JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.172

104.207.47.172 was found in our database!

This IP was reported 179 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.172

Whois 104.207.47.172

IP Abuse Reports for 104.207.47.172:

This IP address has been reported a total of 179 times from 26 distinct sources. 104.207.47.172 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Site.eu	2026-05-06 21:15:27 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇺🇸 TPI-Abuse	2026-02-18 02:38:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 21:37:56.558563 2026] [security2:error] [pid 15293:tid 15293] [client 104.207.47.172:64401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "reparcol.es"] [uri "/frontend/.env"] [unique_id "aZUmBIVeHl9OjR-4q908hQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 00:51:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:51:13.816178 2026] [security2:error] [pid 16647:tid 16647] [client 104.207.47.172:44845] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulpasquali.com"] [uri "/api/.git/config"] [unique_id "aZUNAQ1dY3JU-XkSCpAYLQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 10:06:23 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:49:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:49:51.819626 2026] [security2:error] [pid 14580:tid 14580] [client 104.207.47.172:34003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meta24.vip"] [uri "/backend/.env"] [unique_id "aY7lr_8WcX1YNnw3UJK2XwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:06:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:05:56.662917 2026] [security2:error] [pid 3561:tid 3561] [client 104.207.47.172:25071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medioskreativos.com"] [uri "/admin/.env"] [unique_id "aY7NVFuskDEuJaldtfvDoAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:49:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:49:49.344701 2026] [security2:error] [pid 1908032:tid 1908066] [client 104.207.47.172:41397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "media928.com"] [uri "/wp/.git/config"] [unique_id "aY7JjVzv4JwElgfTiyr1uAAAARg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:21:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:21:44.070373 2026] [security2:error] [pid 26773:tid 26773] [client 104.207.47.172:10591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcthorpe.com"] [uri "/admin/.env"] [unique_id "aY7C-Pq9PQH6U3TUGzRY8AAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:06:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:06:02.724787 2026] [security2:error] [pid 20591:tid 20591] [client 104.207.47.172:50913] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcbrearty.org"] [uri "/.env.production"] [unique_id "aY6_SoOVEUitbbkdh5gkCQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:55:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:55:32.095343 2026] [security2:error] [pid 11925:tid 11925] [client 104.207.47.172:18111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "masterfulenlighteningfreestudies.org"] [uri "/site/.git/config"] [unique_id "aY6uxI3YEstCUpgwy30B2QAAACk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:38:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:38:12.800419 2026] [security2:error] [pid 18126:tid 18126] [client 104.207.47.172:10287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynmonroebookstore.com"] [uri "/wp/.git/config"] [unique_id "aY6cpOSw5uR5ZkS_qvmlCAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:18:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:18:12.633412 2026] [security2:error] [pid 15846:tid 15846] [client 104.207.47.172:46753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magicalgirlcrafts.com"] [uri "/frontend/.env"] [unique_id "aY571LhmqN2ZfHn6oHyi7AAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-12 17:59:06 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-02-12 17:06:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:06:48.592107 2026] [security2:error] [pid 6975:tid 6975] [client 104.207.47.172:64103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "curtchristian.us"] [uri "/.env"] [unique_id "aY4IqPAfmbs5eINPa4_BvQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-02-12 15:57:08 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack

Showing 1 to 15 of 179 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 210.79.142.221

🇲🇲 202.165.90.220

🇲🇴 125.31.2.160

🇮🇳 125.21.53.232

🇮🇳 103.214.61.21

🇩🇪 78.46.211.133

🇳🇱 45.148.10.240

🇮🇹 37.186.141.80

🇫🇷 207.180.248.38

🇺🇸 172.70.176.16

🇭🇰 152.32.215.226

🇰🇷 125.142.37.91

🇨🇳 117.33.242.180

🇺🇸 98.122.215.23

🇫🇷 91.196.152.91

🇧🇬 79.124.40.110

🇵🇷 70.45.152.226

🇺🇸 64.62.156.228

🇳🇱 45.156.128.177

🇩🇪 45.135.194.83