JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.48.219

104.207.48.219 was found in our database!

This IP was reported 162 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.48.219

Whois 104.207.48.219

IP Abuse Reports for 104.207.48.219:

This IP address has been reported a total of 162 times from 27 distinct sources. 104.207.48.219 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-05-06 00:23:07 (1 month ago)	ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.48.219 ... show more ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.48.219 2026-05-05 09:50:57 / 2026-05-05 09:57:59 / 2026-05-05 09:53:53 / 2026-05-05 09:50:52 / 2026-05-05 09:53:55 / 2026-05-05 09:51:51 / show less	Web App Attack
🇬🇧 PeravixGroup	2026-05-03 11:42:17 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 MAGIC	2026-04-16 01:55:21 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇹🇷 rtbh.com.tr	2026-03-04 20:11:53 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-15 20:11:35 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Anonymous	2026-02-15 16:31:13 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 12:29:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:29:15.269434 2026] [security2:error] [pid 25776:tid 25776] [client 104.207.48.219:23373] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "queenscountyparade.org"] [uri "/admin/.env"] [unique_id "aZG8G0i38hbvt9HBmkgODwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 mauri64	2026-02-15 12:00:15 (3 months ago)	lfd - (mod_security) mod_security (id:949110) triggered by 104.207.48.219 (-): 5 in the last 3600 se ... show more lfd - (mod_security) mod_security (id:949110) triggered by 104.207.48.219 (-): 5 in the last 3600 secs show less	Brute-Force
🇺🇸 TPI-Abuse	2026-02-15 11:41:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:40:56.760041 2026] [security2:error] [pid 531:tid 531] [client 104.207.48.219:57447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qavideo.com"] [uri "/.env"] [unique_id "aZGwyFWOoUDxfdTPFzJarQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:06:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:06:13.191441 2026] [security2:error] [pid 6797:tid 6797] [client 104.207.48.219:16783] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seishin-kan.org"] [uri "/.env.local"] [unique_id "aZGopYOMU7w0XvxSumcdBwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:14:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:14:40.510426 2026] [security2:error] [pid 2711:tid 2711] [client 104.207.48.219:38177] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schunagroup.com"] [uri "/.git/config"] [unique_id "aZFkUPbb19B5ZalVqcYESgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:42:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:42:02.770447 2026] [security2:error] [pid 18759:tid 18759] [client 104.207.48.219:29791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "probiopharmaceutical.com"] [uri "/backup/.git/config"] [unique_id "aZFcqtWbRFAcrHzMzvrnpgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ne1for23	2026-02-15 05:06:54 (3 months ago)	Attempting to probe for sensitive information accidently exposed via git config. 104.207.48.219 - - ... show more Attempting to probe for sensitive information accidently exposed via git config. 104.207.48.219 - - [15/Feb/2026:05:06:54 +0000] "GET /.git/config HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Hacking
🇺🇸 myagent.site	2026-02-15 04:58:20 (3 months ago)	Blocking for trying to access an exploit file: /test/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-15 04:08:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:08:31.716816 2026] [security2:error] [pid 22106:tid 22189] [client 104.207.48.219:64039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powercoupling.com"] [uri "/backup/.git/config"] [unique_id "aZFGv8hSZQInS4HdHIcBdgAAAZY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 162 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 161.97.77.98

🇨🇳 123.245.84.167

🇻🇳 123.16.142.52

🇺🇸 107.197.183.81

🇭🇰 103.30.40.129

🇨🇳 36.154.134.146

🇺🇸 34.182.135.185

🇺🇸 5.78.205.169

🇮🇩 2406:da19:776:6e00:4217:15e5:3f05:468b

🇨🇳 223.223.199.221

🇩🇪 193.36.84.88

🇨🇱 181.224.66.205

🇺🇸 176.65.139.249

🇻🇳 171.234.8.114

🇨🇳 171.37.46.232

🇻🇳 116.105.161.231

🇭🇰 101.36.117.234

🇨🇳 58.33.97.119

🇮🇪 34.254.231.83

🇨🇳 27.47.24.203