JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.25

104.207.47.25 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.25

Whois 104.207.47.25

IP Abuse Reports for 104.207.47.25:

This IP address has been reported a total of 93 times from 22 distinct sources. 104.207.47.25 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-15 23:11:31 (1 month ago)	Forum/form spam	Web Spam
🇩🇪 big-cloud.nl	2026-04-09 17:26:40 (1 month ago)	Try to access /xmlrpc.php	Web App Attack
Anonymous	2026-03-26 11:34:30 (2 months ago)	Forum/form spam	Web Spam
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇹🇷 rtbh.com.tr	2026-02-19 20:11:38 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-18 20:11:38 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 ghostwarriors	2026-02-18 01:50:08 (3 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2026-02-12 04:11:31 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-02-12 02:20:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 21:20:17.641422 2026] [security2:error] [pid 28501:tid 28501] [client 104.207.47.25:47433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1214productions.com"] [uri "/.git/config"] [unique_id "aY044QcmJnlzub77mETuLgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:21:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:21:07.087011 2026] [security2:error] [pid 14218:tid 14230] [client 104.207.47.25:51347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arizonasolutionsgroup.com"] [uri "/api/.env"] [unique_id "aY0O4_vIjo78ljAEn4CJ9QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 20:45:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 15:45:39.494979 2026] [security2:error] [pid 29949:tid 29949] [client 104.207.47.25:61099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arcticwarriors.org"] [uri "/backend/.env"] [unique_id "aYzqc3yphs5BBIuUMdbX-wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2026-02-10 20:11:30 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-02-10 06:39:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:39:00.959546 2026] [security2:error] [pid 16134:tid 16134] [client 104.207.47.25:59687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ilil.net"] [uri "/v2/.git/config"] [unique_id "aYrShIav-_qde2oU1TApKgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:00:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:00:51.331323 2026] [security2:error] [pid 14674:tid 14674] [client 104.207.47.25:54795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmelson.com"] [uri "/app/.env"] [unique_id "aYq7g5GuScybcrqwSQRT-gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:20:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:20:05.218459 2026] [security2:error] [pid 14796:tid 14796] [client 104.207.47.25:52243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keeran.org"] [uri "/backend/.env"] [unique_id "aYprpXWP5TNFBD1P_nO2uwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇿 213.230.93.50

🇻🇳 123.26.7.92

🇳🇱 192.178.118.158

🇧🇷 186.238.247.238

🇧🇷 179.184.242.48

🇲🇽 177.249.172.197

🇺🇸 162.216.149.139

🇨🇳 123.160.174.136

🇳🇱 2620:171:f9:f0:9999::236

🇫🇷 185.177.72.23

🇨🇴 181.119.68.179

🇻🇳 115.79.7.123

🇰🇷 112.175.29.94

🇵🇭 103.186.139.149

🇨🇦 204.112.222.54

🇺🇸 144.202.21.45

🇻🇳 123.20.93.12

🇨🇳 121.229.156.121

🇨🇳 117.14.147.2

🇭🇰 103.230.240.59