JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.245.146.82

104.245.146.82 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 0%: ?

ISP	Amanah Tech Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS32489
Domain Name	amanah.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.245.146.82

Whois 104.245.146.82

IP Abuse Reports for 104.245.146.82:

This IP address has been reported a total of 46 times from 19 distinct sources. 104.245.146.82 was first reported on November 13th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 voormedia	2026-05-11 23:03:36 (1 month ago)	Accessed trap at '/phpinfo.php'	Web App Attack
🇧🇪 voormedia	2026-05-11 21:50:01 (1 month ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇧🇪 voormedia	2026-05-11 21:09:39 (1 month ago)	Accessed trap at '/.git/config'	Web App Attack
🇺🇸 stechusa	2026-03-20 10:10:38 (3 months ago)	[Askari] ELEVATED_THREAT \| 112 IPs targeting /brand/satco-products-inc.html \| Facet request during e ... show more [Askari] ELEVATED_THREAT \| 112 IPs targeting /brand/satco-products-inc.html \| Facet request during elevated threat (facet_ratio=0.89, unique_ips=402) \| Recv-Q=1489 bytes on ESTABLISHED connection (threshold=1000) \| Signals: concurrent_facet_load, path_concentration, recv_q_stall, http1_on_tls show less	Web App Attack Hacking Web Spam
🇸🇬 mypatricks	2026-03-05 02:04:03 (3 months ago)	104.245.146.82 \| Port: 11541 \| DNS: 104.245.146.82 2026-03-05T10:04:01+08:00 America/Toronto \| IPs r ... show more 104.245.146.82 \| Port: 11541 \| DNS: 104.245.146.82 2026-03-05T10:04:01+08:00 America/Toronto \| IPs reserved list \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36 HTTP/1.1 443 GET \| URL: /account/signin/?1f5877a32ba08e97e5cd3c0cc8975ddb=1769840760 \| Ref: https://xxxxxx/fondant-3d-flower-basket-cakes/?code=EUR&f061864b3086b7388f4=EUR \| Country: CA/Canada/-06:00 IP City: Toronto Windows 9d758c290bbf4a29-YYZ/Toronto, ON, Canada 1 hits/0 secs Robots 2 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇳🇱 EGP Abuse Dept	2026-03-04 00:52:59 (3 months ago)	Scanning for port/service exploits on tpc-005.mach3builders.nl	Port Scan Hacking
🇧🇬 cheatmaster.store	2026-02-26 05:25:39 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Canada Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
Anonymous	2025-11-15 00:02:18 (7 months ago)	Aggressive web scan	SQL Injection Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-09-19 11:47:04 (9 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 myagent.site	2025-08-06 21:34:20 (10 months ago)	Blocking for trying to access an exploit file: /xmlrpc.php	Hacking
🇺🇸 TPI-Abuse	2025-08-02 20:00:46 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 02 16:00:42.776983 2025] [security2:error] [pid 29878:tid 29878] [client 104.245.146.82:55481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.91"] [uri "/.env"] [unique_id "aI5uarq1RuEbbbitWY61qQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MogBox	2025-08-02 19:59:48 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.245.146.82 (CA/Canada/-): 1 in the last 360 ... show more (mod_security) mod_security (id:210492) triggered by 104.245.146.82 (CA/Canada/-): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: [Sat Aug 02 15:59:37.682797 2025] [security2:error] [pid 4129311:tid 4129340] [client 104.245.146.82:55675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "209.59.154.179"] [uri "/.env"] [unique_id "aI5uKbhl2SymCDfjIgNVogAAAAI"] show less	Hacking
🇺🇸 TPI-Abuse	2025-08-02 19:36:49 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 02 15:36:43.206641 2025] [security2:error] [pid 16093:tid 16093] [client 104.245.146.82:55727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.241"] [uri "/.env"] [unique_id "aI5oy6CwP3fRdP7weShT9AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-02 19:05:54 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 02 15:05:47.864052 2025] [security2:error] [pid 21651:tid 21651] [client 104.245.146.82:52285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.197"] [uri "/.env"] [unique_id "aI5hi0cytVvKFqibn2mLSgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-08-02 18:46:38 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.245.146.82 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Aug 02 14:46:30.932303 2025] [security2:error] [pid 633:tid 633] [client 104.245.146.82:58638] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.139"] [uri "/.env"] [unique_id "aI5dBsY3193nF8WzmvOO7AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.131

🇮🇳 128.185.209.30

🇷🇸 109.93.201.253

🇹🇭 102.129.138.199

🇺🇸 66.132.172.184

🇺🇸 64.62.156.218

🇷🇴 2.57.121.112

🇺🇸 2607:f8b0:4001:c62::12e

🇷🇺 212.3.137.136

🇨🇳 112.82.218.232

🇭🇰 101.36.108.133

🇮🇷 85.198.19.242

🇨🇴 69.6.234.27

🇺🇸 66.132.186.187

🇫🇷 2001:41d0:33d:9200::402

🇨🇳 49.75.102.29

🇺🇸 2604:a880:400:d1:0:4:9e91:4001

🇰🇬 213.109.66.53

🇺🇸 172.245.21.30

🇸🇪 171.25.158.82