JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.167.25.141

104.167.25.141 was found in our database!

This IP was reported 57 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.167.25.141

Whois 104.167.25.141

IP Abuse Reports for 104.167.25.141:

This IP address has been reported a total of 57 times from 21 distinct sources. 104.167.25.141 was first reported on October 23rd 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-24 00:12:18 (4 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 oncord	2026-01-02 02:28:56 (5 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2026-01-01 14:35:29 (5 months ago)	(From [email protected]) Hello there, Managing digital marketing tasks every day is de ... show more (From [email protected]) Hello there, Managing digital marketing tasks every day is demanding. For only $250/month, you can bring on a trained Digital Marketing Assistant who works 8+ hours daily on SEO, ads, email campaigns, social media, and routine business operations. We also offer your first month free, so you can test their performance without risk. Fill the Google form below to claim your free one month full time virtual assistant Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:43 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 oncord	2025-12-23 06:17:49 (5 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-02 22:22:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:22:35.405853 2025] [security2:error] [pid 10868:tid 10868] [client 104.167.25.141:52655] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "socialalchemy.com"] [uri "/.git/HEAD"] [unique_id "aS9mq-LN1UOv9t8Ufh5CnAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 21:42:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:42:49.263105 2025] [security2:error] [pid 3353:tid 3353] [client 104.167.25.141:25407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nauticalchristmascards.com"] [uri "/.env"] [unique_id "aS9dWVvKxV5T3_v5BNJWoAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:07:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:07:10.777401 2025] [security2:error] [pid 8155:tid 8155] [client 104.167.25.141:29795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deubellzebub.com"] [uri "/.svn/wc.db"] [unique_id "aS6QHoLtUzX3s-nM7zBEBwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:09:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:09:02.966608 2025] [security2:error] [pid 12488:tid 12488] [client 104.167.25.141:13727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "morninginc.com"] [uri "/.git/HEAD"] [unique_id "aS5mXmH_vexWmawsgPcRMAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:13:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:13:34.328787 2025] [security2:error] [pid 32083:tid 32097] [client 104.167.25.141:11677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.joshuapaulweckesser.com"] [uri "/.svn/wc.db"] [unique_id "aSbg3kswSQfOe5OvGk0x1gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:37:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:37:14.215421 2025] [security2:error] [pid 20000:tid 20000] [client 104.167.25.141:58205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.book-arts.com"] [uri "/.svn/wc.db"] [unique_id "aSa8OqHpkJ459VTeoujBAwAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:17:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:17:25.750874 2025] [security2:error] [pid 18951:tid 18951] [client 104.167.25.141:13561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.xtcdesigns.com"] [uri "/.svn/wc.db"] [unique_id "aSaNZc_nfxQ0lY7aMGnjdwAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:51:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:51:33.900601 2025] [security2:error] [pid 9612:tid 9612] [client 104.167.25.141:45969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.artfranz.com"] [uri "/.env"] [unique_id "aSQAdTQ-W67E8wfatxRd6wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:48:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:48:37.353535 2025] [security2:error] [pid 16340:tid 16340] [client 104.167.25.141:42907] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.vrbsroma.com"] [uri "/.git/HEAD"] [unique_id "aSPxtY10y014LdrOuLHEFgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:51:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.167.25.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:51:37.149900 2025] [security2:error] [pid 3314642:tid 3314642] [client 104.167.25.141:43439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.groux.net"] [uri "/.env"] [unique_id "aSPkWX6I68idCp92n8ZC3gAAABg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 57 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.248.243.247

🇺🇸 172.237.156.206

🇧🇪 144.86.173.121

🇺🇸 66.132.186.176

🇧🇷 186.251.163.116

🇨🇳 114.217.10.60

🇺🇸 104.243.38.227

🇺🇸 64.62.197.187

🇫🇮 46.62.157.119

🇬🇧 193.163.125.180

🇲🇽 186.96.145.241

🇧🇷 170.238.105.197

🇺🇸 169.197.54.24

🇺🇸 165.154.218.201

🇺🇸 154.83.197.140

🇵🇰 103.117.162.67

🇮🇳 103.89.55.59

🇩🇪 43.228.157.9

🇨🇳 27.153.157.138

🇮🇷 2.183.6.200