JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.15

104.207.47.15 was found in our database!

This IP was reported 111 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.15

Whois 104.207.47.15

IP Abuse Reports for 104.207.47.15:

This IP address has been reported a total of 111 times from 25 distinct sources. 104.207.47.15 was first reported on June 11th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-13 09:06:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:06:45.968124 2026] [security2:error] [pid 2438:tid 2438] [client 104.207.47.15:41823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "landex.auction"] [uri "/.env.save"] [unique_id "aY7ppZ2zBH9PoxNW_rPRsAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 09:03:50 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
Anonymous	2026-02-13 07:44:37 (3 months ago)	"GET /.env HTTP/1.1"	Hacking Web App Attack
🇮🇩 Burayot	2026-02-13 06:01:26 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.47.15 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.47.15 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:02:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:02:06.206557 2026] [security2:error] [pid 17239:tid 17239] [client 104.207.47.15:30971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinesiologiaenmovimiento.com"] [uri "/wp/.git/config"] [unique_id "aY6iPpICpnTW_qhFr3MWTQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 02:06:22 (3 months ago)	Too many Status 40X (12) Scanning/Probing (14)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:56:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:56:53.446471 2026] [security2:error] [pid 19143:tid 19143] [client 104.207.47.15:58613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kbalan.com"] [uri "/.env"] [unique_id "aY6E5d-KXwl12sXEyeGKVwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 00:48:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 19:48:21.869957 2026] [security2:error] [pid 23568:tid 23568] [client 104.207.47.15:38817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kampinenlaw.com"] [uri "/.env"] [unique_id "aY501WFDQcOTkzc1wf9cMAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 18:22:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 13:22:09.775367 2026] [security2:error] [pid 25503:tid 25503] [client 104.207.47.15:52947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elitehomesfl.com"] [uri "/.git/config"] [unique_id "aY4aUTONT7zgcNPmmyXO_wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:21:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:21:47.577186 2026] [security2:error] [pid 239060:tid 239060] [client 104.207.47.15:14205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "benny-wong.net"] [uri "/.env"] [unique_id "aY4MKwQY1IxSUw196JU7bAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:23:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:23:50.658467 2026] [security2:error] [pid 31228:tid 31228] [client 104.207.47.15:31225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "area52designs.com"] [uri "/.env"] [unique_id "aY3-lv80fG9O6FZpg1WyzgAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-02-12 15:11:06 (3 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 14:48:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 09:48:05.366264 2026] [security2:error] [pid 5761:tid 5761] [client 104.207.47.15:10637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "astariafilms.com"] [uri "/.git/config"] [unique_id "aY3oJR2Gw1TNVNTrecuXlQAAAEI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 04:33:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 23:33:22.710436 2026] [security2:error] [pid 12275:tid 12275] [client 104.207.47.15:24581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eftekharschool.ir"] [uri "/backup/.git/config"] [unique_id "aY1YEjYjHa_PoJwNqxY1CQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-11 22:59:49 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-11	Hacking Web App Attack SSH

Showing 1 to 15 of 111 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 52.180.156.198

🇮🇷 2.179.146.96

🇨🇱 200.89.69.247

🇮🇩 157.20.207.165

🇺🇸 137.184.159.183

🇨🇳 121.225.55.155

🇮🇩 103.67.78.132

🇮🇩 103.67.78.102

🇮🇩 103.67.78.18

🇺🇸 66.132.195.123

🇮🇳 52.140.76.154

🇧🇷 45.205.1.242

🇨🇳 222.176.200.192

🇨🇳 222.128.104.197

🇵🇱 185.241.208.161

🇳🇱 185.223.235.10

🇰🇷 182.31.209.50

🇰🇷 175.201.138.251

🇺🇸 162.216.149.69

🇳🇬 152.32.143.189