JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.48.84

104.207.48.84 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.48.84

Whois 104.207.48.84

IP Abuse Reports for 104.207.48.84:

This IP address has been reported a total of 141 times from 19 distinct sources. 104.207.48.84 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 taivas.nl	2026-05-01 01:30:06 (1 month ago)	Wordpress_login_attack	Bad Web Bot
🇫🇷 dynamix	2026-04-15 12:29:12 (1 month ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇫🇷 dynamix	2026-04-15 12:14:10 (1 month ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-02-13 16:31:12 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-13 13:59:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:59:41.609227 2026] [security2:error] [pid 10023:tid 10023] [client 104.207.48.84:64867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "learningbyshipping.com"] [uri "/admin/.git/config"] [unique_id "aY8uTaJrYWvcx0CdiFv2VgAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:59:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:59:40.051555 2026] [security2:error] [pid 1233:tid 1233] [client 104.207.48.84:48897] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medicalsalesrepcareer.com"] [uri "/site/.git/config"] [unique_id "aY7L3Nmc2MznSdL3SQc7wQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-13 04:35:05 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.48.84 (BR/Brazil/-): 1 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.48.84 (BR/Brazil/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:32:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:32:29.669027 2026] [security2:error] [pid 12740:tid 12740] [client 104.207.48.84:52209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marxistphilosophy.org"] [uri "/admin/.git/config"] [unique_id "aY6pXcrn3B9soAIh-xyTcAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2026-02-13 02:42:30 (3 months ago)	C1: Web Attack GET /admin/.env	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:23:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:23:49.738061 2026] [security2:error] [pid 2170:tid 2170] [client 104.207.48.84:37017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "malta-boat-registration.com"] [uri "/wp/.git/config"] [unique_id "aY6LNRDMV2GDmmfKAns_vwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:28:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:28:16.629810 2026] [security2:error] [pid 12451:tid 12476] [client 104.207.48.84:35159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnumxl.com"] [uri "/.env.staging"] [unique_id "aY5-MOA8vvcEWynFvmyr1AAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 00:53:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 19:53:09.218226 2026] [security2:error] [pid 4028:tid 4028] [client 104.207.48.84:27331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macryder.com"] [uri "/site/.git/config"] [unique_id "aY519QnwfL4fUYigElt9hwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 oncord	2026-02-13 00:19:34 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 15:50:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:50:20.407709 2026] [security2:error] [pid 20626:tid 20626] [client 104.207.48.84:38733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "denkyusalesca.com"] [uri "/.git/config"] [unique_id "aY32vHMFj_rlYc9NsjQoRQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 15:08:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:08:04.261361 2026] [security2:error] [pid 32635:tid 32635] [client 104.207.48.84:53627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coretherapyassoc.com"] [uri "/.git/config"] [unique_id "aY3s1PTWxKvYE2uRJDdFPwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.16.244.39

🇺🇸 107.152.44.215

🇮🇩 103.29.185.162

🇸🇬 47.236.181.225

🇮🇩 34.101.71.17

🇺🇸 20.64.106.116

🇷🇴 2.57.121.25

🇺🇸 2604:a880:400:d1:0:4:8c0b:a001

🇬🇧 206.189.120.96

🇲🇽 201.140.123.130

🇺🇸 192.155.90.118

🇮🇳 183.82.111.224

🇺🇸 165.154.172.223

🇺🇸 135.237.125.26

🇨🇳 101.89.141.184

🇧🇬 79.124.62.230

🇯🇵 60.40.45.223

🇺🇸 44.206.231.46

🇺🇸 40.124.175.76

🇺🇸 35.237.110.117