JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.212

104.207.34.212 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 29%: ?

29%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.212

Whois 104.207.34.212

IP Abuse Reports for 104.207.34.212:

This IP address has been reported a total of 161 times from 27 distinct sources. 104.207.34.212 was first reported on June 6th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 04:15:41 (2 hours ago)	Web App Attack	Web App Attack
🇬🇧 spamverify.com	2026-06-03 15:18:52 (2 weeks ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
🇫🇷 ELYAZ	2026-05-30 12:17:01 (3 weeks ago)	(y4) Failed scan -byebye- from 104.207.34.212 (US/United States/-): (CF_ENABLE)	Hacking
🇫🇷 tilellit.pro	2026-05-30 03:39:33 (3 weeks ago)	Fail2Ban banned 104.207.34.212 for security violations in jail wp-armour. Log: 2026/05/30 03:39:32 [ ... show more Fail2Ban banned 104.207.34.212 for security violations in jail wp-armour. Log: 2026/05/30 03:39:32 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.34.212 \| Target: wplogin" , client: 104.207.34.212, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 ELYAZ	2026-05-29 05:06:09 (3 weeks ago)	(y4) Failed scan -byebye- from 104.207.34.212 (US/United States/-): (CF_ENABLE)	Hacking
🇲🇹 Malta	2026-05-26 02:36:33 (4 weeks ago)	104.207.34.212 - - [26/May/2026:04:36:33 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 104.207.34.212 - - [26/May/2026:04:36:33 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇪🇸 librebit	2026-05-17 05:24:14 (1 month ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-02-24 01:02:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 20:02:09.781134 2026] [security2:error] [pid 20335:tid 20335] [client 104.207.34.212:16093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hppagewideprinting.computersraleigh.com"] [uri "/.git/config"] [unique_id "aZz4kdasfo729772-MdemwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-05 12:30:05 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇧🇪 voormedia	2026-02-05 09:53:34 (4 months ago)	Accessed trap at '/wp-login.php'	Web App Attack
🇨🇭 backslash	2025-12-26 03:35:03 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-12-12 01:18:13 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 19:54:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:54:47.849447 2025] [security2:error] [pid 1855411:tid 1855518] [client 104.207.34.212:19897] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boxvalleyrockers.com"] [uri "/.env"] [unique_id "aSishw8NF0ymHnCW1XF1cAAAAdU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:11:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:11:12.751016 2025] [security2:error] [pid 31897:tid 31897] [client 104.207.34.212:16143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.narrowacresbees.com"] [uri "/.git/HEAD"] [unique_id "aSbSQGz4mWRjWkm0tune3QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 09:43:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:43:50.335793 2025] [security2:error] [pid 10116:tid 10116] [client 104.207.34.212:50201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.barryschiller.com"] [uri "/.env"] [unique_id "aSbL1pmRWIGin8qADD1mUgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.88.220.59

🇮🇳 103.103.53.44

🇬🇧 89.37.172.137

🇨🇳 221.12.37.6

🇰🇷 211.57.200.119

🇵🇰 182.180.17.105

🇺🇸 172.56.33.234

🇺🇸 104.152.52.101

🇷🇺 91.218.86.2

🇺🇸 66.132.172.121

🇺🇸 20.98.165.171

🇪🇹 196.190.123.69

🇳🇱 176.65.139.158

🇸🇪 171.25.158.80

🇮🇳 106.208.71.113

🇵🇰 39.32.62.123

🇺🇸 38.21.248.56

🇺🇸 5.161.218.167

🇺🇸 216.25.89.112

🇺🇦 213.5.196.237