JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.48.6

104.207.48.6 was found in our database!

This IP was reported 86 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.48.6

Whois 104.207.48.6

IP Abuse Reports for 104.207.48.6:

This IP address has been reported a total of 86 times from 15 distinct sources. 104.207.48.6 was first reported on June 13th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-15 12:17:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:16:56.256026 2026] [security2:error] [pid 28054:tid 28054] [client 104.207.48.6:30185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teknna.com"] [uri "/v2/.git/config"] [unique_id "aZG5OApOBlvf-IBR6wiOlwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:13:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:13:38.679513 2026] [security2:error] [pid 13218:tid 13218] [client 104.207.48.6:46599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "syriahabailey.com"] [uri "/backup/.git/config"] [unique_id "aZFkEj-M_QSfGtzrczlTaAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-02-15 05:15:22 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:19:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:19:18.591836 2026] [security2:error] [pid 17153:tid 17153] [client 104.207.48.6:54997] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "strawusa.com"] [uri "/app/.env"] [unique_id "aZFJRodCTK9fr-ZeTZWuGQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Lino Project	2026-02-15 03:36:39 (3 months ago)	104.207.48.6 - - [15/Feb/2026:04:36:38 +0100] "GET /.env HTTP/1.1" 404 3771 "-" "Mozilla/5.0 (Window ... show more 104.207.48.6 - - [15/Feb/2026:04:36:38 +0100] "GET /.env HTTP/1.1" 404 3771 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.48.6 - - [15/Feb/2026:04:36:38 +0100] "GET /.env.production HTTP/1.1" 404 418 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 03:05:36 (3 months ago)	Scanning/Probing (25)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:15:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:15:45.744657 2026] [security2:error] [pid 15465:tid 15465] [client 104.207.48.6:45721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "speakertrainerconsultantpatdavis.com"] [uri "/admin/.git/config"] [unique_id "aZEsUde7TtscNXij6FVg1wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:23:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:23:15.757353 2026] [security2:error] [pid 28513:tid 28513] [client 104.207.48.6:27209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "munnich.net"] [uri "/site/.git/config"] [unique_id "aZEgA9dqVzAp5BYjCpuR3wAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:36:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:36:07.328105 2026] [security2:error] [pid 25561:tid 25561] [client 104.207.48.6:57303] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mountainchristmascards.com"] [uri "/api/.git/config"] [unique_id "aZEU914DL1SU4Ios2_vP-QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:17:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:17:44.540897 2026] [security2:error] [pid 20157:tid 20157] [client 104.207.48.6:11767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "louiemobilemixology.com"] [uri "/app/.env"] [unique_id "aZEQqGDmaw4PALzcr8X0qAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:25:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:25:03.352144 2026] [security2:error] [pid 2282:tid 2282] [client 104.207.48.6:50343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "liyatalton.com"] [uri "/site/.git/config"] [unique_id "aZEET6mav0tDfLPoFZEN_wAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:04:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:04:14.970946 2026] [security2:error] [pid 572788:tid 572788] [client 104.207.48.6:40135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "listerman.org"] [uri "/test/.git/config"] [unique_id "aZD_bsB0vJ0tseoKrVF-YgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:14:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:14:30.778391 2026] [security2:error] [pid 2171:tid 2305] [client 104.207.48.6:20899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moidawg.gg"] [uri "/app/.env"] [unique_id "aZDzxhdun7oDywmMCK78ygAAARg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:40:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:40:04.631944 2026] [security2:error] [pid 32691:tid 32710] [client 104.207.48.6:23709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mjkotob.com"] [uri "/.env"] [unique_id "aZDrtOd7AXs6s7Qt6jCknQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 conseilgouz	2025-11-29 14:51:25 (6 months ago)	vee-12 : Block return, carriage return, ... characters=>/le-club/partenaires?id=1%27(')	Hacking

Showing 1 to 15 of 86 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 189.147.19.238

🇺🇸 167.99.13.52

🇺🇸 162.216.150.178

🇩🇪 162.158.95.38

🇩🇪 159.195.21.168

🇬🇧 81.19.219.218

🇺🇸 2602:fb54:1a00::99

🇧🇪 198.235.24.131

🇳🇱 193.176.31.204

🇨🇳 163.0.39.184

🇨🇦 85.217.149.19

🇷🇴 80.94.92.187

🇩🇪 64.89.163.131

🇳🇱 45.148.10.152

🇺🇸 45.130.83.105

🇲🇽 38.210.202.4

🇬🇧 35.203.210.173

🇬🇧 5.226.140.96

🇳🇱 193.176.31.221

🇨🇳 101.126.55.179