JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.88

104.207.47.88 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.88

Whois 104.207.47.88

IP Abuse Reports for 104.207.47.88:

This IP address has been reported a total of 132 times from 20 distinct sources. 104.207.47.88 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-05-16 01:38:26 (3 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 masterguru	2026-03-30 07:42:43 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.47.88 (US/United States/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.47.88 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-03-28 11:38:02 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇫🇷 masterguru	2026-03-26 15:30:11 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.47.88 (US/United States/-): 1 in the l ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.47.88 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇺🇸 TPI-Abuse	2026-03-02 21:54:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 16:53:44.755083 2026] [security2:error] [pid 26885:tid 26885] [client 104.207.47.88:55021] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.htaautosales.com.modeltdr.com"] [uri "/.env"] [unique_id "aaYG6KicQemga0bRg6Ol3gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:36:03 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇦🇺 oncord	2026-01-10 23:35:10 (4 months ago)	Form spam	Web Spam
🇳🇱 i-turnradio.nl	2026-01-06 05:58:39 (5 months ago)	2026-01-06 @ 06:58:39 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:57:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:57:09.296108 2025] [security2:error] [pid 26815:tid 26815] [client 104.207.47.88:50749] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.rkm.biz"] [uri "/.svn/wc.db"] [unique_id "aSVFNd95WmINKszGTNopwwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:56:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:56:52.119582 2025] [security2:error] [pid 20351:tid 20351] [client 104.207.47.88:9823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.insectpolitics.com"] [uri "/.env"] [unique_id "aSUpBHWFdX-3aQBU8EXs5wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:32:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:32:49.249168 2025] [security2:error] [pid 24903:tid 24903] [client 104.207.47.88:23669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.idatex.us"] [uri "/.git/HEAD"] [unique_id "aSUjYb29_o-gE28XyinvlAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:05:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:05:24.896395 2025] [security2:error] [pid 31207:tid 31207] [client 104.207.47.88:17117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.suretrap.com"] [uri "/.svn/wc.db"] [unique_id "aSUc9ASjAeS1Y2TaYOOn_AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:38:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:38:36.415704 2025] [security2:error] [pid 17301:tid 17301] [client 104.207.47.88:60397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.truthsabouthealthcare.com"] [uri "/.env"] [unique_id "aSUWrCGOZAaJMQEuG6nyqQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:06:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:06:29.105340 2025] [security2:error] [pid 26777:tid 26777] [client 104.207.47.88:42559] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.fabandco.com"] [uri "/.svn/wc.db"] [unique_id "aSUPJQMlr0uykwUfJb43PAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-11-15 15:20:12 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 213.165.74.84

🇹🇼 198.235.24.36

🇷🇺 193.232.203.117

🇮🇹 172.253.13.154

🇭🇰 150.5.154.160

🇺🇸 138.68.243.18

🇺🇸 108.83.12.147

🇺🇸 64.62.156.10

🇺🇸 52.15.61.48

🇳🇱 45.148.10.152

🇰🇷 8.230.4.82

🇺🇸 2604:a940:302:118:0:44::

🇧🇪 198.235.24.219

🇹🇼 198.235.24.22

🇳🇱 185.93.89.167

🇮🇳 182.95.186.198

🇵🇭 119.92.251.145

🇷🇺 109.111.175.210

🇻🇳 103.75.182.132

🇱🇹 81.30.98.62