JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.156

104.207.37.156 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.156

Whois 104.207.37.156

IP Abuse Reports for 104.207.37.156:

This IP address has been reported a total of 136 times from 20 distinct sources. 104.207.37.156 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-30 00:25:42 (1 month ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-03-31 07:48:57 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-12-08 14:35:11 (6 months ago)	Forum/form spam	Web Spam
🇪🇸 Gem	2025-11-28 23:12:28 (6 months ago)	Unauthorized web scan.	Web App Attack
🇨🇳 ThreatBook.io	2025-11-26 23:48:43 (6 months ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/104.207.37.156 2025-11-2 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/104.207.37.156 2025-11-26 17:31:05 /.svn/wc.db show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:46:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:46:48.839884 2025] [security2:error] [pid 4922:tid 4922] [client 104.207.37.156:10031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.gospectre.com"] [uri "/.git/HEAD"] [unique_id "aSbamHjbA1R2mDXWdMTyigAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:33:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:33:40.307430 2025] [security2:error] [pid 1743:tid 1743] [client 104.207.37.156:36087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.railfanfromseo.com"] [uri "/.git/HEAD"] [unique_id "aSa7ZI2Z2sc49ELKmAedFQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:17:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:17:32.897305 2025] [security2:error] [pid 526:tid 526] [client 104.207.37.156:51263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.budfromkansascitymo.com"] [uri "/.git/HEAD"] [unique_id "aSabfOOSMGJECCKdZYi4uQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:30:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:30:11.327633 2025] [security2:error] [pid 13364:tid 13364] [client 104.207.37.156:29671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rohan.byles.net"] [uri "/.svn/wc.db"] [unique_id "aSZYI_xR4iZUKjkYOHIP7QAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:53:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.156 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:53:47.448015 2025] [security2:error] [pid 6999:tid 6999] [client 104.207.37.156:24415] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.godarise.kidswow.com"] [uri "/.env"] [unique_id "aSZPm5gat3QqQ-IIeFRibAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 techboy117	2025-11-14 00:41:07 (7 months ago)	Blocking due to password spraying.	Brute-Force
🇫🇷 applemooz	2025-11-01 10:35:56 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
Anonymous	2025-10-30 14:32:03 (7 months ago)	WordPress Brute Force	Brute-Force
🇩🇪 Marc	2025-10-29 21:08:46 (7 months ago)		Brute-Force

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 69.5.20.232

🇮🇳 2409:40c0:a:3abd:346b:ef28:835f:f1e9

🇨🇳 218.94.25.243

🇧🇪 198.235.24.200

🇧🇷 177.157.198.195

🇮🇳 103.142.112.161

🇩🇪 91.107.137.142

🇳🇱 89.248.167.131

🇧🇾 81.30.98.142

🇧🇬 78.128.113.74

🇺🇸 45.79.8.221

🇳🇱 195.178.110.30

🇨🇦 192.53.123.194

🇪🇨 186.121.165.56

🇳🇱 185.223.235.39

🇷🇺 178.74.71.174

🇺🇸 159.203.65.158

🇧🇷 131.221.193.53

🇻🇳 123.17.200.98

🇷🇴 89.33.8.53