JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.170

104.207.34.170 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.170

Whois 104.207.34.170

IP Abuse Reports for 104.207.34.170:

This IP address has been reported a total of 134 times from 17 distinct sources. 104.207.34.170 was first reported on June 22nd 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-03-30 06:21:43 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.34.170 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.34.170 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-03-27 21:36:18 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.34.170 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.34.170 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇱🇻 garmtech.com	2026-03-23 09:53:38 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 05:41:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:41:22.280577 2026] [security2:error] [pid 1107:tid 1107] [client 104.207.34.170:36381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kugbe.com"] [uri "/wp/.git/config"] [unique_id "aZaigsJyNdBvz0LRIE3iPwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:35:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:35:07.907115 2026] [security2:error] [pid 6659:tid 6659] [client 104.207.34.170:10335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiddocommunication.com"] [uri "/dev/.git/config"] [unique_id "aZaE65gvauJtefnW7eBHiwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:57:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:56:56.551350 2026] [security2:error] [pid 2777424:tid 2777424] [client 104.207.34.170:10709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kemblebrothers.com"] [uri "/app/.git/config"] [unique_id "aZZ7-PH5wVt3pvlHkblT0wAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:14:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:14:02.446407 2026] [security2:error] [pid 16174:tid 16174] [client 104.207.34.170:37639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katisfaction.nl"] [uri "/app/.env"] [unique_id "aZZx6mK67qNHJnKvnaAqpgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 16:52:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 11:52:18.235722 2026] [security2:error] [pid 12341:tid 12341] [client 104.207.34.170:35753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zackfranz.com"] [uri "/.env.save"] [unique_id "aZXuQmXkDaV6b3EObgHQ8AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:27:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:27:06.020901 2026] [security2:error] [pid 6590:tid 6590] [client 104.207.34.170:10317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webjemm.net"] [uri "/api/.env"] [unique_id "aZWwGspuSyDmPv7pFgxMSAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 12:05:38 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:46:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:45:53.686515 2026] [security2:error] [pid 23532:tid 23532] [client 104.207.34.170:39659] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "walterjhoodco.com"] [uri "/.env.save"] [unique_id "aZWmce3Lp1tEU1TiVeaMqQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 F242	2026-01-30 05:09:35 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇪🇸 librebit	2025-12-30 06:20:31 (5 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2025-12-29 04:52:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.170 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:52:09.422151 2025] [security2:error] [pid 32419:tid 32419] [client 104.207.34.170:16911] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "clevercad.com"] [uri "/.svn/wc.db"] [unique_id "aVII-Z8JO_rhPKU4abf7FgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-23 18:25:21 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 216.132.188.253

🇩🇪 213.209.159.242

🇲🇦 196.92.7.249

🇺🇸 184.105.247.247

🇸🇬 172.217.43.148

🇩🇪 167.172.104.91

🇳🇱 158.94.210.203

🇺🇸 146.88.241.75

🇫🇷 91.196.152.95

🇫🇷 51.159.104.75

🇮🇷 151.234.200.237

🇸🇬 129.226.95.93

🇧🇩 103.99.181.58

🇫🇮 46.62.184.25

🇺🇸 217.216.84.206

🇮🇳 117.193.33.166

🇮🇳 103.255.220.10

🇮🇳 103.203.38.140

🇱🇹 45.227.254.170

🇺🇸 45.79.177.245