JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.172

104.207.46.172 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.172

Whois 104.207.46.172

IP Abuse Reports for 104.207.46.172:

This IP address has been reported a total of 134 times from 13 distinct sources. 104.207.46.172 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-11-30 03:19:13 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 09:38:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:38:16.358261 2025] [security2:error] [pid 20731:tid 20731] [client 104.207.46.172:11061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sandecs.com"] [uri "/.svn/wc.db"] [unique_id "aSQniGFw11J_4RjuN4pkdwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:54:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:54:11.374978 2025] [security2:error] [pid 21759:tid 21759] [client 104.207.46.172:13971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.brokenglasstelecom.com"] [uri "/.env"] [unique_id "aSQPI4heT67UI4HG0QS6UQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:40:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:40:15.033007 2025] [security2:error] [pid 13240:tid 13240] [client 104.207.46.172:17121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.extremecraftsman.com"] [uri "/.git/HEAD"] [unique_id "aSPvv6yiIZ_03-zYuerkJAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:49:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:49:48.834556 2025] [security2:error] [pid 5459:tid 5459] [client 104.207.46.172:31321] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.dppc.studio"] [uri "/.git/HEAD"] [unique_id "aSPj7D6nFW2Xc5KzJRswfwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:29:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:29:48.422275 2025] [security2:error] [pid 9588:tid 9588] [client 104.207.46.172:49409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "londongroup.internetnameregistration.com"] [uri "/.svn/wc.db"] [unique_id "aSPfPP4CBQ69Cq1Bww3VGwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 07:11:04 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-31 02:30:32 (7 months ago)	WP Admin Scan Activities	Web App Attack
Anonymous	2025-10-22 13:19:21 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-20 21:44:15 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-16 23:42:16 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇩🇪 Bigbear3	2025-10-08 22:07:23 (7 months ago)	Report-by-bigbear3	Brute-Force SSH
Anonymous	2025-10-04 03:31:01 (8 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.04 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-01 01:40:02 (8 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.01 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.01 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 175.8.94.37

🇭🇰 118.193.47.155

🇺🇸 66.132.172.131

🇨🇳 27.22.66.142

🇮🇷 5.232.119.100

🇷🇺 5.3.149.246

🇬🇧 217.146.80.124

🇫🇷 143.204.194.101

🇰🇷 119.196.213.196

🇻🇳 116.110.210.96

🇸🇬 103.250.11.176

🇫🇷 82.102.18.180

🇺🇸 65.254.225.227

🇪🇸 62.175.158.122

🇨🇳 222.82.251.114

🇳🇱 185.223.235.16

🇨🇲 154.70.102.114

🇵🇰 111.92.152.195

🇳🇱 109.70.73.185

🇫🇷 82.224.202.129