JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.102

104.207.46.102 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.102

Whois 104.207.46.102

IP Abuse Reports for 104.207.46.102:

This IP address has been reported a total of 130 times from 21 distinct sources. 104.207.46.102 was first reported on June 21st 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 jjnxpct	2026-03-16 04:49:33 (2 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /dagopeningen (Rule ID: 942540) - SQL Authentication bypass (split query) [Suspicious: archief'; found within ARGS:return: archief';--] show less	Web App Attack SQL Injection Brute-Force
🇩🇪 filstal.org	2026-03-15 07:42:34 (2 months ago)	WAF alert: Web exploit/injection attempt detected.	SQL Injection Web App Attack
🇬🇧 oncord	2026-03-07 12:24:03 (2 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-25 12:45:44 (3 months ago)	Form spam	Web Spam
🇨🇭 hc	2026-02-23 04:37:00 (3 months ago)	Frau Hugh Halvorsen Venusvegen 166 Tomasjord 44695346 [email protected] Attract ... show more Frau Hugh Halvorsen Venusvegen 166 Tomasjord 44695346 [email protected] Attract keyword-targeted visitors from specific locations with our AI-driven solution, a cost-effective alternative to paid advertising. Start now to drive results. https://cutt.ly/UtQitv9J show less	Web Spam
🇦🇺 oncord	2026-02-21 15:30:49 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-15 05:10:17 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-27 22:08:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:08:18.750037 2025] [security2:error] [pid 19894:tid 19894] [client 104.207.46.102:37061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wordspectrum.com"] [uri "/.git/HEAD"] [unique_id "aVBY0ofXAyqFuCtXodq6SQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 21:44:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 16:44:25.313160 2025] [security2:error] [pid 9080:tid 9080] [client 104.207.46.102:58515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abilityimprinting.com"] [uri "/.env"] [unique_id "aVBTORuwmZ070aiBuRrc_QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-27 13:18:35 (5 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇫🇷 mrcrassi	2025-12-16 00:12:39 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST meth ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:48 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-26 10:35:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:35:35.082413 2025] [security2:error] [pid 20907:tid 20907] [client 104.207.46.102:24187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.laboquimia.es"] [uri "/.git/HEAD"] [unique_id "aSbX9wfS8oLXyus0GB34QQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:14:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:14:01.091666 2025] [security2:error] [pid 26554:tid 26554] [client 104.207.46.102:33315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.raaksystems.com"] [uri "/.env"] [unique_id "aSaaqV5MsvgNoR8hR-yVLwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:55:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:55:23.242806 2025] [security2:error] [pid 28266:tid 28266] [client 104.207.46.102:16335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.groomattheinn.com"] [uri "/.env"] [unique_id "aSaWS7WunXOOnS9iOC9-bgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.98.50.7

🇲🇽 187.102.204.99

🇷🇺 176.109.97.11

🇺🇸 152.32.182.41

🇮🇳 122.187.229.235

🇨🇦 99.209.226.114

🇬🇧 62.141.63.15

🇺🇸 50.62.133.11

🇮🇷 31.216.62.250

🇰🇭 202.79.29.108

🇧🇷 191.248.138.94

🇲🇰 188.44.20.30

🇧🇩 103.163.117.84

🇸🇬 101.47.27.73

🇷🇴 80.94.92.176

🇳🇱 45.153.34.149

🇺🇸 205.210.31.98

🇸🇬 43.134.96.173

🇺🇸 2607:f8b0:400e:c06::124

🇨🇳 223.199.191.55