JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.174

104.207.47.174 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.174

Whois 104.207.47.174

IP Abuse Reports for 104.207.47.174:

This IP address has been reported a total of 149 times from 29 distinct sources. 104.207.47.174 was first reported on June 4th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇿 billyborsht	2026-05-15 23:01:54 (3 weeks ago)	2026-05-16T11:01:53.536980+12:00 southern wordpress(poetryinhell.org)[903896]: Authentication attemp ... show more 2026-05-16T11:01:53.536980+12:00 southern wordpress(poetryinhell.org)[903896]: Authentication attempt for unknown user trumpweiss from 104.207.47.174 ... show less	Hacking Web App Attack
Anonymous	2026-03-22 03:50:50 (2 months ago)	Forum/form spam	Web Spam
🇳🇱 jjnxpct	2026-02-16 04:54:55 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇩🇪 dbmwebdesign	2026-02-15 11:45:47 (3 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:31:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:31:07.661256 2026] [security2:error] [pid 11367:tid 11367] [client 104.207.47.174:60997] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozarkshousing.com"] [uri "/new/.git/config"] [unique_id "aZGuewjjY_84l1Apvz79JAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:58:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:58:39.618886 2026] [security2:error] [pid 23741:tid 23741] [client 104.207.47.174:36871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psicotanato.com"] [uri "/.env.save"] [unique_id "aZFun-W70VtbdBF8jHXsYgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:38:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:38:09.211591 2026] [security2:error] [pid 24209:tid 24233] [client 104.207.47.174:46691] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "okorganicgardening.org"] [uri "/api/.env"] [unique_id "aZFbwWl2ArKkOi45FeqEkgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 05:18:24 (3 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:17:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:17:01.554963 2026] [security2:error] [pid 26269:tid 26269] [client 104.207.47.174:11289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "primestatepainting.com"] [uri "/config/.env"] [unique_id "aZFWzYkDFlyR9ZfyMS1xOgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 04:29:28 (3 months ago)	Blocking for trying to access an exploit file: /.aws/credentials	Hacking
🇺🇸 mnsf	2026-02-15 04:06:12 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:47:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:47:07.893253 2026] [security2:error] [pid 17774:tid 17774] [client 104.207.47.174:12483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "northamericantrucking.com"] [uri "/site/.git/config"] [unique_id "aZFBu4d3ZkFPlluU89ToxwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:23:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:23:51.015848 2026] [security2:error] [pid 2169:tid 2239] [client 104.207.47.174:37293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nobledyn.com"] [uri "/config/.env"] [unique_id "aZE8R3CmiqKc9qeqCdLiqQAAAIQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:02:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:02:49.210991 2026] [security2:error] [pid 184121:tid 184190] [client 104.207.47.174:59189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royalfellows.com"] [uri "/admin/.env"] [unique_id "aZEpSTQWjcuk3jEODCUxYAAAAcY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:42:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.174 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:42:52.251458 2026] [security2:error] [pid 15962:tid 15962] [client 104.207.47.174:42645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "neonmotel.com"] [uri "/frontend/.env"] [unique_id "aZEknKBDAe6Z1Gcor7CA-wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 210.14.142.89

🇬🇧 195.96.139.160

🇧🇪 104.199.37.122

🇳🇱 85.121.55.219

🇪🇬 62.193.91.121

🇺🇸 62.132.18.53

🇮🇩 46.202.186.249

🇺🇸 20.106.207.8

🇺🇸 172.93.100.236

🇮🇳 157.51.102.78

🇺🇸 147.185.132.107

🇧🇷 138.99.80.102

🇭🇰 123.58.215.196

🇺🇸 107.0.200.227

🇳🇱 95.85.226.199

🇺🇦 46.149.191.249

🇳🇱 45.142.193.213

🇧🇷 43.164.195.69

🇨🇳 14.103.46.139

🇺🇸 3.131.24.55