JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.155

104.207.36.155 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.155

Whois 104.207.36.155

IP Abuse Reports for 104.207.36.155:

This IP address has been reported a total of 144 times from 20 distinct sources. 104.207.36.155 was first reported on June 11th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇩🇪 F242	2026-01-30 05:09:13 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:06 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇫🇷 Little Iguana	2025-12-07 09:40:24 (6 months ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇸🇪 Johan Finn	2025-11-28 00:37:56 (6 months ago)	malicious activity	Web App Attack
🇫🇷 Little Iguana	2025-11-27 11:27:16 (6 months ago)	Attempt to hack Wordpress Login, XMLRPC or other login	Hacking
🇺🇸 TPI-Abuse	2025-11-25 06:34:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:33:58.171700 2025] [security2:error] [pid 1816811:tid 1816971] [client 104.207.36.155:20549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.otemaetk.com"] [uri "/.git/HEAD"] [unique_id "aSVN1u3xOpFSh0WflcuGwgAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:57:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:57:03.821774 2025] [security2:error] [pid 27051:tid 27051] [client 104.207.36.155:41963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "decisionsciencebooks.banis-associates.com"] [uri "/.git/HEAD"] [unique_id "aSVFLw1Rh16MihpJs0HpHgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:26:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:26:55.008483 2025] [security2:error] [pid 23246:tid 23246] [client 104.207.36.155:53013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.lakewaycpaaa.org"] [uri "/.git/HEAD"] [unique_id "aSU-H1FZvAsNG5Q9tjnAagAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:11:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:11:47.844638 2025] [security2:error] [pid 27108:tid 27108] [client 104.207.36.155:50517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.anniesherbals.com"] [uri "/.env"] [unique_id "aSU6k0JHremADTObzoH53gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:22:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:22:06.733732 2025] [security2:error] [pid 18182:tid 18182] [client 104.207.36.155:39617] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aupapierjaponais.com"] [uri "/.env"] [unique_id "aSUu7rEWhwn4fBdwCULiRwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:24:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:24:03.591244 2025] [security2:error] [pid 11485:tid 11485] [client 104.207.36.155:38873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.canadianwildlifemuseum.com"] [uri "/.git/HEAD"] [unique_id "aSUhU8_P2PCgfpgkcJeOKwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:32:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:32:07.673482 2025] [security2:error] [pid 29128:tid 29128] [client 104.207.36.155:23375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.edgecombe.net"] [uri "/.git/HEAD"] [unique_id "aSUVJ6N9EYvCJpQytEDHCAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:12:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:11:58.395908 2025] [security2:error] [pid 32584:tid 32584] [client 104.207.36.155:21773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.encoremtmorris.com"] [uri "/.svn/wc.db"] [unique_id "aSUQbo41J9K3zwogBXshewAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.15

🇸🇦 77.31.222.157

🇧🇷 45.205.1.242

🇧🇪 35.187.172.41

🇳🇱 5.83.143.132

🇵🇰 203.128.10.138

🇬🇧 185.216.145.172

🇸🇬 103.250.11.116

🇪🇸 88.21.166.76

🇺🇸 66.132.186.138

🇷🇺 62.112.126.114

🇱🇹 45.227.254.170

🇩🇪 43.228.157.8

🇺🇸 34.75.223.138

🇺🇸 2604:a880:400:d1:0:4:8bed:8001

🇬🇧 193.163.125.141

🇲🇩 176.123.2.115

🇺🇸 172.59.72.163

🇺🇸 162.243.138.30

🇨🇳 119.48.134.120