JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.3

104.207.44.3 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 21%: ?

21%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.3

Whois 104.207.44.3

IP Abuse Reports for 104.207.44.3:

This IP address has been reported a total of 95 times from 15 distinct sources. 104.207.44.3 was first reported on June 4th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-02 02:31:58 (4 days ago)	(y4) Failed scan -byebye- from 104.207.44.3 (US/United States/-): (CF_ENABLE)	Hacking
🇫🇷 ELYAZ	2026-06-01 01:25:19 (5 days ago)	(y4) Failed scan -byebye- from 104.207.44.3 (US/United States/-): (CF_ENABLE)	Hacking
🇩🇪 iNetWorker	2026-05-30 11:08:19 (1 week ago)	trolling for resource vulnerabilities	Web App Attack
Anonymous	2026-05-29 12:19:27 (1 week ago)	Web attack blocked by Wordfence on kernoverlegsibbe-ijzeren.nl (1 hit). Reported by CRMON.	Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:40:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:40:19.613219 2026] [security2:error] [pid 22616:tid 22616] [client 104.207.44.3:44243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garretthillary.com"] [uri "/site/.git/config"] [unique_id "aYpUQ5PwzavZojXsFO_CuAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:18:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:17:58.284997 2026] [security2:error] [pid 20096:tid 20096] [client 104.207.44.3:36225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garagemensministry.org"] [uri "/admin/.git/config"] [unique_id "aYpPBntuExVd8prezEDsbAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:48:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:48:06.383773 2026] [security2:error] [pid 717735:tid 717759] [client 104.207.44.3:62703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gafm.org"] [uri "/dev/.git/config"] [unique_id "aYo59le2saaLoPBOZVo65QAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 17:09:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 12:09:45.108670 2026] [security2:error] [pid 28986:tid 28986] [client 104.207.44.3:18709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fullbladderclub.com"] [uri "/admin/.git/config"] [unique_id "aYoU2dYrV7Z7MSa4estlQgAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 10:20:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 05:20:16.297084 2026] [security2:error] [pid 26556:tid 26556] [client 104.207.44.3:62509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gacstoday.com"] [uri "/frontend/.env"] [unique_id "aYm04AGnL8N3W0DxO8WL2gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 09:39:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 04:39:20.441477 2026] [security2:error] [pid 28731:tid 28731] [client 104.207.44.3:16463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fullyevil.com"] [uri "/v2/.git/config"] [unique_id "aYmrSNBhlO9gDCPXKO1rTwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 09:22:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 04:22:10.729674 2026] [security2:error] [pid 19339:tid 19469] [client 104.207.44.3:57107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g3-contracting.com"] [uri "/backend/.env"] [unique_id "aYmnQogSOxwRKbWl7oL0TQAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 06:15:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 01:15:21.093262 2026] [security2:error] [pid 2720:tid 2720] [client 104.207.44.3:14945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "furballaudio.com"] [uri "/wp/.git/config"] [unique_id "aYl7efHP-ZWoqHr3Gg3bVAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2025-12-30 09:56:03 (5 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:29:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:29:21.520863 2025] [security2:error] [pid 14720:tid 14720] [client 104.207.44.3:11031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mysealife96.com"] [uri "/.svn/wc.db"] [unique_id "aVIRsZ0VRqubLwkhL685fgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-08 08:13:07 (5 months ago)	WP Login Scan Activities	Web App Attack

Showing 1 to 15 of 95 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇧🇷 177.16.244.39

🇳🇱 172.94.9.136

🇷🇴 2.57.121.112

🇵🇦 190.32.246.14

🇩🇪 185.242.3.212

🇸🇬 172.253.84.218

🇺🇸 165.154.255.26

🇺🇸 162.216.150.148

🇺🇸 138.113.22.151

🇻🇳 116.99.169.49

🇸🇾 89.43.132.124

🇺🇸 206.206.103.148

🇸🇬 194.61.41.17

🇧🇷 177.131.90.160

🇩🇪 167.94.146.78

🇺🇸 135.237.125.213

🇰🇷 125.130.3.250

🇳🇱 86.54.28.49

🇩🇪 130.12.181.98