JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.229

104.207.38.229 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.229

Whois 104.207.38.229

IP Abuse Reports for 104.207.38.229:

This IP address has been reported a total of 142 times from 19 distinct sources. 104.207.38.229 was first reported on June 7th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-02-25 22:45:47 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-22 21:10:20 (3 months ago)	Form spam	Web Spam
🇵🇱 sefinek.net	2026-02-20 21:06:44 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 oncord	2026-02-19 20:13:37 (4 months ago)	Form spam	Web Spam
🇳🇱 homeshowdomain.nl	2026-02-18 22:59:49 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-18	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-02-18 02:24:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 21:23:55.814597 2026] [security2:error] [pid 23398:tid 23398] [client 104.207.38.229:46339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reneehill.net"] [uri "/wp/.git/config"] [unique_id "aZUiu41Uj3VZRvRt2q9tfQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 02:05:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 21:05:03.052538 2026] [security2:error] [pid 20800:tid 20800] [client 104.207.38.229:44961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "register-yacht-greece.com"] [uri "/test/.git/config"] [unique_id "aZUeT1pbZUmdMFXvRgLEZAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-18 01:04:32 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.38.229 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.38.229 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇩🇪 F242	2026-01-30 05:55:03 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
Anonymous	2025-12-09 13:13:45 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-07 12:35:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:34:55.895033 2025] [security2:error] [pid 20016:tid 20016] [client 104.207.38.229:42363] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carmichaellaw.org"] [uri "/.svn/wc.db"] [unique_id "aTV0b5G5kLznF6YPRgwznwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 03:33:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 22:32:55.224986 2025] [security2:error] [pid 12085:tid 12085] [client 104.207.38.229:30127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "proyectomanhattan.info"] [uri "/.env"] [unique_id "aTOj54aXbIeTS8g1aN9W5AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:47:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:47:04.763266 2025] [security2:error] [pid 19579:tid 19579] [client 104.207.38.229:13157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "glaswood.com"] [uri "/.env"] [unique_id "aTJHqKT9dC4nCGDMB53j4AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2025-12-02 05:31:41 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /user/register/ UA: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 09:31:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:31:32.533809 2025] [security2:error] [pid 9223:tid 9223] [client 104.207.38.229:40541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.orborienting.com"] [uri "/.git/HEAD"] [unique_id "aSQl9Mf6BIsTiNYkc32bdwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 2a09:bac1:6560:8::3c1:6

🇺🇸 2607:f8b0:4001:c34::123

🇮🇶 169.224.25.174

🇭🇰 156.245.246.50

🇨🇳 153.0.50.39

🇻🇳 113.190.213.184

🇻🇳 113.183.165.249

🇺🇸 107.144.168.65

🇮🇳 106.192.85.253

🇫🇮 45.154.244.2

🇨🇳 42.177.131.143

🇬🇧 35.203.211.83

🇧🇷 20.206.64.115

🇰🇷 14.63.196.175

🇹🇼 198.235.24.122

🇳🇱 185.223.235.2

🇳🇱 176.65.149.30

🇩🇪 164.92.249.85

🇺🇸 162.216.149.49

🇸🇪 122.8.44.97