JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.78

104.207.37.78 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.78

Whois 104.207.37.78

IP Abuse Reports for 104.207.37.78:

This IP address has been reported a total of 134 times from 13 distinct sources. 104.207.37.78 was first reported on June 4th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-10 23:13:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 18:13:18.711103 2025] [security2:error] [pid 5852:tid 5852] [client 104.207.37.78:28629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caminorfoundation.com"] [uri "/.env"] [unique_id "aTn-jra5Mvnef2dgbtX_IQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 13:33:22 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 08:33:14.383493 2025] [security2:error] [pid 1825:tid 1825] [client 104.207.37.78:36163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "velocity40.com"] [uri "/.git/HEAD"] [unique_id "aTl2mmve3nqkGgEZaw-fTQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-09 10:45:17 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-09 09:52:51 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 04:52:39.966071 2025] [security2:error] [pid 14379:tid 14379] [client 104.207.37.78:15399] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "panama-boat-registration.com"] [uri "/.env"] [unique_id "aTfxZxR7yEK89QigXv38zwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 20:33:37 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 15:33:30.804496 2025] [security2:error] [pid 4732:tid 4732] [client 104.207.37.78:52213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emmlogistics.com"] [uri "/.svn/wc.db"] [unique_id "aTXkmmAyIDde0J3Vz18UsQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:23:59 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:23:52.369163 2025] [security2:error] [pid 1181:tid 1181] [client 104.207.37.78:41711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tiln.org"] [uri "/.svn/wc.db"] [unique_id "aTWcCLiiVePddsZ1kfJCZAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 13:39:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:39:17.893390 2025] [security2:error] [pid 24758:tid 24758] [client 104.207.37.78:52033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "orderthanksgivingcards.com"] [uri "/.git/HEAD"] [unique_id "aTLghRWeSysg-ZK9zQg1-AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 05:45:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:45:31.272042 2025] [security2:error] [pid 1175:tid 1175] [client 104.207.37.78:56001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jolankagroup.com"] [uri "/.git/HEAD"] [unique_id "aTJxe1xTZvy9zRRy0R97HQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 01:17:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 20:17:19.741505 2025] [security2:error] [pid 23949:tid 23949] [client 104.207.37.78:56533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alpha-hk.com"] [uri "/.git/HEAD"] [unique_id "aTIynwTjsNmnFx5qVJnuDQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-04 07:54:48 (6 months ago)	botnet	DDoS Attack
🇺🇸 fbarela	2025-11-19 07:01:10 (6 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
Anonymous	2025-11-14 07:44:21 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇱🇻 garmtech.com	2025-10-23 16:57:08 (7 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
🇱🇻 garmtech.com	2025-10-22 06:12:49 (7 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
Anonymous	2025-10-16 12:43:26 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.16 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.16 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.11.135.90

🇹🇭 184.82.165.36

🇺🇸 184.52.45.77

🇹🇭 184.22.131.191

🇧🇷 177.67.195.97

🇹🇭 183.89.202.45

🇮🇩 182.253.159.153

🇮🇩 182.253.154.196

🇧🇩 182.252.95.225

🇧🇩 182.163.114.193

🇹🇭 182.52.157.248

🇮🇩 182.23.45.94

🇩🇴 181.232.191.255

🇩🇴 181.232.191.100

🇩🇴 181.232.191.99

🇦🇷 181.80.212.106

🇨🇴 181.79.91.101

🇵🇪 181.66.252.65

🇨🇴 181.48.176.246

🇨🇴 181.48.165.70