JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.148

104.207.34.148 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.148

Whois 104.207.34.148

IP Abuse Reports for 104.207.34.148:

This IP address has been reported a total of 151 times from 13 distinct sources. 104.207.34.148 was first reported on June 7th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-22 23:21:23 (2 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 oncord	2026-01-12 12:47:53 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-27 20:54:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 15:54:46.165975 2025] [security2:error] [pid 22862:tid 22862] [client 104.207.34.148:48023] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goodpage.com"] [uri "/.svn/wc.db"] [unique_id "aVBHlnGmSTFq-BUrMv57bQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 18:43:52 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 13:43:45.828331 2025] [security2:error] [pid 12013:tid 12013] [client 104.207.34.148:18333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wadenelson.com"] [uri "/.svn/wc.db"] [unique_id "aVAo4Rf_gX2JB9_L4yYHgAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:46:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:46:50.387656 2025] [security2:error] [pid 13905:tid 13905] [client 104.207.34.148:19699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.davidrayskinner.com"] [uri "/.env"] [unique_id "aSbamugd_zevCX9EQmuhkAAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:12:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:12:15.937491 2025] [security2:error] [pid 13144:tid 13144] [client 104.207.34.148:56519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.macro-astrology.com"] [uri "/.svn/wc.db"] [unique_id "aSbSf1mrqlUJjKKj1Xx_dgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:06:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:06:02.981808 2025] [security2:error] [pid 20333:tid 20333] [client 104.207.34.148:54729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.donshotrodshop.net"] [uri "/.svn/wc.db"] [unique_id "aSaYyn7aBSDbpEYoFoqMLwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:23:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:23:50.825730 2025] [security2:error] [pid 30374:tid 30374] [client 104.207.34.148:47739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.glslightingandcontrols.com"] [uri "/.git/HEAD"] [unique_id "aSZyxqE7RKIIFDVmTN-6SwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:19:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:19:21.902305 2025] [security2:error] [pid 6906:tid 6906] [client 104.207.34.148:39357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.grieve.tv"] [uri "/.svn/wc.db"] [unique_id "aSZjqc-sFXWzUW9RCtdEwAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2025-11-25 14:34:13 (6 months ago)	Request content type is not allowed by policy. Match of "within %{tx.allowed_request_content_type}" ... show more Request content type is not allowed by policy. Match of "within %{tx.allowed_request_content_type}" against "TX:content_type" required. (920420-193) show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:23:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:22:57.267143 2025] [security2:error] [pid 17667:tid 17667] [client 104.207.34.148:14587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.garbothemusical.net"] [uri "/.git/HEAD"] [unique_id "aSVLQWx81b7k_auiZqG3ngAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:07:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:07:15.987460 2025] [security2:error] [pid 13517:tid 13517] [client 104.207.34.148:28279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mandytony.tonylai.com"] [uri "/.git/HEAD"] [unique_id "aSU5g2bhjjGbmCxcTEh7RwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:18:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:18:20.180083 2025] [security2:error] [pid 21010:tid 21010] [client 104.207.34.148:59131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.greenanvilfarrier.com"] [uri "/.svn/wc.db"] [unique_id "aSUuDEix4eG7c3jPZBnQkwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:31:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:31:47.030801 2025] [security2:error] [pid 7553:tid 7553] [client 104.207.34.148:21211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.matterofbritain.com"] [uri "/.env"] [unique_id "aST487MkFssgBco2jrgkUQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:26:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:26:41.032659 2025] [security2:error] [pid 3965260:tid 3965376] [client 104.207.34.148:26015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.denverdermatologist.aafm.us"] [uri "/.svn/wc.db"] [unique_id "aSPskayiyKH59MCrZuFZaQAAAhg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.161.52.149

🇧🇷 205.210.31.173

🇯🇵 203.25.124.7

🇹🇿 154.118.230.3

🇸🇪 138.124.71.25

🇨🇳 101.126.22.12

🇭🇺 82.23.215.46

🇨🇳 49.86.248.40

🇺🇸 47.251.101.233

🇺🇸 20.55.117.34

🇨🇳 14.103.114.17

🇯🇵 218.42.61.150

🇷🇺 213.180.203.95

🇯🇵 203.25.124.198

🇯🇵 203.25.124.190

🇦🇷 179.40.112.10

🇺🇸 172.93.102.236

🇺🇸 108.214.225.132

🇺🇸 104.194.9.81

🇭🇰 101.79.167.192