JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.102

104.207.38.102 was found in our database!

This IP was reported 160 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.102

Whois 104.207.38.102

IP Abuse Reports for 104.207.38.102:

This IP address has been reported a total of 160 times from 25 distinct sources. 104.207.38.102 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-23 04:39:08 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-03-13 11:40:11 (2 months ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-03-09 20:07:07 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2026-02-15 13:05:49 (3 months ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:56:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:56:39.484098 2026] [security2:error] [pid 11342:tid 11342] [client 104.207.38.102:9443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serpentstudios.com"] [uri "/dev/.git/config"] [unique_id "aZG0dwuaqoq_kICfY58bJAAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:58:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:58:40.472049 2026] [security2:error] [pid 4140:tid 4140] [client 104.207.38.102:23375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ospectra.com"] [uri "/.env.save"] [unique_id "aZGm4E_6IAZ4khs1GaJgAQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 07:06:00 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:31:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:31:31.442461 2026] [security2:error] [pid 8481:tid 8481] [client 104.207.38.102:58601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "proplanarchitects.com"] [uri "/backup/.git/config"] [unique_id "aZFoQxqACLBEFUw0VLcIHAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:49:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:49:43.489095 2026] [security2:error] [pid 18050:tid 18050] [client 104.207.38.102:36779] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scermak.com"] [uri "/.git/config"] [unique_id "aZFed_0cui8WmO-tYbXh8wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:27:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:27:13.488343 2026] [security2:error] [pid 184121:tid 184196] [client 104.207.38.102:38159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "number1synthetic.com"] [uri "/dev/.git/config"] [unique_id "aZFLITQWjcuk3jEODCU9JgAAAcw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:00:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:00:31.465091 2026] [security2:error] [pid 14724:tid 14724] [client 104.207.38.102:23837] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "potamus.net"] [uri "/new/.git/config"] [unique_id "aZFE3xYHowixyaMGjx4rQAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-02-15 03:35:04 (3 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:08:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:08:41.239353 2026] [security2:error] [pid 1231547:tid 1231547] [client 104.207.38.102:13875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "niximperial.com"] [uri "/dev/.git/config"] [unique_id "aZE4ubBHCZthupbaZfd5WgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:53:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:52:56.456548 2026] [security2:error] [pid 2297:tid 2297] [client 104.207.38.102:57899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rx-art.com"] [uri "/.env.local"] [unique_id "aZE1CEC3W7P5BGPaiJGlqQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:29:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:29:20.356430 2026] [security2:error] [pid 959:tid 959] [client 104.207.38.102:57251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nexthop.com"] [uri "/v2/.git/config"] [unique_id "aZEvgAL7RWdzAfngaSpQUAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 160 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇺 202.123.26.150

🇲🇽 187.191.48.24

🇱🇰 123.231.126.223

🇷🇸 77.105.37.219

🇳🇱 34.7.155.1

🇨🇳 14.103.112.110

🇺🇸 216.218.206.113

🇹🇼 212.115.54.84

🇰🇷 211.45.163.178

🇭🇳 181.115.7.203

🇺🇸 165.154.173.97

🇺🇸 162.216.149.192

🇮🇳 122.187.229.220

🇺🇸 65.49.1.207

🇳🇱 34.12.190.154

🇺🇸 3.145.0.81

🇺🇸 2604:a940:301:225:0:1c::

🇹🇼 192.178.36.152

🇺🇸 162.216.150.54

🇩🇪 151.243.11.35