JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.47

104.207.44.47 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.47

Whois 104.207.44.47

IP Abuse Reports for 104.207.44.47:

This IP address has been reported a total of 138 times from 15 distinct sources. 104.207.44.47 was first reported on June 20th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-03-31 07:24:11 (2 months ago)	Form spam	Web Spam
🇪🇸 10dencehispahard SL	2026-01-23 07:32:07 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-12-20 20:52:10 (5 months ago)	(WPLOGIN) WP Login Attack 104.207.44.47 (US/United States/-): 10 in the last 3600 secs; Ports: ; Di ... show more (WPLOGIN) WP Login Attack 104.207.44.47 (US/United States/-): 10 in the last 3600 secs; Ports: ; Direction: 1 show less	Brute-Force SSH
🇮🇹 VHosting	2025-12-18 16:35:03 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 23:20:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:20:18.605752 2025] [security2:error] [pid 894:tid 894] [client 104.207.44.47:22183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lekacos.com"] [uri "/.svn/wc.db"] [unique_id "aS90MhxtuWR8sWcyDkKscQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 12:57:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:57:19.943168 2025] [security2:error] [pid 21752:tid 21752] [client 104.207.44.47:49801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matt-bechtel.com"] [uri "/.git/HEAD"] [unique_id "aS7iL7CdeSfTBifVyIJyTQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:44:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:44:17.692235 2025] [security2:error] [pid 12979:tid 12979] [client 104.207.44.47:21025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patandmat.com"] [uri "/.env"] [unique_id "aS6m4Yfl55fn4ze3OVdItwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:31:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:31:47.527674 2025] [security2:error] [pid 18787:tid 18787] [client 104.207.44.47:52165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zmgmt.com"] [uri "/.svn/wc.db"] [unique_id "aS5rsyOBdC0qRS4zI5-1UAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 11:15:02 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:56:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:56:02.728631 2025] [security2:error] [pid 15331:tid 15331] [client 104.207.44.47:33123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ileronde.com"] [uri "/.svn/wc.db"] [unique_id "aSQrsoeeEix6H8rugQYrJAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:24:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:23:02.319686 2025] [security2:error] [pid 30315:tid 30315] [client 104.207.44.47:13161] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.cureforcancerbook.com"] [uri "/.svn/wc.db"] [unique_id "aSQH1oY4_mNp69TNP2Ms4AAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:48:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:48:10.746995 2025] [security2:error] [pid 14812:tid 14812] [client 104.207.44.47:53231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anniesherbals.com"] [uri "/.env"] [unique_id "aSP_qmI4Anozn_qTF0P7ZgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:14:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:14:15.181250 2025] [security2:error] [pid 5709:tid 5709] [client 104.207.44.47:21899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.phillatwood.com"] [uri "/.git/HEAD"] [unique_id "aSPppw_gFP6ydSypuleK8gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 05:28:20 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇨🇦 wil.com	2025-10-17 14:20:01 (7 months ago)	GlobalProtect login attempts with user ebowannie.	VPN IP Brute-Force

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 188.40.219.135

🇮🇳 157.119.202.205

🇺🇸 3.144.153.69

🇺🇸 206.221.176.152

🇹🇷 185.153.231.44

🇷🇺 109.195.179.94

🇮🇳 103.221.250.202

🇧🇪 34.156.166.229

🇹🇷 2a09:bac5:58bd:d2d::150:b4

🇺🇸 2a03:2880:f36c:8d:face:b00c:0:2

🇺🇸 2607:f8b0:400e:c05::121

🇩🇪 193.124.20.253

🇺🇸 107.170.247.81

🇺🇸 20.168.7.21

🇺🇸 216.180.246.231

🇨🇭 209.99.191.19

🇧🇷 177.38.71.226

🇺🇸 167.71.105.12

🇲🇦 81.192.46.49

🇺🇸 66.118.239.7