JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 37.72.141.47

37.72.141.47 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 15%: ?

15%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 37.72.141.47

Whois 37.72.141.47

IP Abuse Reports for 37.72.141.47:

This IP address has been reported a total of 11 times from 5 distinct sources. 37.72.141.47 was first reported on November 1st 2023, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 HandyTreff.de	2026-06-06 13:26:36 (8 hours ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -50.674 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -50.674 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.4998.5 show less	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-03 09:00:37 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 37.72.141.47 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 37.72.141.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 05:00:30.267038 2026] [security2:error] [pid 15718:tid 15718] [client 37.72.141.47:38815] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Horizon II/Stargo Black/originals/Thumbs.db"] [unique_id "ah_tLlIHHzKxuWj4jKCOZQAAAAI"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Horizon%20II/Stargo%20Black/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-14 12:06:48 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 37.72.141.47 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 37.72.141.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 08:06:39.980388 2026] [security2:error] [pid 16872:tid 16872] [client 37.72.141.47:12385] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Art Burl/originals/Thumbs.db"] [unique_id "abVPT-f3-J6yLIETGVi6UAAAAAY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Art%20Burl/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-04 03:35:07 (4 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2025-12-13 02:15:06 (5 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇮🇩 BPS-StatisticsIndonesia	2025-04-01 11:30:35 (1 year ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-03-24 16:00:46 (1 year ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-03-23 15:42:20 (1 year ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-03-20 22:48:28 (1 year ago)	WP Login Scan Activities	Web App Attack
🇺🇸 TPI-Abuse	2025-02-16 08:07:34 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 37.72.141.47 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 37.72.141.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 16 03:07:29.611635 2025] [security2:error] [pid 20322:tid 20322] [client 37.72.141.47:32945] [client 37.72.141.47] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brpradosdeleste.turedinmobiliaria.com"] [uri "/.env"] [unique_id "Z7GcwZ3u5voaqwdL_ojddAAAAAQ"], referer: https://tasamm.com/about/bbb82.html show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 TI	2023-11-01 00:47:25 (2 years ago)	Scrapping website, using diffrent useragents, not wait for response, #botnet20231026	DDoS Attack Bad Web Bot

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 202.141.35.228

🇩🇪 202.71.141.170

🇺🇸 188.42.112.162

🇹🇷 185.128.114.37

🇧🇩 103.163.117.83

🇸🇪 46.59.92.210

🇷🇴 2.57.121.112

🇷🇴 2.57.121.25

🇭🇰 199.45.154.186

🇹🇷 185.128.114.34

🇹🇷 185.128.114.33

🇺🇸 147.185.132.140

🇨🇳 111.26.106.115

🇮🇳 103.84.236.242

🇺🇸 66.132.172.239

🇺🇸 54.165.75.96

🇺🇸 50.116.72.139

🇧🇪 198.235.24.242

🇧🇪 198.235.24.170

🇹🇷 185.128.114.32