JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.104

104.207.38.104 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.104

Whois 104.207.38.104

IP Abuse Reports for 104.207.38.104:

This IP address has been reported a total of 147 times from 17 distinct sources. 104.207.38.104 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-04-18 13:46:33 (2 months ago)	[Sat Apr 18 15:46:33.498246 2026] [authz_core:error] [pid 560721:tid 560751] [remote 104.207.38.104: ... show more [Sat Apr 18 15:46:33.498246 2026] [authz_core:error] [pid 560721:tid 560751] [remote 104.207.38.104:47719] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇵🇱 sefinek.net	2025-12-30 08:19:46 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-11 02:06:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 21:06:34.987830 2025] [security2:error] [pid 28111:tid 28132] [client 104.207.38.104:50045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royaleconomicsacademy.com"] [uri "/.git/HEAD"] [unique_id "aTonKuhOE4dgCR94eDoFswAAARE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 06:19:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 01:19:40.150794 2025] [security2:error] [pid 24834:tid 24883] [client 104.207.38.104:20743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "humaehealth.com"] [uri "/.svn/wc.db"] [unique_id "aTe_fC28rdDCgPRE9moMzgAAAU0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 09:47:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 04:47:18.557188 2025] [security2:error] [pid 24344:tid 24344] [client 104.207.38.104:13129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limegreenvinyl.com"] [uri "/.svn/wc.db"] [unique_id "aTaepp8hAz9XFymYCsRtKwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 19:26:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 14:26:27.916098 2025] [security2:error] [pid 30113:tid 30113] [client 104.207.38.104:38549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "upperbearcreek.net"] [uri "/.svn/wc.db"] [unique_id "aTSDY57VtZ4or4DeT9SBuAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 07:39:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 02:39:33.773944 2025] [security2:error] [pid 23808:tid 23808] [client 104.207.38.104:59863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caringforwomenlq.com"] [uri "/.svn/wc.db"] [unique_id "aTKMNRNrUTRoQmxIAbdOlQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:25:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:25:10.651806 2025] [security2:error] [pid 5238:tid 5238] [client 104.207.38.104:49291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sherinemec-wies.com"] [uri "/.env"] [unique_id "aTJQlp2q9b0Z-kbnD7C6-QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-30 20:05:31 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 05:27:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:27:08.709276 2025] [security2:error] [pid 17803:tid 17803] [client 104.207.38.104:56615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.intersystems-aircargo.com"] [uri "/.git/HEAD"] [unique_id "aSU-LF2-edI5JwBLKRyRaQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:52:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:52:13.506975 2025] [security2:error] [pid 12514:tid 12514] [client 104.207.38.104:18049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.tortoisehosting.com"] [uri "/.env"] [unique_id "aSU1_dmaGvDRUqCYKIUQAgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:09:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:08:59.116381 2025] [security2:error] [pid 3933:tid 3933] [client 104.207.38.104:37807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.robcruickshank.net"] [uri "/.git/HEAD"] [unique_id "aSUr2yWBoR4cCy-6eVGqXAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:03:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:03:01.975614 2025] [security2:error] [pid 27727:tid 27737] [client 104.207.38.104:34549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.seips.org"] [uri "/.svn/wc.db"] [unique_id "aSUcZfeXMnwYTnmV60Pb8AAAAMg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:42:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:42:05.726849 2025] [security2:error] [pid 23182:tid 23182] [client 104.207.38.104:57161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.grantjennings.com"] [uri "/.git/HEAD"] [unique_id "aSUXfR9DPwl6wPCoVx09iQAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:08:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:08:11.490772 2025] [security2:error] [pid 9313:tid 9313] [client 104.207.38.104:44301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cliniquecavalancia.com"] [uri "/.svn/wc.db"] [unique_id "aSUPi_dttzYi3oTpCwyWJAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 79.124.40.110

🇫🇷 2a05:d012:54b:1d00:643b:34a1:bbd5:993c

🇺🇸 216.25.89.74

🇳🇱 192.42.116.13

🇨🇳 183.66.166.30

🇨🇲 154.70.102.114

🇫🇷 141.94.19.216

🇺🇸 138.197.121.39

🇺🇸 136.144.35.103

🇨🇳 116.1.197.106

🇮🇩 115.85.80.12

🇨🇳 111.36.152.14

🇫🇷 85.217.140.16

🇺🇸 44.111.241.75

🇺🇸 40.71.90.11

🇩🇪 213.209.159.231

🇷🇴 141.98.83.240

🇨🇳 101.26.28.94

🇰🇷 59.22.201.143

🇺🇸 44.126.237.218