JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.41.77

104.207.41.77 was found in our database!

This IP was reported 160 times. Confidence of Abuse is 20%: ?

20%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.41.77

Whois 104.207.41.77

IP Abuse Reports for 104.207.41.77:

This IP address has been reported a total of 160 times from 24 distinct sources. 104.207.41.77 was first reported on June 8th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-23 05:17:04 (2 weeks ago)	Brute force	Brute-Force
🇺🇸 ph	2026-05-11 14:10:15 (3 weeks ago)	Bad web bot attempting to run wp-json on non-WP site	Hacking Bad Web Bot Web App Attack
🇦🇺 oncord	2026-04-24 06:18:42 (1 month ago)	Form spam	Web Spam
🇨🇭 backslash	2026-04-20 01:27:00 (1 month ago)		Web Spam
🇳🇱 jjnxpct	2026-04-12 03:49:15 (1 month ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /contact/contactformulier (Rule ID: 932235) - Remote Command Execution: Unix Command Injection (command without evasion) show less	Web App Attack SQL Injection
🇦🇺 oncord	2026-04-09 13:45:30 (1 month ago)	Form spam	Web Spam
🇺🇸 oncord	2026-03-16 10:09:42 (2 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-03-11 17:27:11 (2 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-16 11:22:46 (3 months ago)	Form spam	Web Spam
🇺🇸 oncord	2026-02-14 21:44:52 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-13 09:02:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:02:42.673105 2026] [security2:error] [pid 7525:tid 7525] [client 104.207.41.77:40079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lan0.net"] [uri "/.git/config"] [unique_id "aY7osl1Ntc3GRET6QxjTagAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:42:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:42:53.258225 2026] [security2:error] [pid 1536037:tid 1536037] [client 104.207.41.77:63427] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kwieser.com"] [uri "/site/.git/config"] [unique_id "aY7V_c-CNaj4OXimfRhOZAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:41:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:41:02.316794 2026] [security2:error] [pid 9870:tid 9883] [client 104.207.41.77:51637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiwimagic.net"] [uri "/test/.git/config"] [unique_id "aY6rXt-7bgQI0GiYDZ_9BQAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mario Silber	2026-02-13 04:10:54 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.41.77 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-13 03:44:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.41.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:44:46.221191 2026] [security2:error] [pid 11197:tid 11285] [client 104.207.41.77:33829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "andeanbouquet.com"] [uri "/.git/config"] [unique_id "aY6eLqO58UA0nNnVfPedBgAAAgA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 160 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 209.99.187.20

🇺🇸 172.236.126.127

🇬🇧 138.68.142.226

🇩🇪 43.228.157.9

🇩🇪 213.209.159.226

🇺🇸 165.154.163.44

🇻🇳 152.32.160.252

🇧🇷 147.15.20.173

🇷🇴 92.118.39.236

🇺🇸 34.227.225.33

🇮🇳 175.101.131.169

🇩🇪 150.241.76.42

🇫🇮 147.185.133.149

🇹🇭 118.193.56.229

🇺🇸 107.172.123.31

🇫🇷 77.207.15.6

🇺🇸 72.167.50.103

🇯🇵 52.194.72.182

🇩🇪 2.26.98.0

🇨🇳 175.30.48.108