JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.44.87

104.207.44.87 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.44.87

Whois 104.207.44.87

IP Abuse Reports for 104.207.44.87:

This IP address has been reported a total of 134 times from 15 distinct sources. 104.207.44.87 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-04-03 06:16:06 (2 months ago)	Aggressive web search of vulnerable pages: /index.php?view=%27&id=30%3ahommage-a-paul-varry-intervie ... show more Aggressive web search of vulnerable pages: /index.php?view=%27&id=30%3ahommage-a-paul-varry-interview-modal-france-bleu-drome-ardeche&catid=2 / ... show less	Web App Attack
🇩🇪 FeG Deutschland	2026-04-02 19:33:14 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2	Exploited Host Web App Attack
🇨🇭 backslash	2026-03-03 13:06:03 (3 months ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 00:23:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 19:23:39.309173 2026] [security2:error] [pid 29153:tid 29153] [client 104.207.44.87:57485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestsongs.com"] [uri "/.env.production"] [unique_id "aY0di7uXrxiAMyQIe9SkXwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:39:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:38:58.694041 2026] [security2:error] [pid 18087:tid 18087] [client 104.207.44.87:45327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macryder.com"] [uri "/dev/.git/config"] [unique_id "aYqMMgGxrkurMmfj4EdSFgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-12 21:00:53 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 12 16:00:46.400022 2026] [security2:error] [pid 17246:tid 17246] [client 104.207.44.87:26745] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.danharrisphotoart.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.danharrisphotoart.com"] [uri "/email:[email protected]"] [unique_id "aWVg_tsXXNjetV94zxp15wAAAAk"], referer: http://www.danharrisphotoart.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 00:42:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 19:42:38.994823 2025] [security2:error] [pid 19617:tid 19617] [client 104.207.44.87:16085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twincitytn.com"] [uri "/.git/HEAD"] [unique_id "aTYe_jskT4Wav28Ji9LCuAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 18:47:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 13:47:47.357766 2025] [security2:error] [pid 9328:tid 9328] [client 104.207.44.87:13579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "strawusa.com"] [uri "/.env"] [unique_id "aTXL08p-QYcTfecBNPbMDgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 16:13:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 11:13:32.023061 2025] [security2:error] [pid 11499:tid 11499] [client 104.207.44.87:28197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rwabutazafoundation.org"] [uri "/.env"] [unique_id "aTWnrPsx0XPvWpV7PR86_AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-06 23:03:00 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-06 16:23:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:23:32.916764 2025] [security2:error] [pid 22151:tid 22151] [client 104.207.44.87:42405] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shepherdsstaff.net"] [uri "/.svn/wc.db"] [unique_id "aTRYhMFbvtBU7oNczv5zEwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 12:36:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 07:36:26.263395 2025] [security2:error] [pid 10758:tid 10758] [client 104.207.44.87:40961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shipdirect.net"] [uri "/.env"] [unique_id "aTQjSoUM5ZrpCnJnJ7ixTgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:17:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:17:36.313393 2025] [security2:error] [pid 3918:tid 3918] [client 104.207.44.87:24361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerlinemultimedia.net"] [uri "/.env"] [unique_id "aTQQ0N6-Ydou71SQjLni2gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:02:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:02:17.617591 2025] [security2:error] [pid 18897:tid 18897] [client 104.207.44.87:58431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ictsl.net"] [uri "/.svn/wc.db"] [unique_id "aTQNOV1G59aKgq-wWLpIWwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 17:27:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.44.87 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 12:27:45.484909 2025] [security2:error] [pid 1404:tid 1475] [client 104.207.44.87:12153] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "birdhousefarms.com"] [uri "/.git/HEAD"] [unique_id "aTMWEXg5Q5RkA8AsRzxmNgAAAJQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.183

🇧🇪 198.235.24.177

🇩🇪 193.124.20.233

🇺🇸 173.208.166.178

🇮🇳 139.59.30.229

🇳🇱 84.17.47.98

🇩🇪 69.5.169.54

🇮🇸 45.133.193.11

🇧🇪 198.235.24.172

🇧🇪 198.235.24.170

🇬🇧 167.99.86.63

🇺🇸 162.216.149.146

🇩🇪 159.223.18.7

🇨🇳 157.18.84.216

🇬🇧 139.59.184.99

🇸🇬 107.155.56.47

🇱🇦 103.240.243.2

🇿🇲 102.23.122.235

🇳🇱 34.178.132.89

🇧🇪 34.62.58.121