JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.136

104.207.46.136 was found in our database!

This IP was reported 159 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.136

Whois 104.207.46.136

IP Abuse Reports for 104.207.46.136:

This IP address has been reported a total of 159 times from 23 distinct sources. 104.207.46.136 was first reported on June 14th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-06 15:26:07 (2 days ago)	Kingcopy(AI-IDS) Report: IP automatically blocked after harassing activity. Vegas Security System	Hacking Web App Attack
🇩🇪 XICTRON	2026-06-05 09:05:07 (3 days ago)	WordPress attack attempt detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-03-04 02:15:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 21:15:30.584401 2026] [security2:error] [pid 771:tid 771] [client 104.207.46.136:24481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "delicatessefoods.com"] [uri "/.env"] [unique_id "aaeVwr55LPTbmQB7axvD2gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 01:11:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 20:11:48.377324 2026] [security2:error] [pid 820354:tid 820354] [client 104.207.46.136:23201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arnoldwell.com"] [uri "/backup/.git/config"] [unique_id "aY0o1PptE3gYAtWJNqx29AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:01:05 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇩🇪 big-cloud.nl	2026-02-10 22:29:54 (3 months ago)	Try to access /site/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:47:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:47:14.622544 2026] [security2:error] [pid 19871:tid 19871] [client 104.207.46.136:19647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mahtani.org"] [uri "/admin/.env"] [unique_id "aYrGYuYusyc2UE3W2ferMwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:00:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:59:01.883529 2026] [security2:error] [pid 15632:tid 15632] [client 104.207.46.136:49271] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-med.com"] [uri "/.git/config"] [unique_id "aYqe9S2rtdX5kTlzlazaEgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-10 00:36:10 (3 months ago)	Blocking for trying to access an exploit file: /test/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-10 00:31:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:31:54.015009 2026] [security2:error] [pid 13965:tid 13993] [client 104.207.46.136:15981] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/backup/.git/config"] [unique_id "aYp8erlkEMzYEW1K1FcYfgAAARY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:47:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:47:53.576405 2026] [security2:error] [pid 6990:tid 6990] [client 104.207.46.136:57651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ken-parker.com"] [uri "/config/.env"] [unique_id "aYpyKVK02epVC4PiLBjWWwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 22:05:26 (3 months ago)	Blocking for trying to access an exploit file: /.env.staging	Hacking
🇧🇷 Sipo Chutão	2025-12-31 03:00:01 (5 months ago)	/.svn/wc.db	Hacking
Anonymous	2025-12-30 20:44:01 (5 months ago)	reported through recidive - multiple failed attempts(WAF)	Port Scan Hacking Web App Attack
🇮🇹 VHosting	2025-12-23 11:24:10 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH

Showing 1 to 15 of 159 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇭 138.84.114.108

🇺🇸 34.186.236.242

🇺🇸 3.80.144.40

🇺🇸 2607:f8b0:4001:c62::126

🇭🇰 2406:da1e:4b7:e601:6779:8ce2:61cf:7fe4

🇭🇰 199.45.154.188

🇲🇽 187.140.178.70

🇸🇪 77.53.25.153

🇺🇸 54.158.239.209

🇳🇱 45.148.10.152

🇨🇳 220.205.123.19

🇲🇰 194.61.58.9

🇱🇹 81.30.98.144

🇧🇷 45.205.1.247

🇭🇰 35.220.238.115

🇺🇸 2602:fb54:1400::72

🇯🇵 156.227.232.198

🇩🇪 151.243.11.35

🇧🇷 131.108.162.24

🇫🇷 91.231.89.202