JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.229

104.207.47.229 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.229

Whois 104.207.47.229

IP Abuse Reports for 104.207.47.229:

This IP address has been reported a total of 155 times from 23 distinct sources. 104.207.47.229 was first reported on June 7th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 lostswordfish.com	2026-05-27 20:44:03 (2 weeks ago)	Wordfence waf block on baystatereentrynetwork	Web App Attack
🇩🇪 FeG Deutschland	2026-05-25 23:45:45 (2 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 nowyouknow	2026-05-16 17:42:49 (4 weeks ago)	(From [email protected]) Hi Infinite Health Family Chiropractic, I wanted to bump t ... show more (From [email protected]) Hi Infinite Health Family Chiropractic, I wanted to bump this in case you missed it — I built an AI agent just for Infinite Health Family Chiropractic, trained on your website, Google info, and everything I could find. It’s ready to answer customer questions, book appointments, and even follow up automatically. On average, our agents help increase leads by 17% without any work needed on your part. Again, this isn’t a pitch — just 20 minutes to test-drive your new AI employee. Here’s the link to book a time: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇺🇸 nowyouknow	2026-05-15 20:20:27 (4 weeks ago)	(From [email protected]) Hi Northwest Chiropractic Center, I wanted to bump this in ... show more (From [email protected]) Hi Northwest Chiropractic Center, I wanted to bump this in case you missed it — I built an AI agent just for Northwest Chiropractic Center, trained on your website, Google info, and everything I could find. It’s ready to answer customer questions, book appointments, and even follow up automatically. On average, our agents help increase leads by 17% without any work needed on your part. Again, this isn’t a pitch — just 20 minutes to test-drive your new AI employee. Here’s the link to book a time: getdandy.com/schedule-a-call/ or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/schedule-a-call/ Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
Anonymous	2026-02-13 16:31:11 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-13 13:49:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:49:12.523993 2026] [security2:error] [pid 28175:tid 28175] [client 104.207.47.229:36083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindtoken.app"] [uri "/backup/.git/config"] [unique_id "aY8r2HiezF9diyX-Xb7DRAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:24:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:24:20.060892 2026] [security2:error] [pid 14583:tid 14583] [client 104.207.47.229:62227] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "militaryordnance.com"] [uri "/v2/.git/config"] [unique_id "aY8mBDdVo3O3UsQwTEhatAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-02-13 12:50:03 (4 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 09:10:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:10:07.989024 2026] [security2:error] [pid 7199:tid 7294] [client 104.207.47.229:19293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metropaint.net"] [uri "/config/.env"] [unique_id "aY7qb6D2klrFGs5qcSYIRAAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:54:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:54:14.672443 2026] [security2:error] [pid 7020:tid 7029] [client 104.207.47.229:33019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metalartgate.com"] [uri "/app/.git/config"] [unique_id "aY7mtvAxSgCXV6M-D16iWQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 0x44	2026-02-13 07:13:08 (4 months ago)	104.207.47.229 [13/Feb/2026] * Spam host detected, probing for vulnerabilities	Web Spam Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:44:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:44:18.575655 2026] [security2:error] [pid 11767:tid 11767] [client 104.207.47.229:25073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medcoarabia.com"] [uri "/wp/.git/config"] [unique_id "aY7IQnwPL4-N8bmjwESpvAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-13 04:25:13 (4 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:01:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:01:20.420973 2026] [security2:error] [pid 29636:tid 29636] [client 104.207.47.229:20397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "markgebhard.net"] [uri "/site/.git/config"] [unique_id "aY6iECFrHVwg6cmj7y5FUAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:45:59 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:45:56.497879 2026] [security2:error] [pid 2199231:tid 2199231] [client 104.207.47.229:37057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maritanasystems.com"] [uri "/backup/.git/config"] [unique_id "aY6edHwaYbwjjrqJYxK_gQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.157

🇮🇳 34.47.228.207

🇺🇸 66.132.195.68

🇧🇷 45.228.241.148

🇺🇸 43.173.69.147

🇺🇸 20.55.50.10

🇷🇺 5.178.87.159

🇬🇧 2a06:4880:2000::3a

🇳🇱 185.242.226.91

🇺🇸 185.88.103.225

🇲🇾 180.74.84.64

🇺🇸 66.132.172.54

🇺🇸 64.62.197.141

🇳🇱 45.148.10.151

🇵🇹 161.230.217.176

🇧🇷 129.121.37.21

🇺🇸 107.150.96.185

🇨🇳 58.221.60.25

🇨🇴 8.242.185.18

🇬🇧 5.226.140.23