JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.152

104.207.41.152 was found in our database!

This IP was reported 169 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.152

Whois 104.207.41.152

IP Abuse Reports for 104.207.41.152:

This IP address has been reported a total of 169 times from 22 distinct sources. 104.207.41.152 was first reported on June 6th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-06-03 11:37:18 (4 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇬🇧 relianoid.com	2026-03-11 01:40:22 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-13 08:29:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:28:59.194761 2026] [security2:error] [pid 1383:tid 1383] [client 104.207.41.152:12563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ladymcollection.com"] [uri "/backend/.env"] [unique_id "aY7gywUoIEvzgXE1xUYMaQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:41:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:41:33.485235 2026] [security2:error] [pid 6131:tid 6131] [client 104.207.41.152:46663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kwijlen.com"] [uri "/.env.staging"] [unique_id "aY7VrbRX2n_vSjvq_eqBHwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:42:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:42:29.064661 2026] [security2:error] [pid 17695:tid 17695] [client 104.207.41.152:38165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krislajeskiedesign.com"] [uri "/.git/config"] [unique_id "aY7H1dCkbCe6S2jEyJQ9uwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 05:06:36 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:16:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:16:19.208088 2026] [security2:error] [pid 13230:tid 13230] [client 104.207.41.152:16207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnerakhareedu.com"] [uri "/frontend/.env"] [unique_id "aY6lk-0O1cxDbGYwaWIRaQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:19:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:19:29.428301 2026] [security2:error] [pid 30752:tid 30752] [client 104.207.41.152:58061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kh6jim.com"] [uri "/new/.git/config"] [unique_id "aY6YQbGq_cciOOmrEHLFIAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:58:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:58:27.629944 2026] [security2:error] [pid 16923:tid 16923] [client 104.207.41.152:32373] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevinfranz.com"] [uri "/.env.production"] [unique_id "aY6TUxADarmLRnSMWa_JYgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:39:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:39:19.006454 2026] [security2:error] [pid 15077:tid 15077] [client 104.207.41.152:37429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kennythompson.com"] [uri "/.env"] [unique_id "aY6O10kzN_1nc6copwW63wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 23:59:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 18:59:48.497579 2026] [security2:error] [pid 23825:tid 23825] [client 104.207.41.152:49645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agirlwithaguitar.com"] [uri "/.git/config"] [unique_id "aY5pdNratSaeh6lE6RqAKwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 23:09:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 18:09:41.132035 2026] [security2:error] [pid 30258:tid 30272] [client 104.207.41.152:28427] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adt-sales.com"] [uri "/.git/config"] [unique_id "aY5dtUEjPCFKmOG2sQfkZQAAAEo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-12 23:00:58 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-12	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-12 17:01:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:01:10.891622 2026] [security2:error] [pid 1778:tid 1778] [client 104.207.41.152:56465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cdsolutions.help"] [uri "/.git/config"] [unique_id "aY4HVgxmKmCXiZU4qjdN0wAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 15:46:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.152 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:46:35.859383 2026] [security2:error] [pid 3724859:tid 3724859] [client 104.207.41.152:37237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bienvista.com"] [uri "/.git/config"] [unique_id "aY3129Xn1ww47reXY5PEdwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 169 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 129.226.49.115

🇻🇳 58.187.74.12

🇬🇧 217.154.45.93

🇸🇪 171.25.158.70

🇵🇰 139.135.59.192

🇮🇩 103.171.84.203

🇦🇺 74.91.200.217

🇧🇷 45.182.60.43

🇮🇳 45.115.188.114

🇹🇼 221.120.74.68

🇺🇸 198.2.142.242

🇻🇳 157.66.26.151

🇸🇬 134.185.86.134

🇮🇳 122.170.100.253

🇷🇺 104.128.137.213

🇮🇳 103.113.217.20

🇷🇺 95.47.246.223

🇺🇸 64.183.233.66

🇳🇱 45.148.10.141

🇻🇳 14.191.217.118