JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.39.183

104.207.39.183 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.39.183

Whois 104.207.39.183

IP Abuse Reports for 104.207.39.183:

This IP address has been reported a total of 145 times from 15 distinct sources. 104.207.39.183 was first reported on June 7th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-04-26 08:32:18 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 11-32.104.207.39.183.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 11-32.104.207.39.183.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇫🇷 masterguru	2026-03-30 07:42:18 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.39.183 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.39.183 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-03-25 18:33:27 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.39.183 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.39.183 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-03-12 22:30:17 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 10:37:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 05:37:17.688555 2026] [security2:error] [pid 8433:tid 8433] [client 104.207.39.183:14329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.horizonsoundchicago.com"] [uri "/.env"] [unique_id "aWtmXamHcBRHZB15wx7KgQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 07:31:02 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 17 02:30:55.379719 2026] [security2:error] [pid 5787:tid 5787] [client 104.207.39.183:17973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bamedica.com"] [uri "/.env"] [unique_id "aWs6r3MFzORDLCLlrkVfcQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 04:59:42 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 23:59:36.106105 2026] [security2:error] [pid 31383:tid 31383] [client 104.207.39.183:22593] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.thereddoorlounge.com"] [uri "/.env"] [unique_id "aWsXOOecjWEbE82XfvsVYAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 03:15:23 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 22:15:19.581460 2026] [security2:error] [pid 8098:tid 8125] [client 104.207.39.183:54631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pereclemente.com"] [uri "/.env"] [unique_id "aWr-xw0cFPRjz66bMWHofwAAAJY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-17 01:09:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 20:09:05.829117 2026] [security2:error] [pid 4081696:tid 4081810] [client 104.207.39.183:30281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.anna.salvoni.com"] [uri "/.env"] [unique_id "aWrhMZeYceS86n1gsis3AQAAAlQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 COMPLEX	2025-12-14 23:07:46 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
Anonymous	2025-12-14 15:04:03 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 06:50:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:50:46.525423 2025] [security2:error] [pid 16741:tid 16752] [client 104.207.39.183:14829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.i-masmx.com"] [uri "/.env"] [unique_id "aSajRh0iM_MjIA1Wx896zgAAAQk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:03:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:03:42.578010 2025] [security2:error] [pid 2650:tid 2663] [client 104.207.39.183:55425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.rbarw.com"] [uri "/.svn/wc.db"] [unique_id "aSaYPqcpXMNW-93ob63OTQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:05:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:04:59.201582 2025] [security2:error] [pid 22144:tid 22144] [client 104.207.39.183:15105] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kulacenterky.com"] [uri "/.env"] [unique_id "aSaKew-NS4JZnuMZRt_VOgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:36:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:36:20.268285 2025] [security2:error] [pid 21285:tid 21285] [client 104.207.39.183:20123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dianamead.com"] [uri "/.git/HEAD"] [unique_id "aSZZlAQl28BIrtzk-m1HBQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.82

🇭🇰 45.192.184.50

🇬🇧 35.203.211.30

🇷🇺 217.197.236.114

🇺🇸 195.184.76.217

🇮🇶 169.224.89.123

🇵🇭 122.54.227.170

🇪🇪 109.206.241.199

🇺🇸 97.107.129.112

🇫🇷 88.185.14.121

🇧🇬 79.124.62.230

🇹🇼 61.223.79.45

🇱🇹 45.227.254.170

🇺🇸 40.124.185.206

🇧🇪 34.53.146.8

🇧🇪 34.22.226.135

🇺🇸 20.65.192.214

🇨🇦 15.235.27.44

🇺🇸 216.25.89.92

🇨🇳 183.153.32.85