03 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): ... show more (mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 14:29:58.311340 2026] [security2:error] [pid 27111:tid 27111] [client 37.19.220.17:36933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cosentient.com"] [uri "/.git/config"] [unique_id "afeUJvHua1HK5uTsVLOdgQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-03 18:00:26 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): ... show more (mod_security) mod_security (id:210492) triggered by 37.19.220.17 (unn-37-19-220-17.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 14:00:20.575988 2026] [security2:error] [pid 32606:tid 32606] [client 37.19.220.17:9334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "valbreniscrivalbo.com"] [uri "/.git/config"] [unique_id "afeNNPFZBnMwWVd8qyRufAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 xveil	2026-02-08 21:26:27 (4 months ago)	2026-02-09T04:26:25.902938 mail-honeypot postfix/submission/smtpd[17958]: warning: unknown[37.19.220 ... show more 2026-02-09T04:26:25.902938 mail-honeypot postfix/submission/smtpd[17958]: warning: unknown[37.19.220.17]: SASL PLAIN authentication failed: authentication failure ... show less	Brute-Force
🇩🇪 FeG Deutschland	2026-02-08 00:58:18 (4 months ago)	Mail: - login with unknown user - bruteforce	Brute-Force
Anonymous	2026-02-07 23:35:19 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Web Spam
🇫🇷 SpaceHost-Server	2026-02-07 22:52:56 (4 months ago)	Feb 7 23:52:55 pegasus postfix/smtpd[3555526]: warning: unknown[37.19.220.17]: SASL CRAM-MD5 authen ... show more Feb 7 23:52:55 pegasus postfix/smtpd[3555526]: warning: unknown[37.19.220.17]: SASL CRAM-MD5 authentication failed: authentication failure, [email protected] Feb 7 23:52:55 pegasus postfix/smtpd[3555526]: warning: unknown[37.19.220.17]: SASL PLAIN authentication failed: authentication failure, [email protected] Feb 7 23:52:55 pegasus postfix/smtpd[3555526]: warning: unknown[37.19.220.17]: SASL LOGIN authentication failed: authentication failure, [email protected] show less	Hacking Brute-Force
🇫🇷 tilellit.pro	2026-01-30 05:52:26 (4 months ago)	Fail2Ban banned 37.19.220.17 for security violations in jail wp-armour. Log: 2026/01/30 05:52:25 [er ... show more Fail2Ban banned 37.19.220.17 for security violations in jail wp-armour. Log: 2026/01/30 05:52:25 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 37.19.220.17 \| Target: wplogin" , client: 37.19.220.17, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam

Showing 1 to 15 of 183 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 172.253.1.218

🇬🇷 129.222.57.91

🇺🇸 34.139.94.20

🇧🇷 187.84.30.6

🇲🇴 182.93.50.90

🇺🇸 129.213.158.102

🇸🇬 129.212.236.209

🇳🇵 103.134.219.178

🇮🇹 151.54.96.84

🇩🇪 141.11.45.97

🇯🇵 128.53.234.210

🇯🇵 126.73.76.193

🇸🇬 101.47.156.170

🇹🇷 88.230.202.18

🇲🇴 60.246.28.137

🇩🇪 57.129.69.77

🇫🇷 51.91.250.17

🇸🇦 50.60.13.92

🇺🇸 45.79.109.193

🇸🇳 41.214.49.171