JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.49.160

104.207.49.160 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 57%: ?

57%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.49.160

Whois 104.207.49.160

IP Abuse Reports for 104.207.49.160:

This IP address has been reported a total of 139 times from 27 distinct sources. 104.207.49.160 was first reported on June 8th 2024, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-06-21 04:24:37 (15 hours ago)	Wordpress login attempts	Brute-Force
🇬🇷 setupgr	2026-06-21 00:40:05 (18 hours ago)	(mod_security) mod_security (id:900001) triggered by 104.207.49.160 (BR/Brazil/SÃ£o Paulo/SÃ£o Paulo ... show more (mod_security) mod_security (id:900001) triggered by 104.207.49.160 (BR/Brazil/SÃ£o Paulo/SÃ£o Paulo/-/[AS200373 DREI-K-TECH-GMBH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 03:40:03.274891 2026] [security2:error] [pid 785068:tid 785097] [client 104.207.49.160:14891] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: mail.setworldup.com"] [severity "CRITICAL"] [tag "security"] [hostname "mail.setworldup.com"] [uri "/wp-login.php"] [unique_id "ajcy4xGXBK2iHtemAo8DvQAAAQI"], referer: https://mail.setworldup.com/wp-login.php show less	Port Scan
🇺🇸 lostswordfish.com	2026-06-20 09:40:05 (1 day ago)	Wordfence waf block on hope4scranton	Web App Attack
🇲🇽 octageeks.com	2026-06-19 04:14:23 (2 days ago)	Wordpress malicious attack:[octawpauthor]	Web App Attack
🇬🇷 setupgr	2026-06-17 18:33:43 (4 days ago)	(mod_security) mod_security (id:900001) triggered by 104.207.49.160 (BR/Brazil/SÃ£o Paulo/SÃ£o Paulo ... show more (mod_security) mod_security (id:900001) triggered by 104.207.49.160 (BR/Brazil/SÃ£o Paulo/SÃ£o Paulo/-/[AS200373 DREI-K-TECH-GMBH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 21:33:41.203398 2026] [security2:error] [pid 2210295:tid 2210444] [client 104.207.49.160:55219] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: cpanagiotou.gr"] [severity "CRITICAL"] [tag "security"] [hostname "cpanagiotou.gr"] [uri "/wp-login.php"] [unique_id "ajLohYHi3fYqxwKQHNaLEwAAAdI"], referer: https://cpanagiotou.gr/wp-login.php show less	Port Scan
🇫🇷 Sklurk	2026-06-17 02:21:24 (4 days ago)	Web App Attack	Web App Attack
🇬🇷 setupgr	2026-06-16 22:38:37 (4 days ago)	(mod_security) mod_security (id:900001) triggered by 104.207.49.160: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 104.207.49.160: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 01:38:36.588998 2026] [security2:error] [pid 2210294:tid 2210398] [client 104.207.49.160:53955] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "75"] [id "900001"] [msg "Blocked WP Login attempt on domain: asteriassantorini.com"] [severity "CRITICAL"] [tag "security"] [hostname "asteriassantorini.com"] [uri "/wp-login.php"] [unique_id "ajHQbLhY-m9nTIYxKGTONwAAAYk"], referer: https://asteriassantorini.com/wp-login.php show less	Port Scan
🇺🇸 xmission.com	2026-06-16 20:44:42 (4 days ago)	104.207.49.160 - - [16/Jun/2026:14:44:42 -0600] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 ... show more 104.207.49.160 - - [16/Jun/2026:14:44:42 -0600] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36" ... show less	Web App Attack
🇬🇧 poundawebsiteltd	2026-06-16 17:22:23 (5 days ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.207.49.160 - - [16/Jun/2026:18:22:18 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.207.49.160 - - [16/Jun/2026:18:22:18 +0100] POST /wp-login.php HTTP/1.1 200 7361 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15 show less	Web App Attack
🇫🇷 tecnicorioja	2026-06-13 22:00:40 (1 week ago)	wp-login attack [13/Jun/2026:03:26:03	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-06-13 20:22:51 (1 week ago)	(y4) Failed scan -byebye- from 104.207.49.160 (BR/Brazil/-): (CF_ENABLE)	Hacking
🇬🇷 setupgr	2026-06-13 05:21:49 (1 week ago)	(mod_security) mod_security (id:900001) triggered by 104.207.49.160: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 104.207.49.160: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 08:21:49.121122 2026] [security2:error] [pid 568634:tid 568722] [client 104.207.49.160:33501] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: ions.gr"] [severity "CRITICAL"] [tag "security"] [hostname "ions.gr"] [uri "/wp-login.php"] [unique_id "aizo7WhA1AVliy02kiGcvAAAAc8"], referer: https://ions.gr/wp-login.php show less	Port Scan
🇲🇹 Malta	2026-06-10 11:21:29 (1 week ago)	104.207.49.160 - - [10/Jun/2026:13:21:29 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 104.207.49.160 - - [10/Jun/2026:13:21:29 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7; rv:120.0) Gecko/20100101 Firefox/120.0" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:48 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇩 BPS-StatisticsIndonesia	2025-11-01 11:45:45 (7 months ago)	WP Admin Scan Activities	Web App Attack

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 194.176.114.36

🇧🇬 149.62.239.4

🇲🇴 125.31.2.160

🇨🇳 120.243.86.2

🇨🇳 115.191.22.87

🇨🇳 106.75.154.218

🇨🇳 106.74.128.226

🇳🇱 93.123.72.183

🇦🇹 45.137.172.116

🇪🇨 205.235.2.176

🇧🇪 198.235.24.231

🇦🇲 195.250.79.2

🇬🇹 190.151.130.5

🇮🇶 185.166.25.150

🇻🇳 125.212.217.143

🇨🇳 106.58.173.254

🇲🇾 47.254.213.105

🇰🇷 221.151.84.6

🇺🇸 104.243.42.167

🇮🇳 103.98.37.245