JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.163

104.207.34.163 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.163

Whois 104.207.34.163

IP Abuse Reports for 104.207.34.163:

This IP address has been reported a total of 146 times from 24 distinct sources. 104.207.34.163 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 IloGus	2026-04-14 05:45:05 (2 months ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇫🇷 LRob.fr	2026-02-23 18:30:03 (3 months ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-13 12:34:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 07:34:00.405461 2026] [security2:error] [pid 29869:tid 29869] [client 104.207.34.163:9861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davedoeswater.com"] [uri "/.git/HEAD"] [unique_id "aWY7uGJtp78deZnsYSDz4gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:59:46 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 Vano Ganzzz	2025-12-21 03:01:04 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2025-12-21T03:01:04Z Ray ID: 9b1421fd5ec95831 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36 show less	DDoS Attack Bad Web Bot
🇫🇷 mikekarl	2025-12-12 22:59:49 (6 months ago)	SQL INJECTION O'Bryan	SQL Injection
Anonymous	2025-12-11 16:38:50 (6 months ago)	botnet	DDoS Attack
🇱🇹 Evag Touf	2025-12-07 10:33:18 (6 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.34.163 (US/United States/-)	SQL Injection
🇺🇸 nowyouknow	2025-12-03 12:36:18 (6 months ago)	(From [email protected]) Boost your seo rank with quality seo backlinks! BonusBacklinks ... show more (From [email protected]) Boost your seo rank with quality seo backlinks! BonusBacklinks.com - we deliver daily backlinks and bring organic traffic to your site EVERY DAY: + Take 85% OFF + Quality daily seo backlinks + Real website traffic + Prices only from $1 + Bonus coupon codes Check seo coupons - https://tiny.cc/bonusbacklinks-promos Or visit directly - https://Bonusbacklinks.com BonusBacklinks - daily seo backlinks and website traffic to boost your page everyday show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-26 18:56:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:55:57.175134 2025] [security2:error] [pid 8204:tid 8204] [client 104.207.34.163:53083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mwtemperature.com"] [uri "/.svn/wc.db"] [unique_id "aSdNPfcYgTUMW41knrabUQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 16:49:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 11:49:25.262712 2025] [security2:error] [pid 14762:tid 14762] [client 104.207.34.163:50309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.drstiso.com"] [uri "/.git/HEAD"] [unique_id "aScvlZuJidflpWzz84M3QAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 15:24:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 10:24:08.841176 2025] [security2:error] [pid 7323:tid 7323] [client 104.207.34.163:35287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.liyatalton.com"] [uri "/.svn/wc.db"] [unique_id "aScbmNozkUXmOpD1c8fr4AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-26 10:32:57 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:20:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:19:56.767378 2025] [security2:error] [pid 27989:tid 27989] [client 104.207.34.163:26683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.xygil.com"] [uri "/.svn/wc.db"] [unique_id "aSVYnEUBH8Cse_t14G6JJQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:02:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.163 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:02:50.915074 2025] [security2:error] [pid 31095:tid 31095] [client 104.207.34.163:54885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.skomaxentertainment.com"] [uri "/.svn/wc.db"] [unique_id "aSVUmuLS_OxyGZpGC6Ku2gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.231.109.163

🇵🇱 194.180.49.220

🇨🇳 120.92.105.170

🇻🇳 103.78.0.229

🇦🇪 94.57.98.22

🇺🇸 66.240.236.119

🇺🇸 66.132.195.22

🇳🇱 45.148.10.141

🇳🇱 45.142.193.70

🇸🇬 43.133.61.254

🇧🇪 34.140.85.75

🇩🇪 8.211.0.173

🇩🇪 207.154.245.36

🇺🇸 195.184.76.16

🇮🇳 168.144.176.175

🇷🇸 158.173.240.136

🇮🇳 114.30.75.144

🇺🇸 104.234.53.98

🇹🇷 94.78.89.54

🇳🇱 91.92.40.12