JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.198

104.207.34.198 was found in our database!

This IP was reported 165 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.198

Whois 104.207.34.198

IP Abuse Reports for 104.207.34.198:

This IP address has been reported a total of 165 times from 25 distinct sources. 104.207.34.198 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 cmbplf	2026-05-07 13:53:12 (1 month ago)	606 requests with url.path *.env	Brute-Force Bad Web Bot
🇵🇹 Information Security	2026-03-22 02:39:44 (2 months ago)	Web App Attack	Web App Attack
🇹🇷 rtbh.com.tr	2026-03-04 20:11:53 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇵🇱 cheatmaster.store	2026-02-25 23:20:38 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: United States Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇹🇷 rtbh.com.tr	2026-02-17 20:11:36 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 mnsf	2026-02-15 13:05:20 (3 months ago)	Too many Status 40X (12) Scanning/Probing (17)	Brute-Force Web App Attack
🇫🇮 diego021	2026-02-15 11:33:34 (3 months ago)	104.207.34.198 pythonpirate.tech - [15/Feb/2026:06:33:30 -0500] "GET /.env.local HTTP/1.1" 404 341 " ... show more 104.207.34.198 pythonpirate.tech - [15/Feb/2026:06:33:30 -0500] "GET /.env.local HTTP/1.1" 404 341 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.34.198 pythonpirate.tech - [15/Feb/2026:06:33:32 -0500] "GET /config/.env HTTP/1.1" 404 341 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.34.198 pythonpirate.tech - [15/Feb/2026:06:33:32 -0500] "GET /.git/config HTTP/1.1" 404 341 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" 104.207.34.198 pythonpirate.tech - [15/Feb/2026:06:33:32 -0500] "GET /dev/.git/config HTTP/1.1" 404 341 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Web App Attack
🇩🇪 ghostwarriors	2026-02-15 11:20:14 (3 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 11:01:36 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.34.198 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.34.198 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
Anonymous	2026-02-15 04:31:30 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇩🇪 big-cloud.nl	2026-02-15 03:22:50 (3 months ago)	Try to access /api/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:08:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:08:26.391143 2026] [security2:error] [pid 664769:tid 664769] [client 104.207.34.198:28609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pianissimo-pp.com"] [uri "/api/.git/config"] [unique_id "aZEcir7aIJj5MbHtCo_8nQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:49:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:49:51.748619 2026] [security2:error] [pid 1226:tid 1226] [client 104.207.34.198:41127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naplesdogcenter.com"] [uri "/v2/.git/config"] [unique_id "aZEYLwjSCV7wFaNw9ZbmOwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 09:02:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:02:37.522024 2026] [security2:error] [pid 32405:tid 32405] [client 104.207.34.198:54291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lan0.net"] [uri "/config/.env"] [unique_id "aY7orZgQKJFqOoHWjFFNjQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:53:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.198 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:52:57.329999 2026] [security2:error] [pid 11261:tid 11261] [client 104.207.34.198:14675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kylight.net"] [uri "/api/.git/config"] [unique_id "aY7YWfq2CSXAI-ROfVIJqwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 165 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.47

🇨🇳 110.177.179.238

🇷🇴 92.118.39.227

🇮🇳 202.141.95.56

🇦🇷 200.32.52.150

🇺🇸 172.234.218.245

🇮🇩 123.231.210.210

🇮🇳 122.187.116.110

🇺🇸 97.223.23.47

🇺🇸 23.95.80.172

🇬🇧 87.236.176.28

🇸🇬 68.183.236.1

🇺🇸 64.62.197.16

🇫🇷 54.38.241.200

🇺🇸 23.95.212.149

🇨🇦 20.151.200.108

🇨🇳 14.22.79.82

🇧🇷 2804:8750:409e:ab00:3:a56:79a1:854d

🇩🇪 213.209.159.236

🇺🇸 192.34.128.202