JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.183

104.207.37.183 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.183

Whois 104.207.37.183

IP Abuse Reports for 104.207.37.183:

This IP address has been reported a total of 137 times from 13 distinct sources. 104.207.37.183 was first reported on June 6th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-25 10:58:12 (1 week ago)	Known malicious PHP file or CMS probe	Web App Attack
🇺🇸 nowyouknow	2026-05-15 14:56:30 (3 weeks ago)	(From [email protected]) Hi Kaizen Health and Wellness, I wanted to bump this in ca ... show more (From [email protected]) Hi Kaizen Health and Wellness, I wanted to bump this in case you missed it — I built an AI agent just for Kaizen Health and Wellness, trained on your website, Google info, and everything I could find. It’s ready to answer customer questions, book appointments, and even follow up automatically. On average, our agents help increase leads by 17% without any work needed on your part. Again, this isn’t a pitch — just 20 minutes to test-drive your new AI employee. Here’s the link to book a time: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-12-31 12:39:47 (5 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (5 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇺🇸 TPI-Abuse	2025-11-26 06:08:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:08:13.744855 2025] [security2:error] [pid 4331:tid 4331] [client 104.207.37.183:53785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.rwabutazafoundation.org"] [uri "/.git/HEAD"] [unique_id "aSaZTVF2GfGC4Pb50s4VjAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:11:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:11:21.538522 2025] [security2:error] [pid 12936:tid 12936] [client 104.207.37.183:58629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.agenesis7.com"] [uri "/.env"] [unique_id "aSZFqVddC2joIYPAuYo9JwAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:38:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:37:54.550552 2025] [security2:error] [pid 22756:tid 22756] [client 104.207.37.183:43167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.antech.net"] [uri "/.svn/wc.db"] [unique_id "aSVOwqsw3Z1zOyZ9D7ewxwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:36:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:36:23.196382 2025] [security2:error] [pid 32242:tid 32242] [client 104.207.37.183:35729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.twincitytn.com"] [uri "/.git/HEAD"] [unique_id "aSUyR84jn6ZP7YyUVjbTMQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:54:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:53:37.497210 2025] [security2:error] [pid 134161:tid 134245] [client 104.207.37.183:39025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.stonyp.com"] [uri "/.env"] [unique_id "aSQPARfbvyHppNR9RqJ-0gAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-11-17 02:03:38 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-11-13 20:56:58 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-11 00:10:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 10 19:10:50.830922 2025] [security2:error] [pid 4741:tid 4741] [client 104.207.37.183:47137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.wendyesser.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRJ_CoeXsifZTeZKTpF2OwAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-27 06:24:30 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-26 02:04:01 (7 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.243

🇺🇸 198.211.112.71

🇺🇸 195.63.7.43

🇬🇧 185.195.13.17

🇷🇺 176.211.42.202

🇦🇪 132.243.121.237

🇨🇳 112.94.190.12

🇷🇴 92.118.39.236

🇧🇬 91.191.209.74

🇳🇱 45.148.10.147

🇺🇸 24.112.250.78

🇷🇺 217.150.37.249

🇹🇷 185.95.0.147

🇨🇳 182.43.164.191

🇸🇬 172.70.208.32

🇮🇶 169.224.31.57

🇺🇸 162.216.150.205

🇨🇳 113.215.223.130

🇺🇸 65.49.1.188

🇸🇬 47.128.111.123