JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.240

104.207.41.240 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.240

Whois 104.207.41.240

IP Abuse Reports for 104.207.41.240:

This IP address has been reported a total of 161 times from 29 distinct sources. 104.207.41.240 was first reported on June 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-19 08:32:55 (2 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-13 08:06:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:06:38.881768 2026] [security2:error] [pid 23185:tid 23192] [client 104.207.41.240:35911] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "la.productions"] [uri "/site/.git/config"] [unique_id "aY7bjkKMgqDnCKBKPq-QUwAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 08:05:56 (3 months ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:26:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:26:20.873304 2026] [security2:error] [pid 30537:tid 30537] [client 104.207.41.240:20159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kunzteam.com"] [uri "/new/.git/config"] [unique_id "aY7SHIKqiJBjdioyFCQSGwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-13 04:31:09 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-13 03:26:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:26:19.293938 2026] [security2:error] [pid 11642:tid 11642] [client 104.207.41.240:30863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "khtcpl.com"] [uri "/admin/.git/config"] [unique_id "aY6Z25QJfogiN8NbAgQBjQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:57:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:57:39.029326 2026] [security2:error] [pid 25060:tid 25060] [client 104.207.41.240:10523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevamra.com"] [uri "/.env.save"] [unique_id "aY6TI7waeR5m7AJzDZHsEAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:21:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:21:05.445001 2026] [security2:error] [pid 21945:tid 21977] [client 104.207.41.240:58755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keithfamily.net"] [uri "/api/.env"] [unique_id "aY6KkRtceAHuS2V-cx0TUQAAAJU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 18:21:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 13:21:10.551514 2026] [security2:error] [pid 560:tid 560] [client 104.207.41.240:12313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elhosting.us"] [uri "/.git/config"] [unique_id "aY4aFk4O75UbQPjuH3rM1AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 02:39:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 21:39:50.921750 2026] [security2:error] [pid 368042:tid 368042] [client 104.207.41.240:57197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arsenaultartistmanagement.com"] [uri "/new/.git/config"] [unique_id "aY09dnu5SNBA-iK8b2CWLQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 22:43:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 17:43:03.194579 2026] [security2:error] [pid 2794770:tid 2794770] [client 104.207.41.240:21097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eeeckythump.net"] [uri "/wp/.git/config"] [unique_id "aY0F90TBZBONizyt5ZXZigAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 07:50:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 02:50:38.488846 2026] [security2:error] [pid 4413:tid 4413] [client 104.207.41.240:14343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cossey.me"] [uri "/.env.staging"] [unique_id "aYw0zkFFij_AgrdVxc7NjAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:10:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:10:21.688318 2026] [security2:error] [pid 28892:tid 28892] [client 104.207.41.240:49347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eclipseespana.com"] [uri "/api/.git/config"] [unique_id "aYvI7V16NKHaAkRHDdsuMwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 22:32:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 17:32:26.492116 2026] [security2:error] [pid 24683:tid 24683] [client 104.207.41.240:16519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cookes.co"] [uri "/v2/.git/config"] [unique_id "aYux-orc3d8KaZIdxT5CyQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 43.128.60.40

🇪🇹 196.189.59.226

🇺🇦 194.44.140.170

🇷🇺 185.75.181.87

🇺🇸 170.187.163.117

🇩🇪 167.94.146.75

🇺🇸 162.216.150.120

🇺🇸 138.113.23.170

🇮🇳 123.58.203.202

🇰🇷 121.131.220.155

🇷🇺 79.104.0.82

🇺🇸 65.49.1.13

🇺🇸 64.62.197.86

🇰🇷 54.180.160.52

🇲🇾 49.125.201.66

🇨🇳 36.135.92.36

🇧🇷 34.151.250.121

🇹🇷 195.85.201.111

🇷🇴 193.32.162.13

🇮🇩 180.247.56.166