JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.48.126

104.207.48.126 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.48.126

Whois 104.207.48.126

IP Abuse Reports for 104.207.48.126:

This IP address has been reported a total of 125 times from 9 distinct sources. 104.207.48.126 was first reported on June 4th 2024, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-02 15:12:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 10:12:24.643589 2025] [security2:error] [pid 31964:tid 31964] [client 104.207.48.126:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "perl-photo.com"] [uri "/.env"] [unique_id "aS8B2MgbId3K-OvPOGqYhgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 11:33:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 06:33:40.884831 2025] [security2:error] [pid 20892:tid 20892] [client 104.207.48.126:54939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krankybitchguitars.com"] [uri "/.svn/wc.db"] [unique_id "aS7OlI2jVNdVqAjAzc_6qwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 00:48:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 19:48:43.597899 2025] [security2:error] [pid 1013:tid 1013] [client 104.207.48.126:54841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ferienwohnungen-eva.at"] [uri "/.svn/wc.db"] [unique_id "aS43a4ogG2PE1LNe7epaAQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 18:00:08 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:06:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:06:40.028109 2025] [security2:error] [pid 895627:tid 895627] [client 104.207.48.126:9525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.hppagewideprinting.com"] [uri "/.svn/wc.db"] [unique_id "aSVHcE1hzu2J8YjFDuJ7FQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:13:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:13:39.433242 2025] [security2:error] [pid 7733:tid 7733] [client 104.207.48.126:36895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.eta-mct.com"] [uri "/.svn/wc.db"] [unique_id "aSUs8ykvL1P95UonsXEfMAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:51:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:51:22.179354 2025] [security2:error] [pid 29191:tid 29191] [client 104.207.48.126:53791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.newlifeaccommodation.org"] [uri "/.svn/wc.db"] [unique_id "aSUnunhggFs0tNkLS8CLbQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:34:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:34:01.160877 2025] [security2:error] [pid 25010:tid 25010] [client 104.207.48.126:49371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kinnairdwoodworking.com"] [uri "/.svn/wc.db"] [unique_id "aSUjqTc7NE-Z3hkXOrVkPAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:01:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:01:16.989836 2025] [security2:error] [pid 30624:tid 30624] [client 104.207.48.126:24109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.barillaequipment.com"] [uri "/.git/HEAD"] [unique_id "aSUN7E5rLXxTfFLSvb1_xQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:59:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:59:49.707678 2025] [security2:error] [pid 28458:tid 28458] [client 104.207.48.126:60945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.femalestripperslaquinta.com"] [uri "/.git/HEAD"] [unique_id "aST_hXgstByQ3F6mChnubAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:20:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:19:57.552452 2025] [security2:error] [pid 31498:tid 31522] [client 104.207.48.126:13135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pereclemente.com"] [uri "/.git/HEAD"] [unique_id "aST2Lfow9dE5SYd00VRNSQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2025-10-12 09:16:20 (8 months ago)	Blocked by CSF 13 firewall - Rule: XMLRPC US/United States/-	Web App Attack
🇳🇱 Savvii	2025-10-07 07:14:50 (8 months ago)	10 attempts against mh-misc-ban on frost	Web App Attack
Anonymous	2025-04-07 09:02:48 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 22:55:52 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.253.31.30

🇧🇬 79.124.62.230

🇺🇸 65.110.40.127

🇺🇸 2604:a880:400:d1:0:4:a0cd:2001

🇨🇦 144.217.161.208

🇿🇦 102.37.220.188

🇫🇷 85.217.140.2

🇸🇦 82.197.48.107

🇰🇷 61.76.112.4

🇨🇴 186.97.210.106

🇫🇮 147.185.133.237

🇰🇷 112.216.129.27

🇩🇪 94.26.106.90

🇷🇴 80.94.92.166

🇸🇬 193.37.32.77

🇬🇹 190.151.130.5

🇺🇸 173.239.211.152

🇺🇸 167.234.107.159

🇧🇪 87.66.15.164

🇫🇷 85.217.140.25