JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.132

104.207.34.132 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 27%: ?

27%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.132

Whois 104.207.34.132

IP Abuse Reports for 104.207.34.132:

This IP address has been reported a total of 129 times from 19 distinct sources. 104.207.34.132 was first reported on June 11th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-23 03:07:15 (3 days ago)	(y4) Failed scan -byebye- from 104.207.34.132 (US/United States/-): (CF_ENABLE)	Hacking
Anonymous	2026-06-19 18:20:37 (6 days ago)	Web attack blocked by Wordfence on kernoverlegsibbe-ijzeren.nl (1 hit). Reported by CRMON.	Web App Attack
🇫🇷 tilellit.pro	2026-06-19 11:19:40 (1 week ago)	Fail2Ban banned 104.207.34.132 for security violations in jail wp-armour. Log: 2026/06/19 11:19:40 [ ... show more Fail2Ban banned 104.207.34.132 for security violations in jail wp-armour. Log: 2026/06/19 11:19:40 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.34.132 \| Target: wplogin" , client: 104.207.34.132, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-06-16 02:26:51 (1 week ago)	Fail2Ban banned 104.207.34.132 for security violations in jail wp-armour. Log: 2026/06/16 02:26:50 [ ... show more Fail2Ban banned 104.207.34.132 for security violations in jail wp-armour. Log: 2026/06/16 02:26:50 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.34.132 \| Target: wplogin" , client: 104.207.34.132, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 cydit.eu	2026-06-03 04:57:19 (3 weeks ago)	HTTP DoS attack detected by fail2ban on thor.cydit.eu	DDoS Attack
🇪🇸 librebit	2026-05-17 04:50:24 (1 month ago)	Brute force	Brute-Force
🇧🇪 cmbplf	2026-04-11 14:26:49 (2 months ago)	1.062 POST requests with url.path /wp-login.php 1.001 requests with url.path /xmlrpc.php	Brute-Force Bad Web Bot
🇫🇷 tilellit.pro	2026-02-04 03:36:03 (4 months ago)	Fail2Ban banned 104.207.34.132 for security violations in jail wp-armour. Log: 2026/02/04 03:36:02 [ ... show more Fail2Ban banned 104.207.34.132 for security violations in jail wp-armour. Log: 2026/02/04 03:36:02 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.34.132 \| Target: wplogin" , client: 104.207.34.132, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇪🇸 10dencehispahard SL	2025-12-29 09:17:03 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-12-15 00:06:54 (6 months ago)	botnet	DDoS Attack
🇬🇧 Swiptly	2025-11-27 21:56:43 (6 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:41:53 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:41:48.151249 2025] [security2:error] [pid 2661:tid 2661] [client 104.207.34.132:25463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.myrtlebeachpartybuses.com"] [uri "/.svn/wc.db"] [unique_id "aSVPrNadvfxTk4REgL1_UwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:38:27 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:38:21.221063 2025] [security2:error] [pid 23182:tid 23182] [client 104.207.34.132:56535] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "daisyinvitations.com"] [uri "/.svn/wc.db"] [unique_id "aSUWnR9DPwl6wPCoVx09dwAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 madeit	2025-11-04 16:54:20 (7 months ago)		Web App Attack
🇫🇷 applemooz	2025-11-01 11:12:11 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 173.239.214.248

🇫🇮 147.185.133.184

🇫🇷 91.196.152.199

🇬🇧 193.163.125.82

🇺🇸 162.216.149.54

🇺🇸 162.216.149.29

🇧🇬 91.191.209.98

🇺🇸 66.132.172.117

🇰🇷 1.212.225.99

🇨🇳 221.228.10.226

🇧🇷 187.107.8.1

🇧🇬 91.148.190.150

🇫🇷 62.210.125.62

🇰🇷 59.24.133.197

🇵🇱 57.128.225.99

🇸🇬 47.84.105.165

🇮🇩 43.245.249.251

🇸🇬 43.173.178.190

🇳🇱 195.178.110.228

🇧🇷 187.16.107.162