JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.103

104.207.47.103 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.103

Whois 104.207.47.103

IP Abuse Reports for 104.207.47.103:

This IP address has been reported a total of 155 times from 16 distinct sources. 104.207.47.103 was first reported on June 6th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-06-03 11:38:54 (4 days ago)	Known malicious PHP file or CMS probe	Web App Attack
🇫🇷 solution.it	2026-05-16 16:19:07 (3 weeks ago)	[Sat May 16 18:19:06.750267 2026] [php7:error] [pid 4055714:tid 4055714] [client 104.207.47.103:3385 ... show more [Sat May 16 18:19:06.750267 2026] [php7:error] [pid 4055714:tid 4055714] [client 104.207.47.103:33855] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇺🇸 oncord	2026-05-06 12:42:30 (1 month ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-09 18:41:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 13:40:57.660271 2026] [security2:error] [pid 2329971:tid 2329971] [client 104.207.47.103:11857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fvsllc.com"] [uri "/frontend/.env"] [unique_id "aYoqOd5SNVvNdp1QdpELcgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 17:16:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 12:16:07.451263 2026] [security2:error] [pid 11151:tid 11151] [client 104.207.47.103:35159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fulltime-life.com"] [uri "/admin/.env"] [unique_id "aYoWV4Grwqr2JtFy9QjjzwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 11:04:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 06:03:56.024061 2026] [security2:error] [pid 4482:tid 4482] [client 104.207.47.103:9475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gaksato.com"] [uri "/wp/.git/config"] [unique_id "aYm_HOLMTYHmXEsAwOIcBgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 10:02:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 05:02:06.244137 2026] [security2:error] [pid 6618:tid 6618] [client 104.207.47.103:15469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabosoftware.com"] [uri "/api/.git/config"] [unique_id "aYmwnrv2ZUTHo4dXTer62AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 06:14:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 01:14:12.292291 2026] [security2:error] [pid 12972:tid 12972] [client 104.207.47.103:55489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "furball.global"] [uri "/.env"] [unique_id "aYl7NBEWS8PHOT68le8BhgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 05:35:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 00:35:31.088688 2026] [security2:error] [pid 3304:tid 3311] [client 104.207.47.103:47753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "funerariafernandez.net"] [uri "/site/.git/config"] [unique_id "aYlyI9trPSp6E7oCbYvj4gAAAEQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-08 21:14:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 16:14:02.001533 2026] [security2:error] [pid 21000:tid 21000] [client 104.207.47.103:51079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fsmfl.com"] [uri "/.env.local"] [unique_id "aYj8mpVM6qbJEexlgAwUnQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-02 19:14:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 02 14:14:03.137814 2026] [security2:error] [pid 19804:tid 19804] [client 104.207.47.103:17235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiinlog.com"] [uri "/.svn/wc.db"] [unique_id "aVgY-zqtHFYtXSnfd67ZUgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 09:18:09 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:18:00.951529 2025] [security2:error] [pid 20885:tid 20885] [client 104.207.47.103:57517] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "churchbehindthewalls.com"] [uri "/.env"] [unique_id "aVJHSD7mRN8gat-FtfGK-QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:01:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:00:56.801468 2025] [security2:error] [pid 6744:tid 6744] [client 104.207.47.103:57907] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestattorneys.com"] [uri "/.svn/wc.db"] [unique_id "aVI1OKCGGlortKVYOVoYDgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:18:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:18:12.424297 2025] [security2:error] [pid 2660271:tid 2660281] [client 104.207.47.103:34127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scottspencergfx.com"] [uri "/.env"] [unique_id "aVIdJLy5r8TcoL1xTBgFNQAAAEg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:00:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:00:10.909931 2025] [security2:error] [pid 30238:tid 30238] [client 104.207.47.103:29821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "landtug.com"] [uri "/.env"] [unique_id "aVIY6hCoLoXWW7k5OrRcsQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 216.132.188.253

🇩🇪 213.209.159.242

🇲🇦 196.92.7.249

🇺🇸 184.105.247.247

🇸🇬 172.217.43.148

🇩🇪 167.172.104.91

🇳🇱 158.94.210.203

🇺🇸 146.88.241.75

🇫🇷 91.196.152.95

🇫🇷 51.159.104.75

🇮🇷 151.234.200.237

🇸🇬 129.226.95.93

🇧🇩 103.99.181.58

🇫🇮 46.62.184.25

🇺🇸 217.216.84.206

🇮🇳 117.193.33.166

🇮🇳 103.255.220.10

🇮🇳 103.203.38.140

🇱🇹 45.227.254.170

🇺🇸 45.79.177.245