JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.182

104.207.37.182 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.182

Whois 104.207.37.182

IP Abuse Reports for 104.207.37.182:

This IP address has been reported a total of 155 times from 22 distinct sources. 104.207.37.182 was first reported on June 4th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 2000cn.com.au	2026-02-11 21:05:21 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:01:03 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇳🇿 FaB Property Group	2026-02-10 11:44:40 (4 months ago)	Requested file: .env.production	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:00:43 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:00:39.617788 2026] [security2:error] [pid 23199:tid 23234] [client 104.207.37.182:40449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icbc-canada.com"] [uri "/.env.production"] [unique_id "aYqtZ316UGkN-LIDmLr2iAAAAIs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:11:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:11:18.277035 2026] [security2:error] [pid 22465:tid 22465] [client 104.207.37.182:17719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinkycouple4u.com"] [uri "/dev/.git/config"] [unique_id "aYqh1pplQPpeF_VOwQoxNgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:48:42 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:48:34.370267 2026] [security2:error] [pid 29112:tid 29112] [client 104.207.37.182:43413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keystonebrass.com"] [uri "/admin/.env"] [unique_id "aYqAYkUWNxypUCPF65UHUAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:18:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:18:25.478806 2026] [security2:error] [pid 957869:tid 957879] [client 104.207.37.182:39337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrfamilyassociation.com"] [uri "/.env"] [unique_id "aYp5Udi5iPpcoi3ZjnfqmwAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:59:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:59:15.014027 2026] [security2:error] [pid 14133:tid 14133] [client 104.207.37.182:15203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kennythompson.com"] [uri "/.env.local"] [unique_id "aYp003KgoWHvkqqQPeD-fAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:37:11 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:37:05.495015 2026] [security2:error] [pid 11564:tid 11564] [client 104.207.37.182:12307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hshr.com"] [uri "/.env.save"] [unique_id "aYpvoUSzDrfcLxbCssxpGwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:06:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:06:30.197931 2026] [security2:error] [pid 23644:tid 23644] [client 104.207.37.182:55937] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keaborner.com"] [uri "/.env.production"] [unique_id "aYpodgWDAtuqUWHDKK8EewAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-23 02:08:13 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 01:39:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:39:11.204099 2025] [security2:error] [pid 3688:tid 3688] [client 104.207.37.182:23249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.plazacristal.com"] [uri "/.env"] [unique_id "aSZaP_B3fMxWIwAXK7X2GAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:23:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:23:12.951685 2025] [security2:error] [pid 21711:tid 21711] [client 104.207.37.182:46159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.69strains.com"] [uri "/.git/HEAD"] [unique_id "aSZIcAtdWjIh3TA4KB9oAAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:02:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:02:16.312558 2025] [security2:error] [pid 23309:tid 23309] [client 104.207.37.182:23797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.barpubsigns.com"] [uri "/.svn/wc.db"] [unique_id "aSUAGAR7XYVxOjwK4_kqeAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:49:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:48:55.820065 2025] [security2:error] [pid 3794:tid 3794] [client 104.207.37.182:15471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.ancientleather.com"] [uri "/.env"] [unique_id "aSQqB4rs8mZT_6nhyA3LpQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.218.206.66

🇨🇭 104.244.74.201

🇳🇱 45.198.224.21

🇧🇪 34.52.136.228

🇨🇳 111.173.158.249

🇸🇪 77.53.193.47

🇺🇸 67.197.111.225

🇿🇼 197.221.232.44

🇨🇳 120.48.108.170

🇮🇳 115.241.228.34

🇺🇸 64.49.36.19

🇮🇷 31.7.66.163

🇳🇱 195.178.110.26

🇬🇧 193.163.125.165

🇧🇷 191.241.76.128

🇭🇰 152.32.254.89

🇺🇸 151.245.32.125

🇨🇳 125.70.171.222

🇲🇾 118.100.233.129

🇮🇳 106.219.170.202