JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.174

104.207.37.174 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.174

Whois 104.207.37.174

IP Abuse Reports for 104.207.37.174:

This IP address has been reported a total of 153 times from 26 distinct sources. 104.207.37.174 was first reported on June 7th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 windowsforum	2026-04-01 03:21:20 (2 months ago)	Spam bot registration: triggers=timing, js_challenge, inv_honeypot, pow_fail, username=SLMDamion	Web Spam Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇩🇪 abdubhai	2026-02-23 21:39:48 (3 months ago)	104.207.37.174 - - [24/Feb/2026: ...	Brute-Force
Anonymous	2025-12-31 13:05:23 (5 months ago)	wordpress-trap	Web App Attack
🇸🇪 vaia.cloud	2025-12-15 18:26:03 (5 months ago)	trying wp-login.php/xmlrpc.php 34 times in 1 minutes	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:05:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:05:50.071186 2025] [security2:error] [pid 20371:tid 20371] [client 104.207.37.174:11557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.andiamorun.com"] [uri "/.svn/wc.db"] [unique_id "aSbtHg9niDwJTIO53YsYhQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:13:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:12:59.227252 2025] [security2:error] [pid 5515:tid 5515] [client 104.207.37.174:16687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.tatying.com"] [uri "/.env"] [unique_id "aSaoe2jhwdb-rbVD1_GhZgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 05:18:57 (6 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇱🇻 garmtech.com	2025-11-26 02:35:03 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:11:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:10:59.062432 2025] [security2:error] [pid 17544:tid 17556] [client 104.207.37.174:38005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "heworeblack.104ventures.com"] [uri "/.svn/wc.db"] [unique_id "aSZhs7dIsiK1k1jqHcTyDQAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:14:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:14:02.765062 2025] [security2:error] [pid 19711:tid 19711] [client 104.207.37.174:49351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.h2ofall.co"] [uri "/.svn/wc.db"] [unique_id "aSZUWl_BC1R9oencs58wFAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:15:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:15:36.758770 2025] [security2:error] [pid 12716:tid 12733] [client 104.207.37.174:13919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.gorealtors.com"] [uri "/.env"] [unique_id "aSUfWNFyYQkDKh-KlDQlWgAAAIc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:07:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:07:23.951075 2025] [security2:error] [pid 11578:tid 11578] [client 104.207.37.174:48171] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.vnaosim.com"] [uri "/.git/HEAD"] [unique_id "aSQgS1FpvzuISoiBzxfCHgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-24 08:58:39 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:42:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:42:26.867026 2025] [security2:error] [pid 26765:tid 26765] [client 104.207.37.174:55413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.angelpalomino.com"] [uri "/.svn/wc.db"] [unique_id "aSQacmnjHZ3KqaIvEAtZcQAAACs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.211

🇺🇸 135.119.112.180

🇸🇬 114.119.153.20

🇺🇸 66.132.172.130

🇳🇱 45.148.10.157

🇳🇱 45.148.10.152

🇺🇸 40.119.43.103

🇬🇧 35.203.211.66

🇺🇸 192.178.115.92

🇳🇱 185.242.226.87

🇱🇰 124.43.10.224

🇻🇳 103.130.213.223

🇫🇷 91.231.89.67

🇺🇸 43.159.144.16

🇺🇸 34.230.124.21

🇺🇸 18.225.8.96

🇪🇨 190.95.248.98

🇫🇷 185.177.72.29

🇳🇱 173.194.170.117

🇭🇰 165.154.40.244