JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.38

104.207.37.38 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.38

Whois 104.207.37.38

IP Abuse Reports for 104.207.37.38:

This IP address has been reported a total of 144 times from 22 distinct sources. 104.207.37.38 was first reported on June 7th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nowyouknow	2026-05-16 16:49:42 (2 weeks ago)	(From [email protected]) Hi Rubin Family Chiropractic, I wanted to bump this in cas ... show more (From [email protected]) Hi Rubin Family Chiropractic, I wanted to bump this in case you missed it — I built an AI agent just for Rubin Family Chiropractic, trained on your website, Google info, and everything I could find. It’s ready to answer customer questions, book appointments, and even follow up automatically. On average, our agents help increase leads by 17% without any work needed on your part. Again, this isn’t a pitch — just 20 minutes to test-drive your new AI employee. Here’s the link to book a time: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇺🇸 nowyouknow	2026-05-16 00:46:46 (3 weeks ago)	(From [email protected]) Hi Arnel Chiropractic, I wanted to bump this in case you m ... show more (From [email protected]) Hi Arnel Chiropractic, I wanted to bump this in case you missed it — I built an AI agent just for Arnel Chiropractic, trained on your website, Google info, and everything I could find. It’s ready to answer customer questions, book appointments, and even follow up automatically. On average, our agents help increase leads by 17% without any work needed on your part. Again, this isn’t a pitch — just 20 minutes to test-drive your new AI employee. Here’s the link to book a time: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇬🇧 PeravixGroup	2026-05-07 11:18:12 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-02 18:55:37 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇪🇸 10dencehispahard SL	2026-01-26 07:26:32 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2026-01-20 17:48:05 (4 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:50:20 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:50:11.403490 2025] [security2:error] [pid 9872:tid 9872] [client 104.207.37.38:51553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twixmixy.com"] [uri "/.svn/wc.db"] [unique_id "aVIWkztXhAuwQI7lyuVSmwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 19:44:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:44:01.461305 2025] [security2:error] [pid 17913:tid 17913] [client 104.207.37.38:18049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "benchmarkbcs.com"] [uri "/.env"] [unique_id "aSiqASgA82SUJo4Kf1eilwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-11-27 05:10:54 (6 months ago)	Wordpress malicious attack:[octa404]	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:25:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:25:52.629903 2025] [security2:error] [pid 19379:tid 19379] [client 104.207.37.38:53519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.barkan.us"] [uri "/.svn/wc.db"] [unique_id "aSVL8GoEc2uG-3ZWnI93TAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:40:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:40:27.901160 2025] [security2:error] [pid 21544:tid 21544] [client 104.207.37.38:48911] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.menagri.com"] [uri "/.env"] [unique_id "aSUzO9C6r_L0CpyegVjqhwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:08:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:08:55.294062 2025] [security2:error] [pid 15248:tid 15248] [client 104.207.37.38:13233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.videoverse.com"] [uri "/.env"] [unique_id "aSUr14tLQ2REkPSmh9CpNAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:37:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:37:28.990267 2025] [security2:error] [pid 22086:tid 22086] [client 104.207.37.38:49851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.psikeep.com"] [uri "/.svn/wc.db"] [unique_id "aSUkeJPC7oArj_dEVeVcfAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:24:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:24:03.167535 2025] [security2:error] [pid 25574:tid 25574] [client 104.207.37.38:34297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.impactqualityinc.com"] [uri "/.svn/wc.db"] [unique_id "aSUFM0pVKo5TSrztwzNsvgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-18 09:20:46 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 207.56.229.243

🇧🇷 179.51.153.37

🇺🇸 173.194.94.156

🇨🇳 153.0.48.85

🇩🇪 130.12.181.106

🇨🇳 121.29.149.49

🇰🇷 112.164.234.33

🇰🇷 112.151.178.49

🇷🇺 31.210.216.85

🇿🇦 20.87.219.67

🇻🇳 14.225.7.70

🇩🇪 213.209.159.235

🇳🇱 195.211.191.112

🇯🇵 124.155.125.131

🇪🇪 109.206.241.199

🇺🇸 107.180.88.176

🇺🇸 76.79.213.70

🇱🇹 45.227.254.170

🇳🇱 45.148.10.121

🇩🇪 45.86.202.211