JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.97

104.207.37.97 was found in our database!

This IP was reported 165 times. Confidence of Abuse is 18%: ?

18%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.97

Whois 104.207.37.97

IP Abuse Reports for 104.207.37.97:

This IP address has been reported a total of 165 times from 25 distinct sources. 104.207.37.97 was first reported on June 3rd 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-05-28 16:50:32 (1 week ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2026-05-21 05:21:32 (2 weeks ago)	(From [email protected]) Hi, Plain websites are starting to feel outdated Many companies ... show more (From [email protected]) Hi, Plain websites are starting to feel outdated Many companies still treat their website like a digital brochure. Customers don't. Visitors now arrive expecting interaction, not just information. They arrive with intent. Questions. Urgency. When the website makes them work too hard, they move on. No long consideration process. Just gone. Just a missed opportunity. The uncomfortable reality is this: A website without AI interaction will soon feel as outdated as a business without a mobile website. That shift is already underway. The newer standard is conversation. The old standard is passive pages. Check it now: https://theollehai.com Best Regards, Nickolas Vetter Olleh Should you no longer want to receive subsequent notifications from this campaign, simply fill the form at bit. ly/fillunsubform with your domain address (URL). 84 Spilman Street, Plattsburgh, CA, USA, 91590 show less	Phishing Web Spam
🇺🇸 nowyouknow	2026-05-19 16:15:43 (2 weeks ago)	(From [email protected]) Hi there, Your market is being trained into AI Right n ... show more (From [email protected]) Hi there, Your market is being trained into AI Right now, businesses in every industry are training AI to: - Answer customer questions instantly - Capture leads automatically - Separate casual visitors from ready-to-act prospects - Take repetitive support questions off the team - Make the website feel less like a maze and more like a guided conversation Meanwhile, many websites are still built around: - Figure things out by clicking through pages - Navigate menus instead of asking direct questions - Submit forms and wait That model is already losing strength. The companies training AI now are building tomorrow's customer-attention advantage. Customers don't browse anymore. They ask. And businesses that cannot respond instantly will lose to businesses that can. Check it out: https://theolleh.com Warm Regards, — Muhammad Lindeman Olleh AI When you decide not to receive any more correspondence from this campaign, please fill show less	Phishing Web Spam
🇱🇻 garmtech.com	2026-05-13 06:01:14 (3 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-01.104.207.37.97.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-01.104.207.37.97.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-03 23:36:12 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-36.104.207.37.97.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-36.104.207.37.97.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇪🇸 librebit	2026-04-03 12:20:01 (2 months ago)	Brute force	Brute-Force
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇱🇻 garmtech.com	2026-03-06 05:11:14 (3 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-11.104.207.37.97.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-11.104.207.37.97.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-02-24 01:19:01 (3 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
Anonymous	2026-01-20 01:17:28 (4 months ago)	Fail2ban: all-services - 2026/01/08 05:08:47104.207.37.97 - - [08/Jan/2026:06:22:53 -0500] "GET /.en ... show more Fail2ban: all-services - 2026/01/08 05:08:47104.207.37.97 - - [08/Jan/2026:06:22:53 -0500] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" "104.207.37.97" attempts show less	Hacking Web App Attack
🇺🇸 mind5t0rm	2026-01-19 06:27:19 (4 months ago)	(WPLOGIN) WP Login Attack 104.207.37.97 (US/United States/-): 3 in the last 3600 secs; Ports: ; Dir ... show more (WPLOGIN) WP Login Attack 104.207.37.97 (US/United States/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 104.207.37.97 - - [19/Jan/2026:13:26:50 +0700] "GET /wp-login.php?wp_lang=en_US HTTP/1.1" 200 2466 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.207 Safari/537.36" 104.207.37.97 - - [19/Jan/2026:13:26:51 +0700] "POST /wp-login.php?wp_lang=en_US HTTP/1.1" 302 0 "https://zerowaterthailand.com/wp-login.php?wp_lang=en_US" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.207 Safari/537.36" 104.207.37.97 - - [19/Jan/2026:13:27:16 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Fwww.zerowaterthailand.com%2Fwp-admin%2F&reauth=1 HTTP/1.1" 200 2463 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.207 Safari/537.36" show less	Port Scan
Anonymous	2026-01-12 02:18:06 (4 months ago)	Fail2ban: all-services - 2026/01/08 05:08:47104.207.37.97 - - [08/Jan/2026:06:22:53 -0500] "GET /.en ... show more Fail2ban: all-services - 2026/01/08 05:08:47104.207.37.97 - - [08/Jan/2026:06:22:53 -0500] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" "104.207.37.97" attempts show less	Hacking Web App Attack
🇮🇩 securejdprop	2025-12-29 04:24:21 (5 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO Request to ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO Request to Hidden Environment File - Inbound). Ip 104.207.37.97 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2025-12-29 04:24:20.584123944 +0000 UTC show less	Web App Attack
Anonymous	2025-11-28 08:47:44 (6 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.28 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.28 is noted in report timestamp show less	Hacking Brute-Force
🇱🇻 garmtech.com	2025-11-26 06:16:26 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack

Showing 1 to 15 of 165 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 181.0.214.136

🇺🇸 167.89.3.71

🇺🇸 165.154.254.143

🇺🇸 162.216.149.13

🇸🇬 162.158.88.127

🇨🇦 154.3.163.26

🇺🇸 99.92.204.98

🇳🇱 45.148.10.157

🇬🇧 35.203.210.196

🇨🇳 14.103.34.138

🇨🇳 218.21.250.151

🇺🇸 207.90.244.12

🇧🇷 205.210.31.219

🇺🇸 205.210.31.73

🇳🇱 204.76.203.81

🇭🇰 203.198.173.137

🇨🇳 182.150.58.250

🇸🇬 162.158.88.170

🇵🇭 136.158.102.13

🇳🇱 85.121.127.124