JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.49.193

104.207.49.193 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.49.193

Whois 104.207.49.193

IP Abuse Reports for 104.207.49.193:

This IP address has been reported a total of 139 times from 17 distinct sources. 104.207.49.193 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-03 21:56:44 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:39 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 backslash	2025-12-20 21:15:04 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-08 04:52:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 23:52:25.703820 2025] [security2:error] [pid 32326:tid 32326] [client 104.207.49.193:39597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ronjamestelevision.com"] [uri "/.git/HEAD"] [unique_id "aTZZiZ2Us1dco93tHsYKYQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 03:29:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:29:22.077498 2025] [security2:error] [pid 29423:tid 29423] [client 104.207.49.193:37925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "389thbg.com"] [uri "/.svn/wc.db"] [unique_id "aTZGEtaM9KLhc2mgtO0eEAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:04:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:04:50.310876 2025] [security2:error] [pid 23274:tid 23274] [client 104.207.49.193:50817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abneyfoundation.org"] [uri "/.git/HEAD"] [unique_id "aTVtYotfn2l_KoBU2-UGMAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 13:54:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:54:25.200060 2025] [security2:error] [pid 1907:tid 1907] [client 104.207.49.193:24395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nowell.net"] [uri "/.git/HEAD"] [unique_id "aTQ1kYIuUt9OjybEumwUcQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:53:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:52:59.765532 2025] [security2:error] [pid 3808:tid 3808] [client 104.207.49.193:52105] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "al-ketab.net"] [uri "/.env"] [unique_id "aTQZG3kRsmQmvbJHNc6HzQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:50:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:50:33.475135 2025] [security2:error] [pid 2624:tid 2624] [client 104.207.49.193:45651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bodiehistory.com"] [uri "/.svn/wc.db"] [unique_id "aTK4-TlXLtWf2i2MwWwyQwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 00:28:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 19:27:52.904687 2025] [security2:error] [pid 18452:tid 18452] [client 104.207.49.193:55653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carterrose.com"] [uri "/.git/HEAD"] [unique_id "aTInCDR2Raj-of8Xb3FovgAAAEI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-11-17 14:10:04 (7 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇩🇪 stinpriza	2025-11-16 20:29:06 (7 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-11-15 15:17:56 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.49.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 10:17:49.706138 2025] [security2:error] [pid 6237:tid 6237] [client 104.207.49.193:42613] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aRiZnXxOY5ETCu0vB0fxdAAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-08 06:15:44 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-28 20:45:25 (7 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.166.22.182

🇩🇪 194.88.98.121

🇦🇷 186.148.224.83

🇮🇳 168.144.30.16

🇰🇷 106.247.22.181

🇧🇪 34.62.201.7

🇺🇸 18.226.91.7

🇰🇷 220.94.45.13

🇮🇳 182.95.229.110

🇮🇳 168.144.113.139

🇮🇳 168.144.23.128

🇨🇦 96.30.129.165

🇳🇱 81.19.216.117

🇯🇵 54.199.190.193

🇺🇸 47.77.231.186

🇱🇹 45.227.254.170

🇺🇸 18.189.74.1

🇬🇧 18.133.241.101

🇸🇬 168.144.111.67

🇸🇬 168.144.109.164