JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.142

104.207.41.142 was found in our database!

This IP was reported 150 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.142

Whois 104.207.41.142

IP Abuse Reports for 104.207.41.142:

This IP address has been reported a total of 150 times from 26 distinct sources. 104.207.41.142 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-13 02:12:30 (2 months ago)	Forum/form spam	Web Spam
🇹🇷 rtbh.com.tr	2026-03-04 20:11:53 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 ambor	2026-02-18 03:59:48 (3 months ago)	Honeypot access: WordPress admin access attempt. Path: /wp-login.php	Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2026-02-17 20:11:36 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇳🇱 jjnxpct	2026-02-16 04:55:09 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /backend/.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /backend/.env] show less	Hacking Web App Attack
🇩🇪 ghostwarriors	2026-02-15 12:50:18 (3 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:23:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:23:25.331260 2026] [security2:error] [pid 1828491:tid 1828491] [client 104.207.41.142:52697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oweng.com"] [uri "/.env.save"] [unique_id "aZGsrUF7ujJd93AF-B08EQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 11:01:24 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.41.142 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.41.142 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:53:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:52:56.069141 2026] [security2:error] [pid 31866:tid 31866] [client 104.207.41.142:9321] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seacor.us"] [uri "/.env.save"] [unique_id "aZFtSMxaYJoH5K0GFIM7TwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:55:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:55:12.225439 2026] [security2:error] [pid 6187:tid 6198] [client 104.207.41.142:14513] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "omegaoak.com"] [uri "/test/.git/config"] [unique_id "aZFfwC7C2hm1R_Ut717o5gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:29:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:29:30.559406 2026] [security2:error] [pid 15972:tid 15972] [client 104.207.41.142:22005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohiokaisers.com"] [uri "/api/.git/config"] [unique_id "aZFZulRIzWRtyJxQe3Oj3gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:00:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:00:44.847652 2026] [security2:error] [pid 15584:tid 15584] [client 104.207.41.142:13109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "presucad.com"] [uri "/app/.env"] [unique_id "aZFS_AybRpukZ2_S2sed6wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:35:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:34:55.184077 2026] [security2:error] [pid 18916:tid 18916] [client 104.207.41.142:53383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sangalgano.info"] [uri "/app/.env"] [unique_id "aZFM7znz5OthuqBlvRGVJQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:06:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:06:49.038842 2026] [security2:error] [pid 22106:tid 22173] [client 104.207.41.142:13867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "power51.com"] [uri "/dev/.git/config"] [unique_id "aZFGWchSZQInS4HdHIcA9wAAAYY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:51:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.142 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:51:16.844054 2026] [security2:error] [pid 26546:tid 26546] [client 104.207.41.142:32391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "salazartransfers.com"] [uri "/.env.save"] [unique_id "aZFCtH_JsiTTiGgV6osrlgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 150 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.156

🇵🇱 193.43.231.156

🇬🇧 193.32.209.243

🇦🇷 190.2.109.11

🇳🇱 176.65.149.27

🇫🇷 161.97.135.223

🇭🇰 101.36.109.176

🇫🇷 91.196.152.221

🇺🇸 64.62.156.117

🇺🇸 54.84.223.211

🇳🇱 45.148.10.141

🇺🇸 20.65.194.43

🇺🇸 18.221.25.213

🇺🇸 18.217.121.94

🇷🇺 5.101.64.6

🇳🇱 2.58.56.163

🇺🇸 162.216.149.60

🇨🇳 101.126.81.144

🇫🇷 91.196.152.121

🇷🇺 85.172.111.44