JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.250

104.207.46.250 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.250

Whois 104.207.46.250

IP Abuse Reports for 104.207.46.250:

This IP address has been reported a total of 144 times from 23 distinct sources. 104.207.46.250 was first reported on June 6th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-30 09:17:10 (1 month ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-04-23 14:11:36 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-11.104.207.46.250.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-11.104.207.46.250.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇫🇷 masterguru	2026-04-02 05:49:49 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.46.250 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.46.250 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇱🇻 garmtech.com	2026-03-27 23:32:30 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇱🇻 garmtech.com	2026-03-24 08:09:33 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇪🇸 librebit	2026-03-16 04:16:17 (2 months ago)	Brute force	Brute-Force
🇦🇺 2000cn.com.au	2026-02-11 21:04:47 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:02:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:02:03.694454 2026] [security2:error] [pid 18405:tid 18405] [client 104.207.46.250:30183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icbsmonitor.net"] [uri "/.git/config"] [unique_id "aYqtu6kyep_APBdqy-vp9QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:14:57 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:14:53.233639 2026] [security2:error] [pid 6158:tid 6158] [client 104.207.46.250:63097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotjive.com"] [uri "/.env"] [unique_id "aYpcXbjaquyJz9EWwSvOQQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:20:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:20:09.536569 2026] [security2:error] [pid 14718:tid 14718] [client 104.207.46.250:44209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kamrynbever.com"] [uri "/backend/.env"] [unique_id "aYpBeVgXLR4XNzqR1074zgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-01-02 22:59:51 (5 months ago)	Auto-ban: >3000 req/min op 2026-01-02	Hacking Web App Attack SSH
🇧🇷 Sipo Chutão	2025-12-31 03:00:01 (5 months ago)	/.git/HEAD	Hacking
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:29 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-28 16:18:36 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 11:18:29.562420 2025] [security2:error] [pid 22353:tid 22353] [client 104.207.46.250:50323] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trafficstopper.com"] [uri "/.svn/wc.db"] [unique_id "aVFYVe4G8N7Nyw87n6YIXwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:33:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:33:20.538192 2025] [security2:error] [pid 1598:tid 1598] [client 104.207.46.250:52415] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fibroscopie.net"] [uri "/.git/HEAD"] [unique_id "aSVbwHvyxMlbRoBT2cgRJgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 178.20.210.208

🇹🇭 159.192.144.206

🇺🇸 159.89.190.217

🇨🇳 121.41.40.112

🇺🇸 104.236.53.110

🇸🇬 101.47.155.9

🇷🇴 92.118.39.62

🇳🇱 45.156.87.147

🇳🇱 45.148.10.152

🇰🇷 221.156.126.1

🇧🇷 200.196.50.91

🇹🇼 198.235.24.110

🇮🇩 182.160.54.167

🇪🇨 181.39.158.27

🇩🇪 178.105.254.133

🇺🇸 172.172.196.177

🇮🇳 168.144.81.184

🇩🇪 167.94.146.68

🇻🇳 165.154.137.186

🇺🇸 150.107.38.61