JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.77

104.207.37.77 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.77

Whois 104.207.37.77

IP Abuse Reports for 104.207.37.77:

This IP address has been reported a total of 161 times from 25 distinct sources. 104.207.37.77 was first reported on June 4th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 leithzz	2026-05-30 19:07:23 (1 week ago)	Report by Cloudflare.Time: 2026-05-30T19:06:57Z	DDoS Attack
🇫🇷 MatStef132	2026-05-19 21:11:03 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 21:05:47 (2 weeks ago)	MatShield L7: blocked on anonymous (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 20:59:02 (2 weeks ago)	MatShield L7: blocked on dstat.selify.io (ua-quarantined)	Bad Web Bot
🇫🇷 MatStef132	2026-05-15 15:39:17 (3 weeks ago)	MatShield L7 blocked request to mathost.eu for reason chro	DDoS Attack Bad Web Bot Web App Attack
🇫🇷 MatStef132	2026-05-14 21:32:37 (3 weeks ago)	[mathost.eu] clic	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-04-28 15:44:20 (1 month ago)	Cloudflare WAF: Request Path: /123456 Request Query: ?msclkid=1777391060443285148 Host: elhacker.net ... show more Cloudflare WAF: Request Path: /123456 Request Query: ?msclkid=1777391060443285148 Host: elhacker.net userAgent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: US Method: GET Timestamp: 2026-04-28T15:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:46:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:46:13.618780 2026] [security2:error] [pid 2465:tid 2465] [client 104.207.37.77:46175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kristywernerauthor.com"] [uri "/backend/.env"] [unique_id "aY7ItWcc8mhky6h1NO9YVgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:29:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:29:37.657887 2026] [security2:error] [pid 26292:tid 26292] [client 104.207.37.77:16509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krakowski.org"] [uri "/backend/.env"] [unique_id "aY7E0V0g52ZYAnbzP5QkhQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 06:05:44 (3 months ago)	Scanning/Probing (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 00:49:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 19:49:51.758963 2026] [security2:error] [pid 31364:tid 31364] [client 104.207.37.77:23199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kamrynbever.com"] [uri "/wp/.git/config"] [unique_id "aY51L7hgbiEgRzSkFJigKQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-12 18:24:38 (3 months ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 14:34:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 09:34:33.916046 2026] [security2:error] [pid 1237440:tid 1237440] [client 104.207.37.77:22085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arborterra.org"] [uri "/.git/config"] [unique_id "aY3k-QBV7dsaAuk9YN4NSwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 02:06:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 21:06:30.624075 2026] [security2:error] [pid 1384:tid 1384] [client 104.207.37.77:30673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "corchard.net"] [uri "/dev/.git/config"] [unique_id "aYvkJiZg9te4rXasA4b1UQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:46:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:46:25.351545 2026] [security2:error] [pid 3529:tid 3529] [client 104.207.37.77:21525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "copiershickory.com"] [uri "/app/.env"] [unique_id "aYvRYRF1UfngLprKymYzWAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 45.81.243.62

🇩🇪 194.187.176.145

🇷🇺 185.16.214.226

🇨🇳 183.134.42.77

🇧🇷 181.218.9.86

🇺🇾 167.60.236.145

🇰🇷 114.29.11.190

🇧🇩 103.84.38.42

🇹🇼 61.231.216.167

🇫🇮 34.88.9.155

🇺🇸 18.190.155.65

🇭🇰 199.45.154.157

🇳🇱 195.178.110.30

🇱🇹 141.98.10.205

🇩🇪 139.19.117.197

🇮🇩 103.85.66.217

🇺🇸 66.132.195.50

🇹🇼 60.199.224.2

🇳🇱 45.148.10.141

🇺🇸 35.231.49.17