JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.185

104.207.44.185 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.185

Whois 104.207.44.185

IP Abuse Reports for 104.207.44.185:

This IP address has been reported a total of 153 times from 23 distinct sources. 104.207.44.185 was first reported on June 8th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-21 11:17:04 (1 month ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-19 05:29:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:29:16.932225 2026] [security2:error] [pid 11879:tid 11879] [client 104.207.44.185:47699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krystalsgiftshopandboutique.net"] [uri "/backup/.git/config"] [unique_id "aZafrPF7_QIsRDlsVv1G3wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 05:08:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:08:51.406577 2026] [security2:error] [pid 646306:tid 646306] [client 104.207.44.185:41185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kozzmik.stream"] [uri "/.env.production"] [unique_id "aZaa40nCTTQDsyFWqTt1pQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-19 05:00:19 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.44.185 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.44.185 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:55:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:55:49.365124 2026] [security2:error] [pid 29541:tid 29541] [client 104.207.44.185:32163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnerakhareedu.com"] [uri "/.env"] [unique_id "aZaJxa1asFonD1_uLT0c_wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:42:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:41:58.537791 2026] [security2:error] [pid 29122:tid 29122] [client 104.207.44.185:56807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karakostasconstruction.com"] [uri "/config/.env"] [unique_id "aZZqZtEAVcbqaIj8aXftOwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 00:44:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 19:44:36.577443 2026] [security2:error] [pid 22611:tid 22611] [client 104.207.44.185:17915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vvs-inc.com"] [uri "/v2/.git/config"] [unique_id "aZZc9No6-ccVCqQP1FT7vwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-18 22:52:08 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:15:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:14:59.948076 2026] [security2:error] [pid 1063:tid 1063] [client 104.207.44.185:54883] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "transmittersolution.com"] [uri "/.git/config"] [unique_id "aZYdw_0cxLzz4UWdKqrSegAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 19:41:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 14:41:29.484461 2026] [security2:error] [pid 8639:tid 8639] [client 104.207.44.185:24521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tonyvillanueva.com"] [uri "/.git/config"] [unique_id "aZYV6eRP79J_nZ4nA2fjKQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-18 19:13:20 (3 months ago)	Try to access /api/.env	Web App Attack
🇩🇪 DocNetzwerk	2026-02-18 18:58:26 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.44.185 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-18 18:26:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.185 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:26:07.207670 2026] [security2:error] [pid 14121:tid 14188] [client 104.207.44.185:22935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thetooheys.com"] [uri "/backup/.git/config"] [unique_id "aZYEPyBz6hLu1EMeLixmyQAAAIE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-02-18 17:00:05 (3 months ago)		Web App Attack
🇺🇸 mnsf	2026-02-18 15:05:46 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.103

🇹🇼 198.235.24.91

🇨🇭 185.191.239.95

🇦🇷 181.44.184.161

🇺🇸 163.227.179.31

🇭🇰 139.5.110.10

🇺🇸 65.49.20.114

🇳🇱 45.198.224.5

🇳🇱 45.148.10.147

🇹🇼 198.235.24.90

🇹🇼 198.235.24.88

🇺🇸 172.234.218.34

🇭🇰 165.154.70.162

🇺🇸 162.216.150.4

🇮🇳 152.52.15.213

🇻🇳 116.110.158.101

🇨🇳 112.244.233.1

🇰🇷 106.245.142.83

🇺🇸 104.236.66.186

🇲🇾 103.76.88.37