JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.229

104.207.41.229 was found in our database!

This IP was reported 162 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.229

Whois 104.207.41.229

IP Abuse Reports for 104.207.41.229:

This IP address has been reported a total of 162 times from 21 distinct sources. 104.207.41.229 was first reported on June 3rd 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-23 12:52:44 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-04-07 03:07:19 (1 month ago)	Forum/form spam	Web Spam
🇫🇷 masterguru	2026-04-03 11:00:27 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.41.229 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.41.229 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 masterguru	2026-03-27 11:10:45 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.41.229 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.41.229 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇦🇺 oncord	2026-03-12 11:28:57 (2 months ago)	Form spam	Web Spam
🇫🇷 tilellit.pro	2026-03-02 16:12:58 (3 months ago)	Fail2Ban banned 104.207.41.229 for security violations in jail wp-armour. Log: 2026/03/02 16:12:57 [ ... show more Fail2Ban banned 104.207.41.229 for security violations in jail wp-armour. Log: 2026/03/02 16:12:57 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.41.229 \| Target: wplogin" , client: 104.207.41.229, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇦🇺 MAGIC	2026-02-26 01:42:36 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-13 12:47:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:47:29.659897 2026] [security2:error] [pid 23421:tid 23421] [client 104.207.41.229:62127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midaslachine.com"] [uri "/wp/.git/config"] [unique_id "aY8dYSnCUjMTiP4W8j9E1QAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:06:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:06:27.975688 2026] [security2:error] [pid 15021:tid 15021] [client 104.207.41.229:49981] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medioskreativos.com"] [uri "/admin/.git/config"] [unique_id "aY7Nc8BlhqpTRZyio15JrQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:37:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:36:59.105325 2026] [security2:error] [pid 14638:tid 14638] [client 104.207.41.229:34839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marijuanajoint.com"] [uri "/.git/config"] [unique_id "aY6cW5p-YifnbX9mhSW-xgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 03:06:50 (3 months ago)	Scanning/Probing (25)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:06:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:06:19.866942 2026] [security2:error] [pid 21397:tid 21397] [client 104.207.41.229:32613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mapleleaf-marketing.com"] [uri "/api/.env"] [unique_id "aY6VKxNCxAgxDrtvSPnBpAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:30:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:30:32.423851 2026] [security2:error] [pid 1774691:tid 1774707] [client 104.207.41.229:60249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magusincognito.com"] [uri "/.env.local"] [unique_id "aY5-uHVNotX2_xvF9oFT9AAAAQ4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:52:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:52:28.802868 2026] [security2:error] [pid 8777:tid 8777] [client 104.207.41.229:14003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "countrysideinnkingston.com"] [uri "/.env"] [unique_id "aY4FTGh6kwMAeLJ_9ufd_wAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-12 00:36:38 (3 months ago)	104.207.41.229 - - [12/Feb/2026:00:36:37 +0000] "GET /app/.git/config HTTP/1.1" 302 3409 "-" "Mozill ... show more 104.207.41.229 - - [12/Feb/2026:00:36:37 +0000] "GET /app/.git/config HTTP/1.1" 302 3409 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 162 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.210

🇳🇱 185.223.235.47

🇨🇦 85.217.149.55

🇬🇧 81.19.219.219

🇳🇱 45.148.10.157

🇦🇷 190.137.140.51

🇲🇽 189.169.77.217

🇧🇷 179.185.227.77

🇨🇳 119.29.198.247

🇳🇱 62.250.234.181

🇺🇸 38.148.99.59

🇺🇸 38.141.252.55

🇬🇧 31.14.254.55

🇬🇧 217.146.80.99

🇲🇾 203.121.40.210

🇧🇷 186.235.38.27

🇨🇷 186.177.88.21

🇺🇸 162.216.150.157

🇺🇸 147.185.132.105

🇬🇧 139.28.176.28