JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.49

104.207.46.49 was found in our database!

This IP was reported 165 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.49

Whois 104.207.46.49

IP Abuse Reports for 104.207.46.49:

This IP address has been reported a total of 165 times from 26 distinct sources. 104.207.46.49 was first reported on June 20th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 i-turnradio.nl	2026-02-22 03:52:02 (3 months ago)	2026-02-22 04:52:02 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇬🇧 relianoid.com	2026-02-16 10:43:46 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-10 06:23:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:23:12.401104 2026] [security2:error] [pid 3454:tid 3454] [client 104.207.46.49:42405] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mailperform.com"] [uri "/.git/config"] [unique_id "aYrO0BqxDYHBm51P2ToIeAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:57:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:57:21.955853 2026] [security2:error] [pid 30222:tid 30222] [client 104.207.46.49:53017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iheldt.net"] [uri "/.env.local"] [unique_id "aYrIwXp4_LFDTLIowPrGWwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-10 04:31:18 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-10 04:02:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:02:05.817650 2026] [security2:error] [pid 25057:tid 25065] [client 104.207.46.49:47761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icbc-canada.com"] [uri "/test/.git/config"] [unique_id "aYqtvdx5JYPt7AJhJMhmxQAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:54:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:54:25.423130 2026] [security2:error] [pid 16906:tid 16906] [client 104.207.46.49:52881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-brochures.com"] [uri "/.env"] [unique_id "aYqd4Um6OgL0yZe-_0NgLAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:46:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:46:13.827627 2026] [security2:error] [pid 21014:tid 21014] [client 104.207.46.49:34667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "htaautosales.com"] [uri "/.env.local"] [unique_id "aYpxxYgbiuEIJfq43TVyqwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:02:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:02:43.265524 2026] [security2:error] [pid 21292:tid 21292] [client 104.207.46.49:47409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathiehazlett.com"] [uri "/.env.save"] [unique_id "aYpZg0iO9jrnf0H5kLTcYgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Axel	2026-02-09 20:49:31 (3 months ago)	Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /test/.git/co ... show more Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /test/.git/config show less	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:24:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:24:32.779690 2026] [security2:error] [pid 2882:tid 2882] [client 104.207.46.49:47447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kanata.ws"] [uri "/.env.local"] [unique_id "aYpCgBgoezW4APZTcZGviwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 relianoid.com	2026-02-09 19:09:01 (3 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2025-12-29 18:39:02 (5 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-12-22 17:48:36 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:05:02 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 165 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 103.224.35.90

🇺🇸 20.163.15.166

🇺🇸 3.142.170.60

🇮🇳 182.95.57.194

🇸🇬 172.217.47.30

🇺🇸 172.202.104.202

🇮🇳 103.149.236.123

🇹🇷 85.153.236.140

🇳🇱 64.89.162.78

🇺🇸 64.31.25.250

🇨🇳 59.52.226.146

🇺🇸 52.188.189.6

🇺🇸 2607:f8b0:4001:c76::125

🇺🇿 185.139.137.90

🇹🇼 198.235.24.120

🇺🇸 162.216.149.68

🇰🇷 117.111.5.149

🇮🇳 115.245.172.214

🇸🇬 103.250.11.116

🇿🇦 102.64.42.40