JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.84

104.207.44.84 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.84

Whois 104.207.44.84

IP Abuse Reports for 104.207.44.84:

This IP address has been reported a total of 142 times from 18 distinct sources. 104.207.44.84 was first reported on June 6th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-25 19:52:39 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-03-23 18:18:20 (3 months ago)	104.207.44.84 - - [23/Mar/2026:19:17:26 +0100] "GET /en/?background=%27&code_len=4&font_color=&font_ ... show more 104.207.44.84 - - [23/Mar/2026:19:17:26 +0100] "GET /en/?background=%27&code_len=4&font_color=&font_size=20&height=50&op=checkcode&width=130&cHash=954a82a4e4ca3baeb5c194060edbf944 HTTP/1.1" 404 9511 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 104.207.44.84 - - [23/Mar/2026:19:17:26 +0100] "GET /en/?background=%27&code_len=4&font_color=&font_size=20&height=50&op=checkcode&width=130&cHash=954a82a4e4ca3baeb5c194060edbf944 HTTP/1.1" 404 9157 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 104.207.44.84 - - [23/Mar/2026:19:17:27 +0100] "GET /en/?background=%22&code_len=4&font_color=&font_size=20&height=50&op=checkcode&width=130&cHash=954a82a4e4ca3baeb5c194060edbf944 HTTP/1.1" 404 9152 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36" 104.207.44.84 - - [23/Mar/2026:19:17:27 +0100] "G ... show less	DDoS Attack
Anonymous	2026-02-20 22:03:02 (4 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 06:24:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 01:24:31.175937 2026] [security2:error] [pid 525:tid 525] [client 104.207.44.84:27233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artspacecleveland.com"] [uri "/.git/config"] [unique_id "aY1yH07yxDQ0Z_rphFGEpwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 16:53:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 11:53:11.837283 2026] [security2:error] [pid 16707:tid 16707] [client 104.207.44.84:57481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aquanauticsige.com"] [uri "/.env.local"] [unique_id "aYyz92piVJ8xa2ZVQ6GfPgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-02-10 21:06:01 (4 months ago)	.env scanning [BY]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:23:20 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:23:14.977298 2026] [security2:error] [pid 1890:tid 1890] [client 104.207.44.84:13521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kircali.net"] [uri "/.env"] [unique_id "aYqkoq9wb1MmdK_5VmV6IAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:01:25 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:01:17.692132 2026] [security2:error] [pid 807:tid 807] [client 104.207.44.84:15213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katharinanitzpon.com"] [uri "/app/.env"] [unique_id "aYpZLX4afX0pFzeLLix9QAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:46:08 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:46:00.595523 2026] [security2:error] [pid 1067:tid 1067] [client 104.207.44.84:24643] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotdamnsam.com"] [uri "/new/.git/config"] [unique_id "aYpVmEizt_DmwKNzAznBqgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:16:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:15:59.915267 2026] [security2:error] [pid 13491:tid 13491] [client 104.207.44.84:55853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karinproctor.com"] [uri "/v2/.git/config"] [unique_id "aYpOj-yzQoW2XDJDXtTcjgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 taivas.nl	2026-01-25 19:32:11 (4 months ago)	Wordpress_xmlrpc_attack	Bad Web Bot
🇧🇷 SOC Blue Team	2026-01-16 18:07:02 (5 months ago)	Tatic: TA0006 \| Technique: T1110 \| Source: TAP \| Country Destination: BR	Brute-Force
Anonymous	2026-01-14 07:36:11 (5 months ago)	Forum/form spam	Web Spam
🇫🇷 Jean Valjean	2025-12-30 23:04:27 (5 months ago)	Fail2ban Caboom : xmlrpc.php Abuse	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 16:18:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.84 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 11:18:39.064353 2025] [security2:error] [pid 29188:tid 29188] [client 104.207.44.84:29359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ichoosethelight.org"] [uri "/.svn/wc.db"] [unique_id "aTWo320N14F6SVnqCoUvzAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 86.110.51.19

🇺🇸 16.58.56.214

🇷🇺 217.168.240.63

🇨🇳 120.48.147.81

🇺🇸 104.28.247.150

🇬🇧 94.72.102.118

🇺🇸 47.85.8.171

🇩🇪 213.21.253.210

🇺🇸 193.19.109.22

🇮🇳 182.95.181.138

🇧🇪 130.211.110.51

🇧🇾 46.216.198.132

🇨🇳 43.226.39.177

🇲🇦 41.250.190.64

🇧🇪 34.62.140.239

🇩🇪 195.230.103.250

🇨🇳 120.230.184.10

🇮🇳 103.250.160.76

🇺🇸 66.132.195.43

🇳🇱 46.151.178.13