JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.246

104.207.44.246 was found in our database!

This IP was reported 160 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.246

Whois 104.207.44.246

IP Abuse Reports for 104.207.44.246:

This IP address has been reported a total of 160 times from 25 distinct sources. 104.207.44.246 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 etu brutus	2026-05-01 02:52:31 (1 month ago)	104.207.44.246 has been banned for [WebApp Attack] ...	Hacking Bad Web Bot Web App Attack
🇩🇪 4server	2026-04-21 12:52:48 (1 month ago)	[TueApr2114:52:43.4994622026][security2:error][pid3025242:tid3025303][client104.207.44.246:0]ModSecu ... show more [TueApr2114:52:43.4994622026][security2:error][pid3025242:tid3025303][client104.207.44.246:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"essesolution.ch\"][uri\"/backup.sql\"][unique_id\"aedzG0odPrcZ1V_bs78qowAAAMA\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 02:26:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 21:26:42.708974 2026] [security2:error] [pid 5326:tid 5368] [client 104.207.44.246:53469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arrowsinthequiver.com"] [uri "/.env.staging"] [unique_id "aY06Yv2kGrnOESJX597NNQAAAQ0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:00:45 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 15:27:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:27:09.184173 2026] [security2:error] [pid 16476:tid 16510] [client 104.207.44.246:57341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antidote-it.com"] [uri "/wp/.git/config"] [unique_id "aYtOTU9tKsgevCjMBZp6nAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:31:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:31:38.693336 2026] [security2:error] [pid 23565:tid 23565] [client 104.207.44.246:28825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ilandman.com"] [uri "/api/.git/config"] [unique_id "aYrQyv3345ssEAhwMmLTmwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇱 ifiguero	2026-02-10 06:29:18 (3 months ago)	Web Attack (\x00\x00\x00\x00\x00). 7d ban	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:45:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:45:51.155870 2026] [security2:error] [pid 12817:tid 12817] [client 104.207.44.246:21403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madisonjazzorchestra.com"] [uri "/.env"] [unique_id "aYqb386RyvLm3-5T7vp29AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-10 01:16:36 (3 months ago)	Blocking for trying to access an exploit file: /app/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-10 00:34:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:34:19.354331 2026] [security2:error] [pid 21372:tid 21372] [client 104.207.44.246:48613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevinfranz.com"] [uri "/admin/.env"] [unique_id "aYp9C6lADscMMMVwhZYbZAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:54:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:54:04.283185 2026] [security2:error] [pid 3442:tid 3442] [client 104.207.44.246:32941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kenirving.com"] [uri "/site/.git/config"] [unique_id "aYpznM3hzRyZaWiAVfbZJwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:14:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:14:35.501753 2026] [security2:error] [pid 17733:tid 17733] [client 104.207.44.246:19013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotglassgallery.com"] [uri "/app/.git/config"] [unique_id "aYpcS8393K218xOcNn9DYwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2026-02-09 21:29:03 (3 months ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:44:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:44:32.227721 2026] [security2:error] [pid 7947:tid 7947] [client 104.207.44.246:63923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honigcpa.com"] [uri "/admin/.git/config"] [unique_id "aYpHMEQ8dG1__lKD5i43cwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-04 10:04:30 (5 months ago)		Bad Web Bot Web App Attack

Showing 1 to 15 of 160 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 210.16.168.11

🇱🇧 185.187.131.132

🇳🇱 160.119.78.191

🇧🇮 154.117.199.56

🇺🇸 152.32.205.153

🇱🇹 81.30.98.158

🇷🇴 80.94.92.187

🇩🇪 47.245.128.248

🇳🇱 45.148.10.152

🇩🇪 213.209.159.236

🇩🇪 213.209.159.56

🇩🇪 161.35.205.74

🇨🇳 106.75.143.205

🇺🇸 94.183.232.247

🇺🇸 71.199.4.100

🇫🇷 51.178.137.163

🇳🇱 31.56.209.215

🇺🇸 2600:3c00::2000:82ff:fe47:7ce1

🇺🇸 199.245.176.58

🇺🇸 162.216.150.163