JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.47.244

104.207.47.244 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.47.244

Whois 104.207.47.244

IP Abuse Reports for 104.207.47.244:

This IP address has been reported a total of 136 times from 17 distinct sources. 104.207.47.244 was first reported on June 5th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ManagedStack	2026-05-30 01:30:01 (1 week ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
🇱🇻 garmtech.com	2026-05-06 06:00:59 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-00.104.207.47.244.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-00.104.207.47.244.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-16 21:43:29 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-43.104.207.47.244.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-43.104.207.47.244.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 nowyouknow	2026-01-26 15:11:26 (4 months ago)	(From [email protected]) Tired of low-quality traffic? Join GTC and start getting 100% tar ... show more (From [email protected]) Tired of low-quality traffic? Join GTC and start getting 100% targeted, real visitors who are actively searching for your offer. Boost your conversions and grow your business the smart way. Click to Join & Get Targeted Clicks Today! ----> https://morewebtraffic.online/ show less	Phishing Web Spam
🇬🇧 Steve	2026-01-23 23:37:49 (4 months ago)	Repeated attempts against wordpress site	Brute-Force Web App Attack
🇮🇹 VHosting	2025-12-30 02:55:11 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2025-12-01 12:24:07 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 08:25:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:25:38.725290 2025] [security2:error] [pid 12102:tid 12122] [client 104.207.47.244:13739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barnettbusinessgroup.com"] [uri "/.git/HEAD"] [unique_id "aSQWgvW9q1mxetu5lC-kXgAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:50:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:50:25.946914 2025] [security2:error] [pid 3495017:tid 3495017] [client 104.207.47.244:23015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.copiershickory.com"] [uri "/.svn/wc.db"] [unique_id "aSQOQV20M0WXCWtINbssrwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 ketovoila.pl	2025-11-24 06:23:32 (6 months ago)	ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=www.ketovoila.pl/.svn/wc.db; UA=Mozilla ... show more ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=www.ketovoila.pl/.svn/wc.db; UA=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36; window=2025-11-24T06:05:50Z..2025-11-24T06:05:50Z show less	Port Scan Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-24 06:10:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:10:00.752740 2025] [security2:error] [pid 12504:tid 12504] [client 104.207.47.244:57941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.getitenglish.com"] [uri "/.git/HEAD"] [unique_id "aSP2uOour4mbUv-45aJW7QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:24:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:24:50.885089 2025] [security2:error] [pid 27155:tid 27155] [client 104.207.47.244:57585] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rame-int.com"] [uri "/.svn/wc.db"] [unique_id "aSPsIilw8fkxLqQHy1jAMgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:36:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:36:13.950059 2025] [security2:error] [pid 10450:tid 10450] [client 104.207.47.244:38029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.infiniteliving.org"] [uri "/.git/HEAD"] [unique_id "aSPgvfpoxXQnFR8IPXVFzAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-15 17:44:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.47.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 12:44:23.660807 2025] [security2:error] [pid 13374:tid 13374] [client 104.207.47.244:26801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.allseniorsolutions.net"] [uri "/.env"] [unique_id "aRi79wo6g6xsAnKlWd9IqAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 22:14:34 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 213.165.74.84

🇹🇼 198.235.24.36

🇷🇺 193.232.203.117

🇮🇹 172.253.13.154

🇭🇰 150.5.154.160

🇺🇸 138.68.243.18

🇺🇸 108.83.12.147

🇺🇸 64.62.156.10

🇺🇸 52.15.61.48

🇳🇱 45.148.10.152

🇰🇷 8.230.4.82

🇺🇸 2604:a940:302:118:0:44::

🇧🇪 198.235.24.219

🇹🇼 198.235.24.22

🇳🇱 185.93.89.167

🇮🇳 182.95.186.198

🇵🇭 119.92.251.145

🇷🇺 109.111.175.210

🇻🇳 103.75.182.132

🇱🇹 81.30.98.62