JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.222

104.207.41.222 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.222

Whois 104.207.41.222

IP Abuse Reports for 104.207.41.222:

This IP address has been reported a total of 141 times from 17 distinct sources. 104.207.41.222 was first reported on June 6th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-15 06:29:04 (1 month ago)	Known malicious PHP file or CMS probe	Web App Attack
Anonymous	2026-02-18 04:31:40 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-18 03:48:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 22:47:54.511343 2026] [security2:error] [pid 4273:tid 4273] [client 104.207.41.222:54831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robertanders.com"] [uri "/new/.git/config"] [unique_id "aZU2al4ZjRTCWtoUG5RShgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:11:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:11:47.405792 2026] [security2:error] [pid 30449:tid 30449] [client 104.207.41.222:52233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aprilparks.com"] [uri "/.git/config"] [unique_id "aYvJQ1wlHRmYVsP3gJZ_sgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:00:06 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 15:38:57 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:38:54.017828 2026] [security2:error] [pid 1880049:tid 1880072] [client 104.207.41.222:9243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antinats.com"] [uri "/admin/.env"] [unique_id "aYtRDu8dLYQvxk-DIi57RgAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:32:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:32:17.635428 2026] [security2:error] [pid 3773:tid 3773] [client 104.207.41.222:19817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "knoxvillelimos.com"] [uri "/wp/.git/config"] [unique_id "aYrC4YiJW9FttRw7UwlcnQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:55:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:55:44.240596 2026] [security2:error] [pid 14874:tid 14874] [client 104.207.41.222:27383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiuchi.info"] [uri "/v2/.git/config"] [unique_id "aYqsQCzvR5K3NgcehK7sWgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:07:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:06:55.007635 2026] [security2:error] [pid 11408:tid 11408] [client 104.207.41.222:44165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingstoneproperties.com"] [uri "/site/.git/config"] [unique_id "aYqgz0tldsv_xKBHwPhOTAAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:20:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:20:10.784631 2026] [security2:error] [pid 16565:tid 16572] [client 104.207.41.222:60793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keetons.net"] [uri "/api/.env"] [unique_id "aYprqpLZUbR28tGicLQ1QQAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:02:52 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:02:48.188044 2026] [security2:error] [pid 314184:tid 314184] [client 104.207.41.222:54431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathiekate.com"] [uri "/backend/.env"] [unique_id "aYpZiEbdCIZnnA3JLI8mSgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:20:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:20:18.402669 2026] [security2:error] [pid 27460:tid 27460] [client 104.207.41.222:28103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "homewaterproofing.com"] [uri "/site/.git/config"] [unique_id "aYpBgp0ADT2olkbpKyIezwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 F242	2026-01-30 05:23:32 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:49 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-26 11:57:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:57:43.881062 2025] [security2:error] [pid 2818709:tid 2818709] [client 104.207.41.222:33215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.leolion.net"] [uri "/.env"] [unique_id "aSbrN_er-zLLrTbzA32ggQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.97

🇺🇸 172.200.228.35

🇧🇩 165.101.222.22

🇵🇰 103.26.86.81

🇷🇴 80.94.92.186

🇨🇳 218.22.190.133

🇪🇬 197.32.79.192

🇳🇱 195.178.110.188

🇬🇧 31.14.254.50

🇳🇱 204.76.203.36

🇿🇼 197.221.232.44

🇧🇷 138.122.155.161

🇭🇰 119.28.9.170

🇻🇳 116.110.12.191

🇷🇴 80.94.92.171

🇳🇴 20.251.117.149

🇰🇷 221.162.3.119

🇺🇸 162.216.150.186

🇻🇳 116.98.104.138

🇮🇳 103.205.142.28