JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.245

104.207.41.245 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.245

Whois 104.207.41.245

IP Abuse Reports for 104.207.41.245:

This IP address has been reported a total of 151 times from 18 distinct sources. 104.207.41.245 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-03-02 21:08:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 16:08:20.581884 2026] [security2:error] [pid 3498:tid 3498] [client 104.207.41.245:18765] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lazymanvegan.com"] [uri "/.env"] [unique_id "aaX8RLlE1C1762cf4eUxOgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-19 22:59:07 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-19	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-02-19 05:26:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:26:23.341568 2026] [security2:error] [pid 15598:tid 15598] [client 104.207.41.245:31627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krugmans.com"] [uri "/.env"] [unique_id "aZae_2PMT04T2BzIbttSEAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-02-19 05:03:03 (3 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
Anonymous	2026-02-19 02:22:27 (3 months ago)	104.207.41.245 - - [19/Feb/2026:03:22:26 +0100] "GET /new/.git/config HTTP/1.1" 403 440 "-" "Mozilla ... show more 104.207.41.245 - - [19/Feb/2026:03:22:26 +0100] "GET /new/.git/config HTTP/1.1" 403 440 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Web App Attack
🇩🇪 Bedios GmbH	2026-02-19 02:11:46 (3 months ago)	Login credentials theft attempt	Hacking
🇺🇸 TPI-Abuse	2026-02-19 02:10:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:10:50.248380 2026] [security2:error] [pid 24949:tid 24949] [client 104.207.41.245:36545] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katharinanitzpon.com"] [uri "/new/.git/config"] [unique_id "aZZxKpPjGf2LfVl3IehftgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-02-19 00:36:42 (3 months ago)	Blocked by CSF 13 firewall - Rule: config-dotfile US/United States/-	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 22:32:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 17:32:41.494922 2026] [security2:error] [pid 30875:tid 30875] [client 104.207.41.245:61235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "utahproaudio.com"] [uri "/backend/.env"] [unique_id "aZY-CchughZuwgwLQq9EEgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 19:59:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 14:59:24.335061 2026] [security2:error] [pid 17968:tid 17968] [client 104.207.41.245:51539] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "towermedia.net"] [uri "/.env.staging"] [unique_id "aZYaHOI2J0L0_-WpvL9YTAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 17:32:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 12:32:02.406793 2026] [security2:error] [pid 4817:tid 4844] [client 104.207.41.245:60713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zoomtexas.com"] [uri "/api/.git/config"] [unique_id "aZX3klphMObGR2uq3JcIIQAAAFY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 13:20:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 08:20:31.159902 2026] [security2:error] [pid 31516:tid 31516] [client 104.207.41.245:18083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "willmarksynthetics.com"] [uri "/site/.git/config"] [unique_id "aZW8n8_EGxQ1eH6UNomvCwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:35:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:35:20.154003 2026] [security2:error] [pid 22772:tid 22772] [client 104.207.41.245:34701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weddingmatchboxes.com"] [uri "/app/.env"] [unique_id "aZWyCHrJjZ2EsgrOtzJzrwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:05:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:05:46.638356 2026] [security2:error] [pid 15109:tid 15109] [client 104.207.41.245:33845] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watonga.com"] [uri "/.env.staging"] [unique_id "aZWrGp4gJOFzD_Cab2p9_AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 45.188.255.205

🇳🇱 176.65.139.130

🇨🇳 119.36.193.230

🇬🇧 94.136.170.168

🇳🇱 89.21.67.172

🇸🇳 41.82.11.11

🇰🇷 222.114.144.143

🇸🇦 178.73.77.249

🇺🇸 174.35.25.181

🇺🇸 157.230.237.171

🇹🇼 118.163.132.211

🇨🇳 115.190.14.210

🇨🇦 85.217.149.48

🇪🇸 79.159.18.17

🇨🇿 78.44.192.210

🇩🇪 195.201.228.157

🇺🇸 165.227.26.149

🇭🇰 152.32.226.205

🇺🇸 147.185.132.234

🇺🇸 98.82.72.140