JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.53

104.207.41.53 was found in our database!

This IP was reported 157 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.53

Whois 104.207.41.53

IP Abuse Reports for 104.207.41.53:

This IP address has been reported a total of 157 times from 17 distinct sources. 104.207.41.53 was first reported on June 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-05-17 22:37:50 (2 weeks ago)	ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.41.53 2 ... show more ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.41.53 2026-05-17 01:39:10 / 2026-05-17 01:24:48 / 2026-05-17 01:33:28 / 2026-05-17 02:20:36 / 2026-05-17 01:34:02 / show less	Web App Attack
Anonymous	2026-05-13 14:08:28 (3 weeks ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
Anonymous	2026-03-26 04:10:30 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-15 12:39:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:39:47.641683 2026] [security2:error] [pid 3635:tid 3635] [client 104.207.41.53:13685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shafoo.com"] [uri "/app/.git/config"] [unique_id "aZG-k-i6Ho7vgJAEUIjTYwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:14:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:14:10.478856 2026] [security2:error] [pid 9008:tid 9008] [client 104.207.41.53:41409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pappakotis.net"] [uri "/.env.local"] [unique_id "aZG4kqErBjHVTv-_yJkbdQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:31:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:31:12.925871 2026] [security2:error] [pid 5703:tid 5703] [client 104.207.41.53:18911] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozera.com"] [uri "/config/.env"] [unique_id "aZGugKJYM3z9Dp7t7AimJAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:12:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:12:00.804305 2026] [security2:error] [pid 585260:tid 585260] [client 104.207.41.53:17463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "purelywhimsical.com"] [uri "/app/.env"] [unique_id "aZGqAE2bjTrqMBm76FayigAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:11:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:11:33.231330 2026] [security2:error] [pid 19433:tid 19433] [client 104.207.41.53:26141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "onevoicefoundationlb.org"] [uri "/api/.env"] [unique_id "aZFjlTcP0c5S596vDHzmvAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:46:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:46:55.584815 2026] [security2:error] [pid 31400:tid 31400] [client 104.207.41.53:51157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prodigypartners.com"] [uri "/frontend/.env"] [unique_id "aZFdz2CEa4FgX2XADjUofAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:29:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:29:12.949965 2026] [security2:error] [pid 25059:tid 25059] [client 104.207.41.53:19741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sandhage.com"] [uri "/new/.git/config"] [unique_id "aZFLmKMt9g2_vDDqlZYT-QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:23:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:23:50.930920 2026] [security2:error] [pid 184122:tid 184233] [client 104.207.41.53:27759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nobletitles.org"] [uri "/.env.production"] [unique_id "aZE8RhZxbpqQBAmMeBF4RAAAAhI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 03:04:09 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:56:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:56:47.302784 2026] [security2:error] [pid 18879:tid 18879] [client 104.207.41.53:36851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ryanlowenstein.com"] [uri "/test/.git/config"] [unique_id "aZE17x9BRtPUgFlKj4KxmQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:40:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:40:41.449502 2026] [security2:error] [pid 15339:tid 15355] [client 104.207.41.53:64057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "plumeraproductions.com"] [uri "/.git/config"] [unique_id "aZEyKYesDCpeL3FPBPg3FAAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:23:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:23:34.887798 2026] [security2:error] [pid 22434:tid 22434] [client 104.207.41.53:27235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rudiscreations.org"] [uri "/v2/.git/config"] [unique_id "aZEuJuGFDqOGIn0duIz_mAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 157 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 175.201.203.220

🇺🇸 2607:f8b0:4001:c19::123

🇺🇸 2602:80d:1008::7a

🇳🇱 165.22.200.233

🇺🇸 162.243.167.73

🇨🇳 115.190.197.74

🇨🇳 115.190.69.18

🇻🇳 115.77.111.2

🇨🇳 112.31.93.229

🇧🇪 104.155.115.14

🇺🇸 96.56.228.149

🇮🇹 93.92.79.167

🇳🇱 51.158.160.54

🇮🇳 49.15.125.22

🇳🇱 45.148.10.141

🇧🇷 170.231.252.149

🇰🇷 152.69.232.121

🇧🇷 129.121.33.174

🇨🇳 115.191.73.24

🇰🇷 106.243.155.71