JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.214

104.207.47.214 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.214

Whois 104.207.47.214

IP Abuse Reports for 104.207.47.214:

This IP address has been reported a total of 140 times from 20 distinct sources. 104.207.47.214 was first reported on June 7th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-02-16 02:05:59 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:59:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:59:39.254536 2026] [security2:error] [pid 19578:tid 19578] [client 104.207.47.214:12317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tech-servusa.com"] [uri "/app/.git/config"] [unique_id "aZG1KzafOiNT-mvNeK-qqAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:24:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:24:08.835622 2026] [security2:error] [pid 5016:tid 5016] [client 104.207.47.214:64275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thevillageartcenter.com"] [uri "/app/.env"] [unique_id "aZGs2ISOLHiZpVoE8asUlAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 11:24:05 (3 months ago)	Blocking for trying to access an exploit file: /.env.local	Hacking
🇩🇪 big-cloud.nl	2026-02-15 05:24:38 (3 months ago)	Try to access /wp/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:12:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:12:12.740556 2026] [security2:error] [pid 20150:tid 20150] [client 104.207.47.214:57759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sunshinenv.com"] [uri "/backend/.env"] [unique_id "aZFVrHs3FB7usIzU1eoGVQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:24:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:24:50.758102 2026] [security2:error] [pid 11543:tid 11543] [client 104.207.47.214:22259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stricklinphotography.com"] [uri "/new/.git/config"] [unique_id "aZFKkiZ5ofLL6eohnDYY_wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:44:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:44:47.727275 2026] [security2:error] [pid 10728:tid 10728] [client 104.207.47.214:31483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stepiz62.com"] [uri "/admin/.env"] [unique_id "aZFBLx87R_6Gsi-MI5ndgAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-15 03:38:19 (3 months ago)	http-sensitive-files - IP: 104.207.47.214 - time="2026-02-15T04:38:19+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 104.207.47.214 - time="2026-02-15T04:38:19+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.47.214 (US/200373) : 4h ban on Ip 104.207.47.214" module=db show less	Web App Attack
🇩🇪 paissangroup	2026-02-15 03:16:20 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:52:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:52:40.112794 2026] [security2:error] [pid 26194:tid 26194] [client 104.207.47.214:12491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nancybarrera.com"] [uri "/.env"] [unique_id "aZE0-No8MqiY2hu6y1MSrAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 02:47:17 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.47.214 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.47.214 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:14:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:13:59.300292 2026] [security2:error] [pid 28101:tid 28101] [client 104.207.47.214:46135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spayinsulationpros.com"] [uri "/admin/.git/config"] [unique_id "aZEr55ibQgIpcB54MNcODQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:51:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:51:15.273615 2026] [security2:error] [pid 27372:tid 27372] [client 104.207.47.214:62555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "myclassicvw.com"] [uri "/.env.save"] [unique_id "aZEmk9H7i1zKefbuI-OSCgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:33:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:33:44.322576 2026] [security2:error] [pid 8233:tid 8233] [client 104.207.47.214:12425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "machineryenchantress.com"] [uri "/.env.save"] [unique_id "aZEieD7gJrkk5-HY6wGs1QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.144

🇺🇸 162.216.149.250

🇧🇷 152.32.197.159

🇫🇮 147.185.133.56

🇺🇸 138.197.5.236

🇳🇬 102.90.102.217

🇨🇦 85.217.149.63

🇺🇸 66.132.224.26

🇺🇸 66.132.224.18

🇺🇸 54.196.208.134

🇺🇸 54.145.86.201

🇧🇷 45.205.1.243

🇧🇷 45.205.1.241

🇺🇸 35.174.189.20

🇺🇸 18.233.115.216

🇷🇴 2.57.121.25

🇺🇸 216.180.246.207

🇺🇸 216.180.246.182

🇺🇸 216.180.246.145

🇺🇸 216.180.246.19