JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.148

104.207.46.148 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.148

Whois 104.207.46.148

IP Abuse Reports for 104.207.46.148:

This IP address has been reported a total of 161 times from 34 distinct sources. 104.207.46.148 was first reported on June 12th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇫🇷 vtchost.com	2026-01-24 00:27:48 (4 months ago)	invalid user agent, possible botnet ...	Bad Web Bot Exploited Host
🇧🇷 SOC Blue Team	2026-01-16 18:07:01 (4 months ago)	Tatic: TA0006 \| Technique: T1110 \| Source: TAP \| Country Destination: BR	Brute-Force
🇺🇸 TPI-Abuse	2026-01-02 04:01:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 23:01:02.206611 2026] [security2:error] [pid 14981:tid 14981] [client 104.207.46.148:21403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "expertprofessionalcleaners.com"] [uri "/wp-config.php"] [unique_id "aVdC_s-M5ykZ8ETtN9YzyQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:28 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 octageeks.com	2025-12-28 05:06:50 (5 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇱🇻 garmtech.com	2025-12-17 02:15:31 (5 months ago)	IM360 WAF: Information Disclosure Attempt in WordPress MV:/wp-config.old	Web App Attack
🇸🇪 konseptit	2025-12-16 13:43:47 (5 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.46.148 (US/United States/-)	SQL Injection
🇫🇷 geot	2025-12-08 13:50:49 (5 months ago)	GET /.aws/credentials HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 09:24:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 04:24:49.356329 2025] [security2:error] [pid 9140:tid 9140] [client 104.207.46.148:21969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bvidisplay.com"] [uri "/.git/HEAD"] [unique_id "aTaZYTEmnDFDVmqLcrVGywAAADo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 04:23:20 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 23:23:15.794197 2025] [security2:error] [pid 17918:tid 17918] [client 104.207.46.148:26991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yevid.com"] [uri "/.svn/wc.db"] [unique_id "aTZSs30PzoY1ULuVKKSC6QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 03:42:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:42:01.870092 2025] [security2:error] [pid 4574:tid 4574] [client 104.207.46.148:46009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "36sovereignchambers.com"] [uri "/.svn/wc.db"] [unique_id "aTZJCcvXnjKqAISRjXxl_gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:42:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:42:48.079234 2025] [security2:error] [pid 1528:tid 1528] [client 104.207.46.148:17569] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "woodburymeadows.org"] [uri "/.git/HEAD"] [unique_id "aTWgeA5pePiFVKh87dWbiwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-07 14:55:07 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-07 13:15:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:15:39.462489 2025] [security2:error] [pid 27214:tid 27214] [client 104.207.46.148:37401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "franklincountyquilters.org"] [uri "/.git/HEAD"] [unique_id "aTV9-4GSfzn0QsvFgBbzCwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 212.64.216.142

🇩🇿 154.254.81.40

🇳🇱 45.148.10.121

🇯🇵 220.148.103.73

🇹🇳 196.187.153.235

🇧🇴 181.188.176.242

🇸🇦 176.44.133.194

🇸🇦 176.16.78.171

🇺🇸 98.109.23.214

🇺🇸 66.132.195.46

🇸🇬 43.160.200.19

🇵🇰 36.255.40.168

🇺🇸 23.239.29.33

🇨🇴 186.30.26.129

🇭🇰 152.32.239.122

🇭🇰 47.242.204.120

🇳🇱 2.58.56.61

🇺🇸 2602:80d:1007::22

🇮🇩 210.79.190.22

🇳🇴 202.50.55.105