JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.120

104.207.34.120 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.120

Whois 104.207.34.120

IP Abuse Reports for 104.207.34.120:

This IP address has been reported a total of 153 times from 13 distinct sources. 104.207.34.120 was first reported on June 6th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-11 01:51:39 (4 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇱🇻 garmtech.com	2026-04-30 04:07:42 (1 month ago)	Attempted access to sensitive endpoint (/.env.production) detected. Automated scan or unauthorized p ... show more Attempted access to sensitive endpoint (/.env.production) detected. Automated scan or unauthorized probing. show less	Web App Attack
Anonymous	2026-03-10 03:39:57 (3 months ago)	Forum/form spam	Web Spam
🇦🇺 oncord	2026-03-06 10:20:15 (3 months ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2026-03-04 14:46:56 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇦🇺 oncord	2026-02-19 23:32:56 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-14 20:42:39 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-09 23:26:23 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-07 22:31:47 (4 months ago)	Form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:05 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇧🇷 hostseries	2025-12-24 05:44:15 (5 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 10:30:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:30:43.799680 2025] [security2:error] [pid 6234:tid 6234] [client 104.207.34.120:42491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.survivalaikido.com"] [uri "/.env"] [unique_id "aSbW0xr9ozGwIXfr9hqz5QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:54:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:54:43.546031 2025] [security2:error] [pid 9060:tid 9060] [client 104.207.34.120:30247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.mrgutierrezshow.com"] [uri "/.env"] [unique_id "aSbAUx5K9rkj4N7nW9dJjQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:51:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:51:34.431521 2025] [security2:error] [pid 2442806:tid 2442806] [client 104.207.34.120:13627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.serbruyns.com"] [uri "/.git/HEAD"] [unique_id "aSaVZqZovgweE9FmfSexKgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:20:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:20:46.958158 2025] [security2:error] [pid 5530:tid 5530] [client 104.207.34.120:44647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "imbrasacademic.bridgital.com"] [uri "/.git/HEAD"] [unique_id "aSZV7jbeIizCvTCZoTqvAQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.66.47.129

🇳🇱 45.148.10.121

🇺🇸 20.124.84.235

🇨🇳 14.103.114.172

🇰🇷 221.162.3.119

🇺🇸 195.184.76.135

🇫🇷 194.5.53.229

🇬🇧 178.62.87.85

🇳🇱 178.16.55.94

🇩🇪 151.244.71.29

🇺🇸 104.243.46.222

🇺🇸 104.236.35.101

🇳🇱 91.92.40.50

🇺🇸 52.224.109.126

🇨🇳 218.25.89.208

🇩🇪 167.94.145.18

🇮🇪 3.250.142.30

🇷🇴 2.57.122.177

🇮🇳 2406:7400:119:3773:bd95:4377:fa66:1f52

🇰🇷 211.228.86.83