JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.157

104.207.36.157 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.157

Whois 104.207.36.157

IP Abuse Reports for 104.207.36.157:

This IP address has been reported a total of 153 times from 23 distinct sources. 104.207.36.157 was first reported on June 11th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 stareradia.pl	2026-05-24 15:58:46 (1 week ago)	[Sun May 24 17:58:15.987560 2026] [php:error] [pid 405009:tid 405009] [client 104.207.36.157:0] scri ... show more [Sun May 24 17:58:15.987560 2026] [php:error] [pid 405009:tid 405009] [client 104.207.36.157:0] script '/var/www/html/profile.php' not found or unable to stat, referer: https://forum-trioda.pl/ [Sun May 24 17:58:20.530731 2026] [php:error] [pid 406296:tid 406296] [client 104.207.36.157:0] script '/var/www/html/profile.php' not found or unable to stat, referer: https://forum-trioda.pl/ [Sun May 24 17:58:21.131585 2026] [php:error] [pid 406295:tid 406295] [client 104.207.36.157:0] script '/var/www/html/profile.php' not found or unable to stat, referer: https://forum-trioda.pl/ucp.php?mode=register&agreed=true&iscanyesno=yeswecan&step=2&coppa=0 [Sun May 24 17:58:46.233813 2026] [php:error] [pid 379035:tid 379035] [client 104.207.36.157:0] script '/var/www/html/profile.php' not found or unable to stat, referer: https://forum-trioda.pl/ ... show less	Web App Attack
🇺🇸 gu-alvareza	2026-05-01 07:05:09 (1 month ago)	WordPress.xmlrpc.Pingback.DoS	DDoS Attack
Anonymous	2026-04-25 19:15:30 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-03-29 12:59:42 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-03-27 02:53:11 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 22:53:05.892858 2026] [security2:error] [pid 17691:tid 17691] [client 104.207.36.157:14247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kelting.net"] [uri "/dev/.git/config"] [unique_id "acXxETJwFGOfCvyWIEH64gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 akasolutions.de	2026-03-27 00:54:25 (2 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.36.157 (US/United States/-)	SQL Injection
🇦🇺 MAGIC	2026-03-14 00:26:18 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 fbarela	2026-01-24 22:01:07 (4 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇪🇸 10dencehispahard SL	2026-01-23 07:28:56 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:45 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-24 09:30:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:29:52.604066 2025] [security2:error] [pid 13005:tid 13005] [client 104.207.36.157:56697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blc2.co"] [uri "/.git/HEAD"] [unique_id "aSQlkLnBj_itILS0P30HIQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:58:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:58:05.461679 2025] [security2:error] [pid 20018:tid 20018] [client 104.207.36.157:10265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.terrorismbook.com"] [uri "/.git/HEAD"] [unique_id "aSQQDcLY0tlBd2ueXDRGpwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:44:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:44:23.974180 2025] [security2:error] [pid 20995:tid 20995] [client 104.207.36.157:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.perl-photo.com"] [uri "/.env"] [unique_id "aSPwtxOvYUgqzdTNDzK4BQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:51:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:50:57.711463 2025] [security2:error] [pid 18695:tid 18695] [client 104.207.36.157:29335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.goldeys.com"] [uri "/.svn/wc.db"] [unique_id "aSPkMUZ3uepuoWGpgkEzWwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:07:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:07:35.945635 2025] [security2:error] [pid 9421:tid 9421] [client 104.207.36.157:25753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.interforce.com"] [uri "/.env"] [unique_id "aSPaBwZYb8zFN6FNe53ZdwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 185.232.14.222

🇮🇩 182.253.156.184

🇷🇺 176.15.23.44

🇫🇮 147.185.133.70

🇿🇦 102.165.66.170

🇹🇭 101.109.172.251

🇩🇪 82.198.227.50

🇺🇸 67.205.143.145

🇺🇸 64.236.193.27

🇺🇸 57.141.20.71

🇳🇱 45.148.10.157

🇸🇬 43.134.114.37

🇬🇧 35.203.211.116

🇮🇳 35.154.64.133

🇧🇪 34.62.36.252

🇷🇴 2.57.121.112

🇨🇳 1.94.17.74

🇨🇦 207.134.141.194

🇸🇬 188.166.215.16

🇺🇸 172.253.85.247