JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.49.129

104.207.49.129 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.49.129

Whois 104.207.49.129

IP Abuse Reports for 104.207.49.129:

This IP address has been reported a total of 121 times from 8 distinct sources. 104.207.49.129 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 relianoid.com	2026-03-28 19:34:11 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2025-12-02 19:23:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:23:33.755345 2025] [security2:error] [pid 26119:tid 26119] [client 104.207.49.129:53943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wildlifetaxidermy.com"] [uri "/.git/HEAD"] [unique_id "aS88tYn_odAduHm1oAz9GgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 17:06:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 12:05:58.261027 2025] [security2:error] [pid 5719:tid 5719] [client 104.207.49.129:9687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingstoneproperties.com"] [uri "/.svn/wc.db"] [unique_id "aS8cdibelISg4wEZV3NO5gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:17:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:17:13.002521 2025] [security2:error] [pid 19089:tid 19089] [client 104.207.49.129:36601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jillbauman.com"] [uri "/.git/HEAD"] [unique_id "aS52WV4eZg0zegiLEOXtCAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:04:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:04:43.444447 2025] [security2:error] [pid 9696:tid 9696] [client 104.207.49.129:29389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "edmontonwaterjet.com"] [uri "/.env"] [unique_id "aS5lWyqwR7fh5AmlvWwPMwAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:11:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:11:31.225507 2025] [security2:error] [pid 2714309:tid 2714309] [client 104.207.49.129:50201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.copiershickory.com"] [uri "/.git/HEAD"] [unique_id "aSbSU856Gw6cPswAWHG6HwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:59:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:59:31.680097 2025] [security2:error] [pid 20560:tid 20560] [client 104.207.49.129:40581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.randallbrooks.com"] [uri "/.git/HEAD"] [unique_id "aSaXQ0gNgeMQb7YGZyL-uQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-25 23:03:49 (6 months ago)	Auto-ban: >3000 req/min op 2025-11-25	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-25 05:02:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:02:29.597607 2025] [security2:error] [pid 10619:tid 10720] [client 104.207.49.129:44961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.c22p.org"] [uri "/.svn/wc.db"] [unique_id "aSU4ZQXcnVrJOg7V-2J8CQAAAQ8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:10:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:10:09.703262 2025] [security2:error] [pid 32734:tid 32756] [client 104.207.49.129:47359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.omegaoak.com"] [uri "/.svn/wc.db"] [unique_id "aSUsISrPMGOurG3RzwZEJgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:01:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:01:47.097212 2025] [security2:error] [pid 19881:tid 19881] [client 104.207.49.129:57555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.disio.com"] [uri "/.env"] [unique_id "aSUcGw_2PZuB_phHrRSAiQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:22:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:22:42.719409 2025] [security2:error] [pid 22516:tid 22516] [client 104.207.49.129:41879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.calogerolawfirm.com"] [uri "/.env"] [unique_id "aSUS8o-mCBQGDGq9xHUNfAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:58:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:58:30.347994 2025] [security2:error] [pid 8010:tid 8010] [client 104.207.49.129:16879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.justinrudd.com"] [uri "/.svn/wc.db"] [unique_id "aSUNRkhEzU3h7alUqYJRzgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:36:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:36:11.353203 2025] [security2:error] [pid 27695:tid 27695] [client 104.207.49.129:52949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.greenquince.com"] [uri "/.env"] [unique_id "aSUICxMyKVCIU4OKvluOAwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 11:05:37 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.182.92

🇸🇬 101.47.155.9

🇩🇪 69.5.169.87

🇵🇰 223.123.72.248

🇪🇬 196.221.46.89

🇸🇬 178.128.216.181

🇬🇧 165.154.129.130

🇮🇩 163.7.7.139

🇵🇰 139.135.60.200

🇵🇭 124.217.71.72

🇺🇸 34.134.248.227

🇺🇸 34.44.7.115

🇺🇸 20.14.73.238

🇨🇦 216.26.237.54

🇩🇪 213.209.159.242

🇺🇸 207.90.244.6

🇺🇸 184.105.139.90

🇺🇸 172.232.8.247

🇺🇸 113.20.0.58

🇿🇦 102.164.1.42