JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.162

104.207.41.162 was found in our database!

This IP was reported 148 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.162

Whois 104.207.41.162

IP Abuse Reports for 104.207.41.162:

This IP address has been reported a total of 148 times from 18 distinct sources. 104.207.41.162 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-03-24 22:51:40 (2 months ago)	Kingcopy(AI-IDS):IP is Probing for Wordpress vulnerabilities WTF:Banned	Hacking Bad Web Bot Web App Attack
🇩🇪 filstal.org	2026-03-15 09:33:23 (2 months ago)	WAF alert: Web exploit/injection attempt detected.	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 16:53:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 11:53:08.421853 2026] [security2:error] [pid 21031:tid 21031] [client 104.207.41.162:23173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aquanauticsige.com"] [uri "/frontend/.env"] [unique_id "aYyz9PfG0wRd3HSIN0BoiwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2026-02-11 04:53:22 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /wp/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:59:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:59:08.255378 2026] [security2:error] [pid 2785658:tid 2785658] [client 104.207.41.162:37871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idetailingcreatives.com"] [uri "/app/.git/config"] [unique_id "aYq7HK295nBp8cxVzeDrkQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:34:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:34:50.628985 2026] [security2:error] [pid 27461:tid 27461] [client 104.207.41.162:36587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "huginhof.org"] [uri "/.env.production"] [unique_id "aYp9KqiXMpS6grlOPCx0CAAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:38:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:38:07.021976 2026] [security2:error] [pid 11391:tid 11391] [client 104.207.41.162:30803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hshr.com"] [uri "/new/.git/config"] [unique_id "aYpv32ofo_VvZ7FVUjVjEwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-09 22:59:27 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-09 20:17:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:17:18.394665 2026] [security2:error] [pid 22898:tid 22898] [client 104.207.41.162:54709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hometoamerica.com"] [uri "/backup/.git/config"] [unique_id "aYpAzjlVQ_YMinhD5XFIngAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:47:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:47:47.667200 2026] [security2:error] [pid 10934:tid 10934] [client 104.207.41.162:57405] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "homecheckinmaine.com"] [uri "/test/.git/config"] [unique_id "aYo541amaV8OuaPXClew8QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fbarela	2025-12-31 13:00:08 (5 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇮🇹 VHosting	2025-12-24 01:10:42 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇦🇺 MAGIC	2025-12-23 02:08:17 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 09:06:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:06:01.638654 2025] [security2:error] [pid 13518:tid 13518] [client 104.207.41.162:22921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agapeoffice.agapeaccountingllc.com"] [uri "/.env"] [unique_id "aSQf-WxE-44VM7QDrO5vmAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:50:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.162 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:50:26.719472 2025] [security2:error] [pid 21978:tid 21978] [client 104.207.41.162:50047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kreechers.com"] [uri "/.env"] [unique_id "aSQcUrjzoSlTSGSGTNiDcQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 148 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 217.113.196.49

🇫🇷 217.113.196.47

🇺🇸 66.132.186.128

🇯🇵 56.155.120.13

🇺🇸 50.203.134.231

🇳🇱 45.153.34.195

🇩🇪 18.156.173.213

🇰🇷 1.201.123.182

🇨🇦 207.216.104.155

🇧🇷 205.210.31.236

🇧🇷 187.72.87.13

🇺🇸 172.236.117.243

🇨🇳 123.245.84.77

🇮🇳 122.160.187.31

🇺🇸 107.174.142.225

🇺🇸 91.230.168.171

🇸🇬 52.237.80.79

🇲🇾 47.250.81.7

🇷🇴 45.93.131.206

🇫🇷 217.113.196.46