JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.109

104.207.34.109 was found in our database!

This IP was reported 131 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.109

Whois 104.207.34.109

IP Abuse Reports for 104.207.34.109:

This IP address has been reported a total of 131 times from 16 distinct sources. 104.207.34.109 was first reported on June 4th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-02 21:07:15 (3 months ago)	"GET /.git/HEAD HTTP/1.1"	Hacking Web App Attack
🇮🇹 VHosting	2025-12-24 03:15:58 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-09 09:17:13 (5 months ago)	botnet	DDoS Attack
🇫🇮 Shaik Sai Meera	2025-11-25 20:00:15 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 07:35:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:35:52.575266 2025] [security2:error] [pid 6614:tid 6614] [client 104.207.34.109:54237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "filmfan.com"] [uri "/.env"] [unique_id "aSVcWNgbLlP29CSwY0JE-AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:34:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:33:55.325811 2025] [security2:error] [pid 10747:tid 10757] [client 104.207.34.109:27793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cedarcrestneighborhood.digital4z.com"] [uri "/.svn/wc.db"] [unique_id "aSVN012GfO2s-Qdwr6eGPwAAAIU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:17:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:17:33.325380 2025] [security2:error] [pid 1817000:tid 1817034] [client 104.207.34.109:18471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cosmetichouston.com.aafm.us"] [uri "/.env"] [unique_id "aSU77ZiXM9qjzOaPIgQ5PgAAAVY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:53:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:53:23.136077 2025] [security2:error] [pid 13754:tid 13774] [client 104.207.34.109:13543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.n30ew.com"] [uri "/.env"] [unique_id "aSU2Q6ITODRS1uMOGv80eQAAAE4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:35:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:35:40.008790 2025] [security2:error] [pid 4102:tid 4102] [client 104.207.34.109:16723] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.frightlibrary.org"] [uri "/.svn/wc.db"] [unique_id "aSUyHJ5YwqPKFR7Hy4UU-AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:27:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:27:23.197644 2025] [security2:error] [pid 2913:tid 2913] [client 104.207.34.109:52317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mykidsdaycare.net"] [uri "/.svn/wc.db"] [unique_id "aSUiG2UeOZt-7cdgLTSt2AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2025-11-25 03:07:45 (6 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:05:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:04:56.672799 2025] [security2:error] [pid 28339:tid 28339] [client 104.207.34.109:24805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "debbieparisi.com"] [uri "/.git/HEAD"] [unique_id "aSUc2CCR35et9LO3wnjfiQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:21:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.109 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:21:17.020164 2025] [security2:error] [pid 7762:tid 7762] [client 104.207.34.109:33121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.soudertonbigred.org"] [uri "/.git/HEAD"] [unique_id "aST2fUSzjDmQCNm_UeIhMQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-23 02:17:49 (6 months ago)	botnet	DDoS Attack
🇺🇸 techboy117	2025-11-14 00:16:07 (6 months ago)	Blocking due to password spraying.	Brute-Force

Showing 1 to 15 of 131 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 51.159.110.167

🇺🇸 194.62.107.131

🇨🇳 182.43.76.81

🇵🇱 138.124.20.112

🇷🇺 87.250.224.107

🇱🇹 62.60.130.251

🇱🇹 62.60.130.14

🇺🇸 47.251.166.182

🇨🇳 36.32.69.162

🇨🇳 222.223.62.8

🇹🇼 198.235.24.125

🇮🇩 163.7.9.84

🇧🇬 79.124.62.126

🇷🇴 2.57.121.112

🇺🇸 208.84.100.162

🇦🇷 190.181.97.37

🇨🇳 106.63.26.155

🇨🇳 106.63.26.27

🇳🇱 45.148.10.151

🇨🇳 42.100.25.115