JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.249

104.207.38.249 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.249

Whois 104.207.38.249

IP Abuse Reports for 104.207.38.249:

This IP address has been reported a total of 145 times from 17 distinct sources. 104.207.38.249 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-13 23:23:21 (3 weeks ago)	Multiple failed login attemps RDS-Web-Access-Server	Brute-Force Web App Attack
Anonymous	2026-04-14 11:41:02 (1 month ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-03-08 18:57:42 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇬🇧 relianoid.com	2026-02-24 14:38:28 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-13 13:55:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:54:59.910051 2026] [security2:error] [pid 7363:tid 7363] [client 104.207.38.249:11971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leanoperationsmanagement.com"] [uri "/.env.local"] [unique_id "aY8tM8L5qaGeD5y7iuWGXwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-13 13:40:28 (3 months ago)	Multiple WAF Violations	Web App Attack
Anonymous	2026-02-13 09:16:42 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇺🇸 TPI-Abuse	2026-02-13 09:15:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:15:05.146101 2026] [security2:error] [pid 30505:tid 30505] [client 104.207.38.249:45175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mewebdesign.com"] [uri "/app/.env"] [unique_id "aY7rmSymFC_C_4MpC7OS0QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:10:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:10:10.761162 2026] [security2:error] [pid 14972:tid 14972] [client 104.207.38.249:46281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcdesigner.com"] [uri "/v2/.git/config"] [unique_id "aY7AQp97sypiI9dVPSbpUQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:19:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:19:01.865617 2026] [security2:error] [pid 1185:tid 1185] [client 104.207.38.249:54111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matteozacchino.dev"] [uri "/new/.git/config"] [unique_id "aY60Rck5moTF7JkMfZmpNgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:58:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:58:45.966436 2026] [security2:error] [pid 1908033:tid 1908089] [client 104.207.38.249:38357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "masterscertification.com"] [uri "/test/.git/config"] [unique_id "aY6vhU7msqS-ZlYUbK7WGAAAAZI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 04:32:16 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-02-13 03:48:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:48:07.840284 2026] [security2:error] [pid 2572696:tid 2572696] [client 104.207.38.249:46623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "markaandrews.com"] [uri "/wp/.git/config"] [unique_id "aY6e98VvnwI65ZSsH-RI-gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 akasolutions.de	2026-02-13 03:13:54 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.38.249 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-13 03:06:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:06:14.514700 2026] [security2:error] [pid 22302:tid 22302] [client 104.207.38.249:17661] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mapleleaf-marketing.com"] [uri "/.env.production"] [unique_id "aY6VJvR_6cjRbtOt6hzrzAAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a03:2880:24ff:43::

🇨🇳 223.247.46.126

🇩🇪 213.209.159.56

🇮🇳 183.83.169.74

🇨🇳 101.249.63.99

🇧🇬 91.191.209.46

🇳🇱 45.148.10.141

🇬🇧 197.155.92.35

🇺🇸 136.109.10.98

🇮🇳 103.91.246.101

🇳🇱 45.142.193.185

🇨🇴 200.41.113.82

🇭🇰 199.45.154.180

🇨🇳 117.81.212.152

🇺🇸 107.172.80.207

🇺🇸 103.251.27.175

🇮🇳 103.148.121.101

🇨🇳 101.76.248.214

🇸🇾 94.47.13.24

🇺🇸 66.132.224.15