JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.40.68

104.207.40.68 was found in our database!

This IP was reported 154 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.40.68

Whois 104.207.40.68

IP Abuse Reports for 104.207.40.68:

This IP address has been reported a total of 154 times from 26 distinct sources. 104.207.40.68 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-03-20 00:43:07 (2 months ago)	Brute force	Brute-Force
🇦🇺 MAGIC	2026-03-05 00:29:32 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-01-10 04:56:11 (4 months ago)	APTUDE WEBFORM SPAM 104.207.40.68 (104.207.40.68)	Web Spam
🇺🇸 oncord	2026-01-08 03:15:14 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-01-07 02:51:40 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-12-21 08:42:13 (5 months ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2025-12-12 06:39:07 (5 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-39.104.207.40.68.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-39.104.207.40.68.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 oncord	2025-12-10 05:05:25 (5 months ago)	Form spam	Web Spam
Anonymous	2025-12-03 05:51:38 (6 months ago)	botnet	DDoS Attack
🇺🇸 nowyouknow	2025-11-28 03:22:08 (6 months ago)	(From [email protected]) Interested in seeing how daily email automation generates cash? ... show more (From [email protected]) Interested in seeing how daily email automation generates cash? See https://rb.gy/uxe0l2 show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-26 09:03:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:03:37.922812 2025] [security2:error] [pid 2164:tid 2164] [client 104.207.40.68:23905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.sscsco.com"] [uri "/.svn/wc.db"] [unique_id "aSbCaUFPQ_ED_T-ekWPMKgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:35:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:35:39.675009 2025] [security2:error] [pid 10088:tid 10088] [client 104.207.40.68:13891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.insidepublications.com"] [uri "/.svn/wc.db"] [unique_id "aSa72-oYQrdvBVNqCQsTkwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:15:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:14:54.461239 2025] [security2:error] [pid 31733:tid 31733] [client 104.207.40.68:20839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.biographicalpainting.com"] [uri "/.svn/wc.db"] [unique_id "aSaa3p96FbAQaFO_iQZ74QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:04:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:04:44.153305 2025] [security2:error] [pid 4476:tid 4476] [client 104.207.40.68:47471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emmpftp.tremulant.com"] [uri "/.env"] [unique_id "aSZuTBlyIEvv3kUR3SeSfwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:26:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.40.68 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:25:59.272211 2025] [security2:error] [pid 5677:tid 5677] [client 104.207.40.68:57297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.benlbrown.com"] [uri "/.svn/wc.db"] [unique_id "aSZlN33s_nBj54UEoSICyQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 154 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 187.50.226.182

🇨🇳 180.113.65.133

🇳🇱 176.65.148.147

🇺🇸 154.83.197.108

🇺🇸 146.190.215.195

🇭🇰 146.70.79.47

🇺🇸 142.251.15.95

🇳🇱 45.148.10.240

🇺🇸 216.25.89.119

🇩🇪 195.254.165.23

🇧🇷 177.104.171.149

🇭🇰 144.48.243.18

🇵🇰 144.48.121.126

🇨🇦 104.158.48.89

🇱🇹 81.30.98.144

🇿🇦 41.78.245.41

🇳🇱 31.42.176.142

🇺🇸 172.253.210.85

🇺🇸 172.234.237.248

🇧🇷 170.247.241.197