JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.198

104.207.47.198 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.198

Whois 104.207.47.198

IP Abuse Reports for 104.207.47.198:

This IP address has been reported a total of 151 times from 20 distinct sources. 104.207.47.198 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-15 22:35:35 (1 month ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-03-12 20:22:41 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 22-22.104.207.47.198.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 22-22.104.207.47.198.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 OceanTreasure	2026-02-13 13:15:41 (3 months ago)	tcp/443; Environment file access attempt: "GET /.env" @ 2026-02-13T13:11:04Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:44:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:44:48.178667 2026] [security2:error] [pid 8269:tid 8269] [client 104.207.47.198:15575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meshbagsandmore.com"] [uri "/new/.git/config"] [unique_id "aY7kgH79GyITj41EB7LR5gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:41:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:41:20.320387 2026] [security2:error] [pid 9260:tid 9260] [client 104.207.47.198:14641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "med-engineering.com"] [uri "/.env.save"] [unique_id "aY7HkGAuZnbRnL2TXeFQ-wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:50:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:50:01.028735 2026] [security2:error] [pid 2227494:tid 2227494] [client 104.207.47.198:34751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mairslair.com"] [uri "/app/.env"] [unique_id "aY6DSQvHEDbwuVfzf2B7JQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-12 18:00:19 (3 months ago)	Try to access /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:04:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:03:59.387857 2026] [security2:error] [pid 29893:tid 29893] [client 104.207.47.198:51437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cthog.xyz"] [uri "/.env"] [unique_id "aY4H_xz8KIG4-fzNRhi2ygAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:05:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:05:42.436734 2026] [security2:error] [pid 5684:tid 5684] [client 104.207.47.198:34581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dipseanet.com"] [uri "/.git/config"] [unique_id "aY36VlcEwMvmMq2z586V4AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-12 02:29:27 (3 months ago)	Forum/form spam	Web Spam
🇺🇸 myagent.site	2026-02-11 02:43:05 (3 months ago)	Blocking for trying to access an exploit file: /app/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-10 20:39:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 15:38:57.425898 2026] [security2:error] [pid 19931:tid 19931] [client 104.207.47.198:41065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fulltime-life.com"] [uri "/new/.git/config"] [unique_id "aYuXYUwxxJWnV7L7hFeVFQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-26 07:25:36 (4 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-25 04:50:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:50:22.147579 2025] [security2:error] [pid 31415:tid 31415] [client 104.207.47.198:26119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "69strains.badgerkelley.com"] [uri "/.git/HEAD"] [unique_id "aSU1juzf09ZdvNDr8tWi_QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:26:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:26:30.652934 2025] [security2:error] [pid 25424:tid 25424] [client 104.207.47.198:59167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.tonylai.com"] [uri "/.env"] [unique_id "aSUv9vcKG6Maykrm2RUYKgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.78.58.87

🇩🇪 209.38.245.167

🇵🇰 203.135.25.66

🇧🇩 202.4.105.149

🇨🇷 190.211.112.149

🇲🇽 189.217.197.39

🇹🇭 171.7.45.23

🇰🇷 121.131.220.139

🇮🇳 117.247.23.131

🇧🇪 104.155.33.119

🇱🇹 81.30.98.49

🇺🇸 47.251.90.72

🇺🇸 47.154.203.236

🇺🇸 35.245.54.152

🇺🇸 34.186.121.196

🇩🇪 34.179.185.58

🇩🇪 34.141.113.133

🇩🇪 34.107.46.205

🇯🇵 34.104.236.104

🇺🇸 34.24.9.111