JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.167.25.121

104.167.25.121 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.167.25.121

Whois 104.167.25.121

IP Abuse Reports for 104.167.25.121:

This IP address has been reported a total of 40 times from 20 distinct sources. 104.167.25.121 was first reported on October 19th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 2000cn.com.au	2026-02-11 21:04:34 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇪🇸 10dencehispahard SL	2026-02-10 05:00:52 (3 months ago)	Unauthorized login attempts [ accesslogs]	Brute-Force
Anonymous	2025-12-13 11:51:12 (5 months ago)	botnet	DDoS Attack
🇫🇷 Eldeberen	2025-11-29 16:04:54 (6 months ago)	Vulnerability scan attempt through HTTP protocol	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:15:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:15:08.551711 2025] [security2:error] [pid 7966:tid 7966] [client 104.167.25.121:10149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.menagri.com"] [uri "/.env"] [unique_id "aSa3DFhPm8bW23MLyDnaHgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:41:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:41:19.512467 2025] [security2:error] [pid 24436:tid 24436] [client 104.167.25.121:12615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bayinsights.com"] [uri "/.env"] [unique_id "aSZavwljrS68hhWRl08_AQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:15:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:15:46.560721 2025] [security2:error] [pid 32003:tid 32021] [client 104.167.25.121:47667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.jazzzcatz.com"] [uri "/.env"] [unique_id "aSZUwjKMur_mjuXzQQ9L4AAAARA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:27:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:27:31.018504 2025] [security2:error] [pid 8805:tid 8805] [client 104.167.25.121:54207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.campcirclestar.com"] [uri "/.svn/wc.db"] [unique_id "aSQW83u7g2MyVl5EsCf8pgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:42:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:41:56.403390 2025] [security2:error] [pid 10695:tid 10788] [client 104.167.25.121:42589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.honorac.com"] [uri "/.svn/wc.db"] [unique_id "aSP-NCFZz-lT68YT4kPUgQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:13:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:13:13.585639 2025] [security2:error] [pid 10613:tid 10613] [client 104.167.25.121:26139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.amazingstructural.amazingwelding.com"] [uri "/.git/HEAD"] [unique_id "aSPpaTz36IkbBwWaIjECQgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 00:38:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 19:32:21.743231 2025] [security2:error] [pid 15822:tid 15822] [client 104.167.25.121:55853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dictionaryoffish.com"] [uri "/.git/HEAD"] [unique_id "aSOnlSuV2rg75djRF6mLbgAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇾 syokadmin	2025-11-22 08:42:13 (6 months ago)	(cpanel) Failed cPanel login from 104.167.25.121 (US/United States/-): 1 in the last 3600 secs	Brute-Force Web App Attack
Anonymous	2025-11-14 12:30:39 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 octageeks.com	2025-11-13 05:08:35 (6 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇫🇮 Shaik Sai Meera	2025-11-12 02:35:16 (6 months ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	FTP Brute-Force Open Proxy Brute-Force

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 142.251.142.234

🇮🇩 103.165.139.145

🇺🇸 96.242.127.186

🇬🇧 51.77.110.3

🇩🇪 167.94.146.73

🇻🇳 115.78.225.181

🇬🇷 83.235.16.111

🇸🇬 45.78.206.111

🇬🇧 35.203.210.95

🇬🇧 209.42.20.53

🇧🇬 193.24.211.107

🇫🇷 185.177.72.70

🇲🇴 182.93.7.194

🇳🇬 102.88.137.213

🇦🇺 58.96.159.227

🇨🇭 45.143.200.246

🇺🇸 23.129.64.196

🇰🇷 14.38.177.105

🇦🇷 186.148.224.183

🇧🇷 152.67.39.50