JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.40.143

104.207.40.143 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 9%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.40.143

Whois 104.207.40.143

IP Abuse Reports for 104.207.40.143:

This IP address has been reported a total of 149 times from 20 distinct sources. 104.207.40.143 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nowyouknow	2026-05-16 12:33:03 (3 weeks ago)	(From [email protected]) Hi Smith Family Chiropractic, I wanted to bump this in cas ... show more (From [email protected]) Hi Smith Family Chiropractic, I wanted to bump this in case you missed it — I built an AI agent just for Smith Family Chiropractic, trained on your website, Google info, and everything I could find. It’s ready to answer customer questions, book appointments, and even follow up automatically. On average, our agents help increase leads by 17% without any work needed on your part. Again, this isn’t a pitch — just 20 minutes to test-drive your new AI employee. Here’s the link to book a time: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇧🇪 cmbplf	2026-05-07 16:42:28 (1 month ago)	226 requests with url.path *.env	Brute-Force Bad Web Bot
🇳🇱 jjnxpct	2026-02-16 04:54:39 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /site/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:01:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:01:18.753886 2026] [security2:error] [pid 19920:tid 19920] [client 104.207.40.143:27717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pamplonaserviciotecnico.com"] [uri "/.env"] [unique_id "aZG1jvvkTM-_6XeKKX3mbQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 11:23:53 (3 months ago)	104.207.40.143 - - [15/Feb/2026:11:23:44 +0000] "GET /.env.staging HTTP/1.1" 302 622 "-" "Mozilla/5. ... show more 104.207.40.143 - - [15/Feb/2026:11:23:44 +0000] "GET /.env.staging HTTP/1.1" 302 622 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:21:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:20:58.403505 2026] [security2:error] [pid 8725:tid 8725] [client 104.207.40.143:11517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sellitwithsteve.com"] [uri "/api/.git/config"] [unique_id "aZGsGgKWZKEYKd5j_fEM_gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:59:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:59:05.654048 2026] [security2:error] [pid 2771629:tid 2771629] [client 104.207.40.143:14557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "osmanhc.com"] [uri "/new/.git/config"] [unique_id "aZGm-VcPVo3P6eElGp31agAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:27:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:27:48.946314 2026] [security2:error] [pid 2563:tid 2563] [client 104.207.40.143:44485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "onyxcc.com"] [uri "/backup/.git/config"] [unique_id "aZFnZNxDmUb-0VZ4Kga5NAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 05:51:50 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.40.143 (US/United States/-)	SQL Injection
🇺🇸 myagent.site	2026-02-15 05:33:16 (3 months ago)	Blocking for trying to access an exploit file: /.env.staging	Hacking
🇺🇸 TPI-Abuse	2026-02-15 05:27:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:27:12.900433 2026] [security2:error] [pid 10964:tid 10964] [client 104.207.40.143:37793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohanameetup.party"] [uri "/app/.env"] [unique_id "aZFZMH_-nGY3Qrkg43MM6QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:29:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:29:15.777438 2026] [security2:error] [pid 15147:tid 15147] [client 104.207.40.143:52463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandiego1on1strippers.com"] [uri "/v2/.git/config"] [unique_id "aZFLmyaTyVIyn-ccskSm9QAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:48:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:48:27.135545 2026] [security2:error] [pid 1279362:tid 1279362] [client 104.207.40.143:17683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "northcoastgolfden.com"] [uri "/site/.git/config"] [unique_id "aZFCC7JXak5Pu4OnObYwZgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:59:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:59:50.008167 2026] [security2:error] [pid 20815:tid 20815] [client 104.207.40.143:50225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pixelspective.com"] [uri "/app/.git/config"] [unique_id "aZEoliPv1rk9GLaX-N2HzgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:34:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:34:29.312301 2026] [security2:error] [pid 25722:tid 25722] [client 104.207.40.143:9381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "needtoorderforms.com"] [uri "/new/.git/config"] [unique_id "aZEipUqcPYtzrEr4Y6MywQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 188.114.97.3

🇳🇱 141.11.62.23

🇩🇪 213.209.159.56

🇧🇷 205.210.31.140

🇵🇭 203.177.28.190

🇨🇳 171.37.92.197

🇺🇸 162.216.149.38

🇭🇰 118.26.36.248

🇧🇩 103.191.178.42

🇻🇳 103.176.20.115

🇭🇰 103.146.159.173

🇳🇱 45.148.10.152

🇰🇷 43.164.190.238

🇺🇸 2602:80d:1007::2d

🇩🇪 192.109.200.78

🇨🇭 179.43.146.227

🇧🇷 177.18.8.135

🇺🇸 109.105.209.13

🇫🇷 88.188.230.13

🇮🇳 61.3.84.90