JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.101

104.207.46.101 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 26%: ?

26%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.101

Whois 104.207.46.101

IP Abuse Reports for 104.207.46.101:

This IP address has been reported a total of 155 times from 28 distinct sources. 104.207.46.101 was first reported on June 30th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Richard Stover	2026-05-31 22:04:36 (3 weeks ago)	User tried to login as "admin."	Web App Attack
🇫🇷 ELYAZ	2026-05-31 09:23:31 (3 weeks ago)	(y4) Failed scan -byebye- from 104.207.46.101 (US/United States/-): (CF_ENABLE)	Hacking
Anonymous	2026-05-28 13:17:52 (3 weeks ago)	[ns31.kdns.gr] httpd-login-spray-site: sites=ceramics-menegis.gr; logs=/var/log/httpd/domains/cerami ... show more [ns31.kdns.gr] httpd-login-spray-site: sites=ceramics-menegis.gr; logs=/var/log/httpd/domains/ceramics-menegis.gr.log; samples=site_wide=true \| distinct_ips=13 \| /wp-login.php show less	Hacking Web App Attack
Anonymous	2026-05-28 06:58:22 (3 weeks ago)	Web attack blocked by Wordfence on mergel.nu (1 hit). Reported by CRMON.	Web App Attack
🇮🇹 Progetto1	2026-05-27 07:50:04 (3 weeks ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 mind5t0rm	2026-05-27 05:41:26 (3 weeks ago)	(WPLOGIN) WP Login Attack 104.207.46.101 (US/United States/-): 3 in the last 3600 secs; Ports: ; Di ... show more (WPLOGIN) WP Login Attack 104.207.46.101 (US/United States/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 104.207.46.101 - - [27/May/2026:12:37:49 +0700] "POST /wp-login.php HTTP/2.0" 200 2501 "https://fabledgames.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 104.207.46.101 - - [27/May/2026:12:38:09 +0700] "POST /wp-login.php HTTP/2.0" 200 2501 "https://fabledgames.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" 104.207.46.101 - - [27/May/2026:12:41:22 +0700] "POST /wp-login.php HTTP/2.0" 200 2501 "https://fabledgames.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Port Scan
Anonymous	2026-04-22 20:52:33 (1 month ago)	Forum/form spam	Web Spam
🇦🇺 MAGIC	2026-04-09 02:27:20 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 MAGIC	2026-03-05 01:20:46 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-09 21:49:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:49:09.218349 2026] [security2:error] [pid 22454:tid 22454] [client 104.207.46.101:49067] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyschirmer.com"] [uri "/frontend/.env"] [unique_id "aYpWVTR4x-8Y6t-AxfigWwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 10:37:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 05:37:49.420800 2026] [security2:error] [pid 174440:tid 174465] [client 104.207.46.101:16629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gafmboard.com"] [uri "/.env"] [unique_id "aYm4_bI1jlSNZEmpNCYahgAAAgU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 08:28:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 03:27:32.213850 2026] [security2:error] [pid 19953:tid 19953] [client 104.207.46.101:19447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fydelitybags.com"] [uri "/api/.git/config"] [unique_id "aYmadOCfAwqX_SXusvK2yQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 06:55:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.101 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 01:55:07.737346 2026] [security2:error] [pid 16624:tid 16624] [client 104.207.46.101:64291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fusteriafontane.com"] [uri "/.env.production"] [unique_id "aYmEy_Zx7ZTAarQIuBNXQgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2025-12-31 13:05:14 (5 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 119.28.89.249

🇧🇷 200.153.86.250

🇨🇴 190.69.126.105

🇮🇩 180.242.155.250

🇧🇷 177.22.168.30

🇺🇸 143.42.1.84

🇧🇩 103.239.82.147

🇺🇸 67.205.130.189

🇺🇸 66.132.186.173

🇹🇷 2a00:1d34:e7cb:b100:29ba:8d19:e700:b929

🇺🇸 172.234.218.210

🇮🇩 125.162.220.250

🇲🇳 103.212.116.113

🇭🇰 103.81.170.109

🇫🇷 92.103.134.183

🇸🇨 45.194.67.29

🇸🇬 45.82.78.103

🇺🇸 3.215.221.125

🇯🇵 2a01:111:f403:d405::2

🇲🇽 187.191.48.23