JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.66

104.207.46.66 was found in our database!

This IP was reported 158 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.66

Whois 104.207.46.66

IP Abuse Reports for 104.207.46.66:

This IP address has been reported a total of 158 times from 26 distinct sources. 104.207.46.66 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-03-21 00:41:31 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 Peter-Johann Sarbach	2026-02-16 04:44:53 (3 months ago)	Hacking website	Hacking
Anonymous	2026-02-15 16:31:12 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 12:18:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:17:57.882999 2026] [security2:error] [pid 25232:tid 25232] [client 104.207.46.66:30387] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qualuedata.com"] [uri "/.env"] [unique_id "aZG5dfUiBxN1LgdaxBqYVgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 11:14:56 (3 months ago)	Try to access /site/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:13:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:13:16.638423 2026] [security2:error] [pid 566037:tid 566037] [client 104.207.46.66:24369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "purelywhimsical.com"] [uri "/api/.git/config"] [unique_id "aZGqTKJKA9KjLvymJkO7XgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:52:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:52:41.581658 2026] [security2:error] [pid 24623:tid 24623] [client 104.207.46.66:44733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oruguitas.org"] [uri "/config/.env"] [unique_id "aZGleQRfuZhk_XjwXkBx9AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:55:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:55:42.624965 2026] [security2:error] [pid 973082:tid 973082] [client 104.207.46.66:56111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pscc.com"] [uri "/.env.save"] [unique_id "aZFt7vKaLAHvDyKGY7KBPAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:32:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:32:43.880485 2026] [security2:error] [pid 19392:tid 19392] [client 104.207.46.66:21933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sb-adventures.com"] [uri "/site/.git/config"] [unique_id "aZFae3djeg2ZUi_wpcDW6QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 OceanTreasure	2026-02-15 05:15:33 (3 months ago)	tcp/443; Git configuration exposure attempt: "GET /dev/.git/config" @ 2026-02-15T05:05:26Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:46:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:46:13.973568 2026] [security2:error] [pid 6216:tid 6216] [client 104.207.46.66:56575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nypdkids.org"] [uri "/config/.env"] [unique_id "aZFPlXTjF4As7f8eXpCwbwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 04:37:03 (3 months ago)	Bot / scanning and/or hacking attempts: GET /admin/.git/config HTTP/1.1, GET /backup/.git/config HTT ... show more Bot / scanning and/or hacking attempts: GET /admin/.git/config HTTP/1.1, GET /backup/.git/config HTTP/1.1, GET /config/.env HTTP/1.1, GET /backend/.env HTTP/1.1, GET /app/.git/config HTTP/1.1, GET /wp/.git/config HTTP/1.1, GET /dev/.git/config HTTP/1.1, GET /test/.git/config HTTP/1.1, GET /app/.env HTTP/1.1, GET /admin/.env HTTP/1.1, GET /v2/.git/config HTTP/1.1, GET /.env.save HTTP/1.1, GET /.env.local HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:48:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.66 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:48:49.199435 2026] [security2:error] [pid 18241:tid 18241] [client 104.207.46.66:49541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portraitgalleria.com"] [uri "/backend/.env"] [unique_id "aZFCIeKq5HFAQK_o-rx1lgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 03:33:22 (3 months ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Mangelot Hosting	2026-02-15 03:14:41 (3 months ago)	(modsecurity) srv101 ModSecurity 104.207.46.66 (US/United States/-): 5 in the last 3600 secs; Ports: ... show more (modsecurity) srv101 ModSecurity 104.207.46.66 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack

Showing 1 to 15 of 158 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.141

🇬🇧 35.203.211.50

🇲🇾 202.184.134.88

🇹🇼 198.235.24.83

🇨🇳 119.163.150.13

🇨🇭 104.244.74.201

🇺🇸 104.131.69.242

🇮🇩 103.126.117.76

🇺🇸 17.132.68.21

🇺🇸 2607:f8b0:4004:c27::125

🇺🇸 2607:f8b0:4001:c58::12a

🇧🇷 209.14.88.118

🇬🇧 193.163.125.177

🇲🇽 187.190.35.163

🇩🇪 161.35.17.235

🇺🇸 104.232.39.55

🇺🇸 17.132.67.137

🇹🇼 218.161.98.129

🇩🇪 213.209.159.56

🇪🇹 196.189.126.17