JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.75

104.207.38.75 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.75

Whois 104.207.38.75

IP Abuse Reports for 104.207.38.75:

This IP address has been reported a total of 139 times from 17 distinct sources. 104.207.38.75 was first reported on June 7th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 10dencehispahard SL	2025-12-29 11:01:12 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇦🇺 MAGIC	2025-12-29 03:08:37 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-27 04:50:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 23:50:28.216423 2025] [security2:error] [pid 18077:tid 18077] [client 104.207.38.75:38159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.aoklandco.com"] [uri "/.env"] [unique_id "aSfYlEL0FBPWj24BDZbTrAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 09:26:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:25:57.092528 2025] [security2:error] [pid 24512:tid 24512] [client 104.207.38.75:40371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.syvox.net"] [uri "/.env"] [unique_id "aSbHpSPnEr3M0ZVoLtBdZAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:50:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:50:43.505679 2025] [security2:error] [pid 9652:tid 9652] [client 104.207.38.75:28287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.barigby.com"] [uri "/.git/HEAD"] [unique_id "aSa_YyILA49lTDWazyCtlgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:40:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:40:17.973177 2025] [security2:error] [pid 14225:tid 14303] [client 104.207.38.75:41755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cityofmiddleton.org"] [uri "/.git/HEAD"] [unique_id "aSVPUQG4GY_wH_FiM6O8egAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:28:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:28:24.467270 2025] [security2:error] [pid 10619:tid 10723] [client 104.207.38.75:36941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.scribblism.com"] [uri "/.svn/wc.db"] [unique_id "aSU-eAXcnVrJOg7V-2J9TgAAARE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:51:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:51:35.904809 2025] [security2:error] [pid 9366:tid 9366] [client 104.207.38.75:41679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.alanmariotti.com"] [uri "/.env"] [unique_id "aSU115HJ8_WejtMPGymCbQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:21:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:21:52.239554 2025] [security2:error] [pid 786261:tid 786261] [client 104.207.38.75:48135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.hills-tax.com"] [uri "/.svn/wc.db"] [unique_id "aSUu4HYQhXmMfz5NI8b2LAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:59:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:59:04.096550 2025] [security2:error] [pid 10697:tid 10697] [client 104.207.38.75:14251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.jimgrenier.com"] [uri "/.env"] [unique_id "aSUpiJBmwz9fxD151lrfDAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:38:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:38:03.449886 2025] [security2:error] [pid 23528:tid 23528] [client 104.207.38.75:37737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.myclassicvw.com"] [uri "/.svn/wc.db"] [unique_id "aSUkmz-T8OGTkK5EVAwCGgAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:52:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:52:45.209925 2025] [security2:error] [pid 9639:tid 9639] [client 104.207.38.75:29973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.gamepart.com"] [uri "/.svn/wc.db"] [unique_id "aSUZ_dxO4uP2XUL4yzfTOQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:06:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.75 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:06:28.212314 2025] [security2:error] [pid 21771:tid 21771] [client 104.207.38.75:47221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.tag-scaffolding.com"] [uri "/.git/HEAD"] [unique_id "aSUPJJ2l7HSCsaH952_U9gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 loadsoporte	2025-11-24 22:23:18 (6 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇩🇪 Marc	2025-10-29 20:27:15 (7 months ago)		Brute-Force

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 206.189.234.56

🇲🇴 182.93.50.90

🇮🇳 122.187.227.152

🇨🇳 106.117.114.44

🇺🇸 67.85.82.1

🇺🇸 66.132.195.93

🇳🇱 45.148.10.152

🇮🇩 38.253.239.21

🇳🇱 178.62.192.152

🇻🇳 115.84.183.240

🇵🇰 103.164.9.74

🇻🇳 103.75.183.177

🇺🇸 64.227.11.252

🇨🇳 14.103.117.116

🇩🇪 213.209.159.226

🇪🇨 186.68.83.105

🇸🇪 185.153.55.22

🇨🇳 175.30.48.25

🇨🇳 124.117.194.105

🇳🇱 109.70.73.185