JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.201

104.207.34.201 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.201

Whois 104.207.34.201

IP Abuse Reports for 104.207.34.201:

This IP address has been reported a total of 141 times from 17 distinct sources. 104.207.34.201 was first reported on June 11th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Lino Project	2026-06-01 10:17:56 (4 days ago)	104.207.34.201 - - [01/Jun/2026:12:17:55 +0200] "GET /xmlrpc.php HTTP/1.1" 403 3972 "https://www.pri ... show more 104.207.34.201 - - [01/Jun/2026:12:17:55 +0200] "GET /xmlrpc.php HTTP/1.1" 403 3972 "https://www.primobio.it/mio-account/?action=register" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-05-14 03:36:31 (3 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /index.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36; Manus-User/1.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-03-26 19:40:49 (2 months ago)	attempts to hack passwords	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-20 09:46:22 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 04:46:15.511999 2026] [security2:error] [pid 15400:tid 15400] [client 104.207.34.201:12897] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|cobbwebb.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cobbwebb.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZgtZ-YUJgLCXTddDEdvfQAAAAI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:10:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:10:05.842305 2026] [security2:error] [pid 8338:tid 8338] [client 104.207.34.201:28675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gapanda.com"] [uri "/.env.save"] [unique_id "aYpNLQIYfLrTfKhN3QqLfgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 etu brutus	2026-02-09 21:04:59 (3 months ago)	104.207.34.201 has been banned for [WebApp Attack] ...	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:37:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:37:38.526860 2026] [security2:error] [pid 22207:tid 22207] [client 104.207.34.201:42311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabver.com"] [uri "/admin/.git/config"] [unique_id "aYo3gok8Y5gaQjRahQFUkwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 16:17:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 11:17:08.447619 2026] [security2:error] [pid 4281:tid 4281] [client 104.207.34.201:62737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fsmfl.com"] [uri "/.env.production"] [unique_id "aYoIhFDyNRvbm6bqdL2A6gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 12:01:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 07:01:20.801248 2026] [security2:error] [pid 18707:tid 18707] [client 104.207.34.201:24377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galysh.us"] [uri "/config/.env"] [unique_id "aYnMkDDCIwPcntAqP00cawAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 07:54:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 02:54:00.741075 2026] [security2:error] [pid 1824798:tid 1824798] [client 104.207.34.201:56025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fvsllc.com"] [uri "/admin/.git/config"] [unique_id "aYmSmL5xiw7msJtSE5e1WgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-31 13:05:14 (5 months ago)	wordpress-trap	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:57:20 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 oncord	2025-12-20 20:35:52 (5 months ago)	Form spam	Web Spam
Anonymous	2025-12-12 09:01:49 (5 months ago)	botnet	DDoS Attack
🇺🇸 nowyouknow	2025-12-11 08:10:56 (5 months ago)	(From [email protected]) Curious how real backlinks can help alignchiropr ... show more (From [email protected]) Curious how real backlinks can help alignchiropracticwellness.com? Start exploring: https://rb.gy/19b0ah show less	Phishing Web Spam

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇧🇷 205.210.31.174

🇬🇧 195.96.139.175

🇳🇱 193.176.31.206

🇩🇪 165.232.125.188

🇫🇮 147.185.133.191

🇳🇱 89.21.67.141

🇩🇪 69.5.169.221

🇩🇪 69.5.169.198

🇺🇸 64.247.196.36

🇺🇸 20.163.15.236

🇮🇳 3.110.119.62

🇷🇴 2.57.121.112

🇫🇷 2a02:4780:27:1888:0:207a:6412:1

🇧🇪 198.235.24.198

🇳🇱 193.176.31.254

🇦🇷 181.166.192.131

🇺🇸 162.240.228.207

🇳🇱 160.119.76.61

🇩🇪 152.53.177.77