JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.130

104.207.37.130 was found in our database!

This IP was reported 122 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.130

Whois 104.207.37.130

IP Abuse Reports for 104.207.37.130:

This IP address has been reported a total of 122 times from 11 distinct sources. 104.207.37.130 was first reported on June 22nd 2024, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-11-25 06:28:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:28:28.160558 2025] [security2:error] [pid 26095:tid 26095] [client 104.207.37.130:37387] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "balay.pamplonaserviciotecnico.com"] [uri "/.git/HEAD"] [unique_id "aSVMjL6Z9pAfmDWkSLDJPwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:34:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:34:34.225478 2025] [security2:error] [pid 12626:tid 12626] [client 104.207.37.130:17083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kotelbarmitzvah.com"] [uri "/.svn/wc.db"] [unique_id "aSU_6rN_mxXlh7rV9uVnhAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:37:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:36:57.477978 2025] [security2:error] [pid 24028:tid 24028] [client 104.207.37.130:24857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.victorvictor.biz"] [uri "/.svn/wc.db"] [unique_id "aSUyaVkQYQVE9y4q_cBrfQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:59:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:59:29.557259 2025] [security2:error] [pid 13756:tid 13859] [client 104.207.37.130:19355] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dasperformance.com"] [uri "/.env"] [unique_id "aSUpoS2vRx1ksuNuFaG_wwAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:19:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:19:46.560593 2025] [security2:error] [pid 10367:tid 10367] [client 104.207.37.130:23403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.scatchellsbeefstand.com"] [uri "/.git/HEAD"] [unique_id "aSUgUrLMC9rImlgRNQ8ldwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:04:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:04:13.142368 2025] [security2:error] [pid 24772:tid 24772] [client 104.207.37.130:49633] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.synergystudios.org"] [uri "/.svn/wc.db"] [unique_id "aSUcrdloPd42aW6nzfgqBQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:16:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:16:50.041420 2025] [security2:error] [pid 7202:tid 7202] [client 104.207.37.130:37605] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seniorservicetravel.banis-associates.com"] [uri "/.svn/wc.db"] [unique_id "aSUDgigL31x6pdjl3HfEAgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 techboy117	2025-11-14 00:41:07 (7 months ago)	Blocking due to password spraying.	Brute-Force
Anonymous	2025-10-18 10:30:32 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-18 08:21:33 (8 months ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-15 12:12:26 (8 months ago)	GlobalProtect login attempts with user mwmontoya.	VPN IP Brute-Force
Anonymous	2025-10-01 03:11:51 (8 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.01 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-09-30 16:21:51 (8 months ago)	Attempted brute force login to web vpn 81 time(s); last attempt for 2025.09.30 is noted in report ti ... show more Attempted brute force login to web vpn 81 time(s); last attempt for 2025.09.30 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-09-26 19:18:09 (8 months ago)	Attempted brute force login to web vpn 27 time(s); last attempt for 2025.09.26 is noted in report ti ... show more Attempted brute force login to web vpn 27 time(s); last attempt for 2025.09.26 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 17:50:13 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 122 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.104

🇺🇸 165.154.162.212

🇹🇭 152.32.247.54

🇺🇸 147.185.132.74

🇺🇸 143.110.224.229

🇨🇳 120.243.141.126

🇮🇳 47.15.114.155

🇨🇦 45.88.190.181

🇪🇨 45.70.56.3

🇺🇸 44.52.147.78

🇬🇧 35.203.211.29

🇬🇧 35.203.211.22

🇧🇷 205.210.31.184

🇺🇸 205.210.31.93

🇮🇳 203.145.143.163

🇹🇭 202.29.223.30

🇿🇦 197.245.38.153

🇺🇸 165.154.172.72

🇩🇪 164.90.223.116

🇻🇳 113.185.42.87