JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.21

104.207.34.21 was found in our database!

This IP was reported 101 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.21

Whois 104.207.34.21

IP Abuse Reports for 104.207.34.21:

This IP address has been reported a total of 101 times from 27 distinct sources. 104.207.34.21 was first reported on June 13th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 06:16:41 (3 weeks ago)	Brute force	Brute-Force
🇬🇧 Oakley	2026-04-07 00:26:58 (2 months ago)	(mod_security) mod_security (id:900209) triggered by 104.207.34.21 (US/United States/-): 5 in the la ... show more (mod_security) mod_security (id:900209) triggered by 104.207.34.21 (US/United States/-): 5 in the last 900 secs show less	Web App Attack Hacking
🇳🇱 jjnxpct	2026-02-19 04:50:07 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /dev/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-02-19 01:46:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:46:40.668411 2026] [security2:error] [pid 9110:tid 9110] [client 104.207.34.21:30151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karendraughon.com"] [uri "/new/.git/config"] [unique_id "aZZrgIBXrf8xR47K1foQLgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:23:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:23:51.832366 2026] [security2:error] [pid 11501:tid 11501] [client 104.207.34.21:32987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "treeofloveproductions.com"] [uri "/.env.save"] [unique_id "aZYf16BmdqIyKsjNQl9hwwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:30:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:30:22.296758 2026] [security2:error] [pid 15014:tid 15014] [client 104.207.34.21:50091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thevenicecafe.com"] [uri "/wp/.git/config"] [unique_id "aZYFPtlVvRArFjOtrCk8WgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:09:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:09:02.567814 2026] [security2:error] [pid 11380:tid 11380] [client 104.207.34.21:29941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waynejarvi.com"] [uri "/.env.staging"] [unique_id "aZWr3tt1tLrGcHapOotZqQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:46:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:46:03.990054 2026] [security2:error] [pid 32404:tid 32404] [client 104.207.34.21:12117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waltersnet.com"] [uri "/api/.env"] [unique_id "aZWme0OFFR9ZBmGONML2KAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:39:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:39:20.928505 2026] [security2:error] [pid 28210:tid 28210] [client 104.207.34.21:39945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shafoo.com"] [uri "/dev/.git/config"] [unique_id "aZG-eClcKH4zwqRP2wh6qAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 12:35:22 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 myagent.site	2026-02-15 11:55:27 (3 months ago)	Blocking for trying to access an exploit file: /.env.local	Hacking
🇺🇸 TPI-Abuse	2026-02-15 11:11:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:11:46.554494 2026] [security2:error] [pid 27335:tid 27335] [client 104.207.34.21:21403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ourhotmail.com"] [uri "/admin/.git/config"] [unique_id "aZGp8vQQsQ9gxO6up31HnQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-02-15 11:07:17 (3 months ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 07:00:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 02:00:47.782129 2026] [security2:error] [pid 919182:tid 919182] [client 104.207.34.21:30941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "organismeffects.com"] [uri "/backend/.env"] [unique_id "aZFvH1xaRtQRS9XHOt7hBQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:55:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:55:01.949278 2026] [security2:error] [pid 6223:tid 6242] [client 104.207.34.21:63305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "omegaoak.com"] [uri "/v2/.git/config"] [unique_id "aZFftfZ1Qi5ljpkNddWF_wAAAI8"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 101 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.235

🇺🇸 2607:f8b0:4001:c13::122

🇨🇳 182.119.228.81

🇳🇱 176.65.139.130

🇧🇷 138.204.203.182

🇨🇳 116.237.181.57

🇺🇸 103.234.62.70

🇪🇸 85.50.120.247

🇹🇷 81.215.2.169

🇺🇸 35.225.221.192

🇺🇸 2607:f8b0:400e:c05::126

🇩🇪 194.88.98.102

🇫🇷 173.212.213.201

🇺🇸 148.153.121.223

🇺🇸 147.185.132.198

🇯🇵 129.227.238.120

🇨🇳 112.21.104.88

🇮🇳 103.111.228.36

🇺🇸 64.207.225.55

🇰🇿 2.133.48.79