JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.49.105

104.207.49.105 was found in our database!

This IP was reported 118 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.49.105

Whois 104.207.49.105

IP Abuse Reports for 104.207.49.105:

This IP address has been reported a total of 118 times from 18 distinct sources. 104.207.49.105 was first reported on June 4th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 ALPHANET	2026-06-06 10:52:11 (4 days ago)	web exploits	Hacking Exploited Host Web App Attack
🇨🇭 4server	2026-06-06 10:44:23 (4 days ago)	[SatJun0612:44:18.1190762026][security2:error][pid1742920:tid1743165][client104.207.49.105:0]ModSecu ... show more [SatJun0612:44:18.1190762026][security2:error][pid1742920:tid1743165][client104.207.49.105:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.4server.ch\"][uri\"/.git/HEAD\"][unique_id\"aiP6AsoPGPSoazabl0l2wQAAARE\"] show less	Hacking Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:37:08 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:28 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-11-03 19:44:00 (7 months ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2025-09-30 20:18:29 (8 months ago)	2025-09-30T22:18:27.066328 localhost.localdomain sshd[220608]: pam_unix(sshd:auth): authentication f ... show more 2025-09-30T22:18:27.066328 localhost.localdomain sshd[220608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.207.49.105 2025-09-30T22:18:29.064552 localhost.localdomain sshd[220608]: Failed password for invalid user [email protected] from 104.207.49.105 port 55459 ssh2 ... show less	Brute-Force SSH
Anonymous	2025-04-06 16:31:09 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 21:20:01 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 18:43:08 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
🇮🇩 BPS-StatisticsIndonesia	2025-04-04 03:48:18 (1 year ago)	XML RPC Scan Activities	Brute-Force Web App Attack
Anonymous	2025-04-03 23:48:53 (1 year ago)	Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-02 22:16:35 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.02 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.02 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-04-02 02:39:16 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 104.207.49.105 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.49.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 01 22:39:10.201018 2025] [security2:error] [pid 16910:tid 16910] [client 104.207.49.105:14963] [client 104.207.49.105] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|geceindia.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "geceindia.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z-yjTjETIQTP7C4j1EBzsAAAADA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-01 18:51:50 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.01 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-03-31 19:31:56 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.03.31 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.03.31 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 118 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.40.195.233

🇨🇳 221.224.133.98

🇳🇱 185.107.80.93

🇷🇺 178.170.242.84

🇺🇸 165.227.84.127

🇺🇸 165.154.172.239

🇺🇸 162.216.150.144

🇨🇳 124.221.11.123

🇻🇳 116.98.248.37

🇧🇬 79.124.40.174

🇮🇪 78.16.68.164

🇺🇸 65.49.1.175

🇨🇳 36.32.70.81

🇺🇸 20.14.73.198

🇩🇪 167.233.63.196

🇫🇷 167.86.117.136

🇰🇷 121.128.84.224

🇨🇳 112.123.185.122

🇮🇳 103.174.145.35

🇺🇸 47.251.248.165