JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.221

104.207.47.221 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.221

Whois 104.207.47.221

IP Abuse Reports for 104.207.47.221:

This IP address has been reported a total of 139 times from 18 distinct sources. 104.207.47.221 was first reported on June 5th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-02 22:40:02 (3 days ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 02:14:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 21:14:37.095164 2026] [security2:error] [pid 8635:tid 8635] [client 104.207.47.221:46777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rememberingemily.com"] [uri "/.env"] [unique_id "aZUgjdFWHFZb2bKb_Hd07QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 00:48:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:47:55.594233 2026] [security2:error] [pid 2926431:tid 2926431] [client 104.207.47.221:46159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pattifox.com"] [uri "/test/.git/config"] [unique_id "aZUMOzN9QBsTMm-24JdwQwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-01-27 00:15:15 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:12 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-23 19:40:16 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-02 22:46:25 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-29 00:57:46 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 19:57:39.717963 2025] [security2:error] [pid 7462:tid 7462] [client 104.207.47.221:17645] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|abq4you.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "abq4you.com"] [uri "/database.sql"] [unique_id "aSpFA905CxeWBRH4LJg8pAAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 20:56:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 15:56:35.219231 2025] [security2:error] [pid 26965:tid 26965] [client 104.207.47.221:48101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aavondalervstorage.com"] [uri "/.env.old"] [unique_id "aSoMgxhvZy65rDO-s7FUPQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 05:20:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 00:19:54.561354 2025] [security2:error] [pid 10372:tid 10372] [client 104.207.47.221:21747] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "929.us"] [uri "/.git/config"] [unique_id "aSkw-hCtQdNACJz0Dn7v8gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:05:26 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇦🇺 oncord	2025-11-18 00:17:49 (6 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-11-16 20:16:31 (6 months ago)	(From [email protected]) Multiverse AI - The Only Platform That Gives You Access To Every To ... show more (From [email protected]) Multiverse AI - The Only Platform That Gives You Access To Every Top AI Model — In Every Version — All Inside A Single, Beautifully Simple Dashboard. https://ai108.online/MultiverseAI ChatGPT (3.5 → 4.5 → 4o → 5 → Turbo → Nano) Gemini (1.5 Pro → 2.0 Flash) Claude (3 Opus → Sonnet → Haiku) Grok (1 through 4) DALL·E, Veo, Kling, ElevenLabs, DeepSeek, FLUX, LLaMA & more And yes — you get every future version included automatically. https://ai108.online/MultiverseAI to UNSUBSCRIBE: https://ai108.online/unsubscribe?domain=burnschiropractic.com Address: 108 West Street Comstock Park, MI 48721 show less	Phishing Web Spam
Anonymous	2025-11-14 07:34:12 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 techboy117	2025-11-14 00:46:07 (6 months ago)	Blocking due to password spraying.	Brute-Force

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.226

🇺🇸 172.253.217.26

🇸🇬 167.172.93.20

🇮🇳 116.68.103.73

🇺🇸 100.29.192.57

🇩🇪 88.198.25.181

🇮🇱 82.102.188.117

🇮🇳 52.140.76.154

🇸🇬 43.160.233.207

🇸🇬 43.156.201.48

🇩🇪 31.70.65.19

🇸🇻 190.86.135.210

🇨🇳 115.190.172.63

🇨🇳 112.225.37.197

🇳🇱 45.142.193.10

🇺🇸 2001:470:1:332::a2

🇨🇴 179.33.210.213

🇳🇱 176.65.139.56

🇩🇪 144.76.159.59

🇨🇳 117.187.127.143