JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.18

104.207.34.18 was found in our database!

This IP was reported 95 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.18

Whois 104.207.34.18

IP Abuse Reports for 104.207.34.18:

This IP address has been reported a total of 95 times from 20 distinct sources. 104.207.34.18 was first reported on June 11th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 on-com	2026-06-02 16:20:14 (5 days ago)	URL scan	Brute-Force Web App Attack
🇨🇭 backslash	2026-05-23 05:12:16 (2 weeks ago)		Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-09 19:11:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:11:24.133440 2026] [security2:error] [pid 15514:tid 15514] [client 104.207.34.18:59855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g-peopleland.com"] [uri "/site/.git/config"] [unique_id "aYoxXNvh9IhUhyZ2H6RIoQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 18:25:46 (3 months ago)	Blocking for trying to access an exploit file: /v2/.git/config	Hacking
🇬🇧 SilverZippo	2026-02-08 21:26:01 (3 months ago)	Web App Attack	Web App Attack
🇺🇸 EGP Abuse Dept	2026-01-04 16:58:01 (5 months ago)	forum signup bot	Web Spam Blog Spam Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:04 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-02 22:19:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:19:46.760367 2025] [security2:error] [pid 28422:tid 28492] [client 104.207.34.18:57107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "freelipink.com"] [uri "/.env"] [unique_id "aS9mAmQYvnwMp04GY6-aLQAAAcs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 19:08:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:07:56.132772 2025] [security2:error] [pid 6774:tid 6774] [client 104.207.34.18:9425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cedricwillems.com"] [uri "/.svn/wc.db"] [unique_id "aS85DDElTL5faVPAw5_6JQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 10:06:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 05:06:42.875295 2025] [security2:error] [pid 23718:tid 23718] [client 104.207.34.18:14029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roguetechscene.com"] [uri "/.svn/wc.db"] [unique_id "aS66MpTHTlqf1CypucBdbQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:03:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:03:06.866156 2025] [security2:error] [pid 31771:tid 31771] [client 104.207.34.18:44833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pixzen.com"] [uri "/.git/HEAD"] [unique_id "aS6dOkgGyODIIsmjHUxKXwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:31:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:31:03.781843 2025] [security2:error] [pid 9536:tid 9536] [client 104.207.34.18:55867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "learningbyshipping.com"] [uri "/.git/HEAD"] [unique_id "aS5rhx-UFKKhP_VNQ3_q9QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:13:32 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.207.34.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:13:27.673087 2025] [security2:error] [pid 27727:tid 27741] [client 104.207.34.18:43291] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|unitedonegroup.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "unitedonegroup.com"] [uri "/backup_2019.db"] [unique_id "aSUe1_eXMnwYTnmV60PetAAAAMw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 11:42:46 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇩🇪 Mario Silber	2025-10-19 12:50:42 (7 months ago)	104.207.34.18 (US/United States/-), 5 distributed sshd attacks on account [redacted]	Brute-Force SSH

Showing 1 to 15 of 95 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 210.79.191.205

🇨🇳 183.36.126.68

🇨🇭 176.65.144.48

🇧🇷 152.67.46.203

🇺🇸 147.185.132.84

🇬🇧 194.50.235.138

🇳🇱 172.94.9.29

🇺🇸 168.203.43.249

🇮🇩 163.7.11.155

🇨🇳 122.96.28.9

🇩🇪 84.32.10.175

🇦🇷 45.175.143.225

🇰🇷 222.239.251.12

🇺🇸 193.36.220.203

🇺🇸 172.253.196.146

🇺🇸 162.241.152.21

🇳🇱 160.119.71.12

🇨🇳 117.34.125.173

🇲🇾 115.135.233.75

🇺🇸 104.171.28.24