JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.135

104.207.47.135 was found in our database!

This IP was reported 185 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.135

Whois 104.207.47.135

IP Abuse Reports for 104.207.47.135:

This IP address has been reported a total of 185 times from 27 distinct sources. 104.207.47.135 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-05-14 01:04:58 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇱🇻 garmtech.com	2026-05-01 05:56:16 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-56.104.207.47.135.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-56.104.207.47.135.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2026-03-18 23:53:38 (3 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-15 13:05:11 (4 months ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇨🇦 TechnoSolutions CL	2026-02-15 12:41:07 (4 months ago)	104.207.47.135 - - [15/Feb/2026:12:41:07 +0000] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 ... show more 104.207.47.135 - - [15/Feb/2026:12:41:07 +0000] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.47.135 - - [15/Feb/2026:12:41:07 +0000] "GET /dev/.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:04:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:04:17.149983 2026] [security2:error] [pid 26640:tid 26640] [client 104.207.47.135:46327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tigerallenyim.com"] [uri "/config/.env"] [unique_id "aZG2QefBfvM57YoELze0ewAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:34:20 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:34:14.226247 2026] [security2:error] [pid 17166:tid 17166] [client 104.207.47.135:15007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tactara.net"] [uri "/api/.env"] [unique_id "aZFo5sApXLswGKWdZWZlZgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:47:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:47:15.394663 2026] [security2:error] [pid 915204:tid 915204] [client 104.207.47.135:18783] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sweak.com"] [uri "/.env.staging"] [unique_id "aZFd46-On2SUnHIsZzBmlwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 LRob.fr	2026-02-15 00:45:06 (4 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇫🇷 dynamix	2026-02-14 22:38:24 (4 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:46:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:46:14.993992 2026] [security2:error] [pid 15104:tid 15104] [client 104.207.47.135:57649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leothecolorman.com"] [uri "/.env.save"] [unique_id "aZDtJgXUA-HjvezSdABNSgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:27:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:27:47.430353 2026] [security2:error] [pid 17392:tid 17408] [client 104.207.47.135:28889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "missalastages.com"] [uri "/app/.git/config"] [unique_id "aZDo0zIyJsQfjBl0rcjZQQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2026-02-14 04:52:46 (4 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /wp/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:57:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:57:26.977427 2026] [security2:error] [pid 4392:tid 4392] [client 104.207.47.135:54061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lambdaclimateresearch.com"] [uri "/site/.git/config"] [unique_id "aY7ndm60g8eDM4l3wKCRwAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:06:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.135 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:06:15.353099 2026] [security2:error] [pid 8730:tid 8730] [client 104.207.47.135:52351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koreagreenrecycling.com"] [uri "/backend/.env"] [unique_id "aY6_V4YvYGZMA_QQivGirAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 185 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2405:201:c40d:c4:1c76:2bd9:5990:558

🇲🇽 187.154.100.150

🇺🇸 172.69.134.74

🇮🇩 128.14.232.254

🇦🇪 91.73.12.232

🇸🇨 45.194.67.30

🇺🇸 34.168.128.244

🇺🇸 20.106.206.76

🇫🇷 185.182.186.243

🇺🇸 172.210.9.172

🇧🇷 170.238.136.42

🇵🇹 157.240.212.35

🇰🇷 64.110.90.250

🇧🇷 45.205.1.240

🇳🇱 45.148.10.64

🇺🇸 45.79.177.245

🇨🇦 45.3.41.125

🇺🇸 44.28.50.34

🇷🇴 193.46.255.86

🇵🇱 195.14.112.95