JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.218

104.207.41.218 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.218

Whois 104.207.41.218

IP Abuse Reports for 104.207.41.218:

This IP address has been reported a total of 130 times from 17 distinct sources. 104.207.41.218 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-03 19:39:53 (1 month ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-03-09 13:25:50 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 oncord	2026-02-01 19:08:40 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-30 18:35:45 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 13:35:19.209830 2025] [security2:error] [pid 32093:tid 32093] [client 104.207.41.218:59907] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.lsd36.com"] [uri "/.svn/wc.db"] [unique_id "aVQbZ92cdpGmWm5o_jQkngAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 17:16:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 12:16:08.903643 2025] [security2:error] [pid 7539:tid 7539] [client 104.207.41.218:39597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.sdrealty.com"] [uri "/.git/HEAD"] [unique_id "aVQI2Ixz0Esr8xcJtAwRTQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:02:43 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:02:35.473393 2025] [security2:error] [pid 2660271:tid 2660274] [client 104.207.41.218:55027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fibertechsystems.com"] [uri "/.svn/wc.db"] [unique_id "aVIZe7y5r8TcoL1xTBgCQAAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2025-12-29 05:24:30 (5 months ago)	F2B - Malicious activity detected. URL Probing.	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:17:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:17:13.663735 2025] [security2:error] [pid 19431:tid 19431] [client 104.207.41.218:60377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luckydawgs.com"] [uri "/.env"] [unique_id "aVIO2RGSnLgqog2FksunpQAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-23 11:24:09 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-19 22:07:38 (5 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.12.19 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-14 04:21:02 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 techboy117	2025-11-14 00:26:07 (6 months ago)	Blocking due to password spraying.	Brute-Force
🇮🇳 Shaik Sai Meera	2025-10-27 07:17:55 (7 months ago)	SensorIncident name=User authentication failure	Brute-Force
🇨🇦 wil.com	2025-10-16 13:25:55 (7 months ago)	GlobalProtect login attempts with user lillyswigart.	VPN IP Brute-Force
Anonymous	2025-10-15 18:06:52 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.15 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.15 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 196.196.150.6

🇭🇰 101.36.107.233

🇺🇸 23.254.178.52

🇩🇪 213.209.159.231

🇹🇷 212.64.216.142

🇺🇸 113.20.0.58

🇿🇦 105.233.64.145

🇨🇿 82.118.30.98

🇰🇷 222.236.155.146

🇺🇸 199.48.128.86

🇳🇱 193.176.31.151

🇺🇸 157.245.1.7

🇨🇿 82.118.30.57

🇱🇹 81.30.98.62

🇨🇳 14.103.105.56

🇮🇳 128.185.199.22

🇨🇳 115.190.54.120

🇰🇷 115.68.208.117

🇷🇺 89.109.14.12

🇺🇸 69.12.86.186