JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.48.99

104.207.48.99 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 17%: ?

17%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.48.99

Whois 104.207.48.99

IP Abuse Reports for 104.207.48.99:

This IP address has been reported a total of 140 times from 15 distinct sources. 104.207.48.99 was first reported on June 5th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-31 15:35:22 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-35.104.207.48.99.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-35.104.207.48.99.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇨🇭 backslash	2026-05-14 22:33:00 (3 weeks ago)		Web Spam
🇫🇷 masterguru	2026-05-11 09:15:53 (3 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 masterguru	2026-04-26 17:42:21 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 masterguru	2026-04-23 13:06:34 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-04-21 01:50:31 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.48.99 (BR/Brazil/-): 1 in the last 3600 secs (0-196) show less	Hacking
Anonymous	2026-02-11 09:01:00 (3 months ago)	SMS pumping	DDoS Attack VPN IP Bad Web Bot Web App Attack
🇩🇪 www.Examensfragen.de	2025-12-11 20:40:20 (5 months ago)		Web Spam Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-09 01:59:17 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 20:59:09.705930 2025] [security2:error] [pid 4477:tid 4477] [client 104.207.48.99:11971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "joshseipel.com"] [uri "/.git/HEAD"] [unique_id "aTeCbbsEjA4SXfigCGoPggAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 14:56:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:56:34.368938 2025] [security2:error] [pid 11072:tid 11072] [client 104.207.48.99:47413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scswat.org"] [uri "/.git/HEAD"] [unique_id "aTWVomE1S4PeroBfGdeh6wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:42:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:42:37.006395 2025] [security2:error] [pid 17502:tid 17502] [client 104.207.48.99:13377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brupharm.net"] [uri "/.svn/wc.db"] [unique_id "aTQWre4gffv_JzJ_9Gvu1QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 16:05:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 11:05:39.887848 2025] [security2:error] [pid 16796:tid 16796] [client 104.207.48.99:22137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "taniagedik.com"] [uri "/.svn/wc.db"] [unique_id "aTMC0_hckDTIi6vFUH-lvwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:16:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:16:33.531947 2025] [security2:error] [pid 28212:tid 28212] [client 104.207.48.99:30311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tttns.com"] [uri "/.git/HEAD"] [unique_id "aTJOkRZ5yFcV1sExXuthhAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:44:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:44:50.312627 2025] [security2:error] [pid 11880:tid 11880] [client 104.207.48.99:12325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.blueworkdesign.com"] [uri "/.svn/wc.db"] [unique_id "aSU0Qp6MNmPYPuOi6Y3WGwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:19:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:19:05.044247 2025] [security2:error] [pid 1961:tid 1961] [client 104.207.48.99:20247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tcomputerguy.com"] [uri "/.env"] [unique_id "aSUgKfWB7mI29JgXXdkPqwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.96.139.46

🇮🇳 103.190.7.203

🇺🇸 65.191.203.78

🇸🇬 172.217.32.153

🇬🇧 141.136.43.123

🇺🇸 76.36.177.159

🇺🇸 65.49.1.41

🇸🇬 47.79.205.53

🇺🇸 34.75.223.138

🇧🇪 34.62.33.248

🇨🇦 34.47.28.178

🇮🇳 14.195.24.147

🇩🇪 217.154.173.63

🇨🇳 193.112.178.138

🇲🇴 182.93.50.90

🇮🇳 172.253.229.221

🇺🇸 151.243.141.86

🇮🇳 137.97.175.92

🇨🇳 115.190.119.177

🇭🇰 101.36.122.129