JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.241

104.207.44.241 was found in our database!

This IP was reported 168 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.241

Whois 104.207.44.241

IP Abuse Reports for 104.207.44.241:

This IP address has been reported a total of 168 times from 28 distinct sources. 104.207.44.241 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-30 09:50:51 (1 month ago)	Forum/form spam	Web Spam
Anonymous	2026-04-16 10:30:05 (1 month ago)	(ftpd) Failed FTP login from 104.207.44.241 (US/United States/-): 3 in the last 3600 secs	Brute-Force FTP Brute-Force
🇦🇺 MAGIC	2026-04-03 01:26:45 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-03-27 14:10:52 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-03-06 15:20:50 (2 months ago)	Forum/form spam	Web Spam
🇦🇺 MAGIC	2026-02-23 00:42:05 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇳🇱 jjnxpct	2026-02-16 04:55:02 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env.save (Rule ID: 920440) - URL file extension is restricted by policy show less	Hacking SQL Injection Web App Attack
🇫🇷 dynamix	2026-02-15 12:18:47 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:56:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:56:12.389043 2026] [security2:error] [pid 11245:tid 11245] [client 104.207.44.241:49255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serpentstudios.com"] [uri "/app/.env"] [unique_id "aZG0XAMRx9jNGxxLljDf-wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:53:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:53:35.574511 2026] [security2:error] [pid 7055:tid 7055] [client 104.207.44.241:32255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seebeexee.com"] [uri "/.env.staging"] [unique_id "aZGlr0NbKAxw43jRLX-szAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇭🇺 Adorjan Daczo	2026-02-15 05:40:59 (3 months ago)	Probe for vulnerabilities. Path attempted: /admin/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:35:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:35:51.699019 2026] [security2:error] [pid 25628:tid 25628] [client 104.207.44.241:29465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sbiusa.org"] [uri "/api/.git/config"] [unique_id "aZFbN0BmM6kmb0IVFpwzBgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ne1for23	2026-02-15 05:07:28 (3 months ago)	Attempting to probe for sensitive information accidently exposed via git config. 104.207.44.241 - - ... show more Attempting to probe for sensitive information accidently exposed via git config. 104.207.44.241 - - [15/Feb/2026:05:06:54 +0000] "GET /dev/.git/config HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Hacking
🇺🇸 TPI-Abuse	2026-02-15 04:17:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:17:42.279487 2026] [security2:error] [pid 271396:tid 271396] [client 104.207.44.241:20247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nsightsound.com"] [uri "/admin/.git/config"] [unique_id "aZFI5jOZ_MltoLHku6mzHQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 InVertebrado	2026-02-15 04:03:52 (3 months ago)	104.207.44.241 - - [15/Feb/2026:05:03:50 +0100] "GET /wp/.git/config HTTP/1.1" 404 3291 "-" "Mozilla ... show more 104.207.44.241 - - [15/Feb/2026:05:03:50 +0100] "GET /wp/.git/config HTTP/1.1" 404 3291 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.44.241 - - [15/Feb/2026:05:03:51 +0100] "GET /test/.git/config HTTP/1.1" 404 663 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.44.241 - - [15/Feb/2026:05:03:51 +0100] "GET /app/.git/config HTTP/1.1" 404 663 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Web App Attack

Showing 1 to 15 of 168 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.104.19.160

🇨🇦 85.217.149.9

🇺🇸 68.7.114.69

🇺🇸 45.148.125.145

🇩🇪 45.130.203.108

🇮🇳 27.123.107.154

🇺🇸 20.29.22.156

🇺🇸 200.10.45.45

🇧🇪 198.235.24.237

🇧🇪 198.235.24.230

🇺🇸 192.3.218.12

🇺🇸 185.127.92.189

🇨🇳 183.236.75.189

🇺🇸 162.216.150.183

🇺🇸 104.234.32.17

🇺🇸 64.62.156.95

🇲🇽 189.172.105.73

🇳🇱 185.226.197.34

🇺🇸 174.35.25.181

🇺🇸 107.150.105.153