JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.40.127

104.207.40.127 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.40.127

Whois 104.207.40.127

IP Abuse Reports for 104.207.40.127:

This IP address has been reported a total of 139 times from 22 distinct sources. 104.207.40.127 was first reported on June 5th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 04:48:15 (2 hours ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-06-20 02:52:44 (3 days ago)	Web App Attack	Web App Attack
Anonymous	2026-05-13 22:27:41 (1 month ago)	Multiple failed login attemps RDS-Web-Access-Server	Brute-Force Web App Attack
Anonymous	2026-05-11 14:11:19 (1 month ago)	Multiple failed login attemps RDS-Web-Access-Server	Brute-Force Web App Attack
🇬🇧 Oakley	2026-04-15 03:00:03 (2 months ago)	(antiscrape_rule) Web application abuse detected 104.207.40.127 (US/United States/-): 5 in the last ... show more (antiscrape_rule) Web application abuse detected 104.207.40.127 (US/United States/-): 5 in the last 900 secs show less	Hacking
Anonymous	2026-02-11 09:01:00 (4 months ago)	SMS pumping	DDoS Attack VPN IP Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:31:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:31:40.844481 2026] [security2:error] [pid 13305:tid 13305] [client 104.207.40.127:17071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ilanknapp.com"] [uri "/site/.git/config"] [unique_id "aYrQzO2VYGYf_Dg_H-NbpgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:01:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:01:32.737455 2026] [security2:error] [pid 23257:tid 23285] [client 104.207.40.127:44717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icbc-canada.com"] [uri "/dev/.git/config"] [unique_id "aYqtnHufXfAJQmS5a-_V4gAAAVg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:56:30 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:56:22.324174 2026] [security2:error] [pid 26288:tid 26288] [client 104.207.40.127:57985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kennedimoore.click"] [uri "/site/.git/config"] [unique_id "aYp0Jl_lIxuGpk5OZL4wAAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-09 22:59:15 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-09 22:23:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.127 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:23:36.304967 2026] [security2:error] [pid 1537256:tid 1537256] [client 104.207.40.127:28771] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotwheelguide.com"] [uri "/dev/.git/config"] [unique_id "aYpeaMBkxLMHw-Z5LeLYjQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 20:15:26 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇪🇸 10dencehispahard SL	2025-11-19 06:59:55 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-10-29 14:20:48 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-18 12:15:25 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 187.191.48.4

🇨🇳 218.94.25.243

🇻🇪 156.247.255.23

🇮🇱 147.235.221.82

🇮🇳 106.205.198.16

🇺🇸 104.234.53.114

🇵🇹 81.193.216.17

🇨🇳 60.16.203.49

🇺🇸 15.204.165.54

🇮🇳 223.184.170.176

🇨🇳 218.25.89.208

🇭🇰 199.45.154.183

🇬🇧 193.163.125.226

🇧🇷 192.141.107.142

🇮🇩 157.66.128.177

🇭🇰 118.193.37.50

🇻🇳 113.190.132.6

🇹🇼 104.199.176.250

🇪🇸 92.190.185.21

🇺🇸 62.132.18.142