JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.240

104.207.34.240 was found in our database!

This IP was reported 170 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.240

Whois 104.207.34.240

IP Abuse Reports for 104.207.34.240:

This IP address has been reported a total of 170 times from 25 distinct sources. 104.207.34.240 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-14 03:38:21 (2 months ago)	Forum/form spam	Web Spam
🇪🇸 librebit	2026-03-09 03:57:09 (2 months ago)	Brute force	Brute-Force
🇦🇺 MAGIC	2026-02-05 00:16:58 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇭🇺 bcsaba	2026-01-30 10:02:12 (4 months ago)	Joomla spam 104.207.34.240 - - [30/Jan/2026:11:02:09 +0100] "GET /index.php?option=com_easyblog&view ... show more Joomla spam 104.207.34.240 - - [30/Jan/2026:11:02:09 +0100] "GET /index.php?option=com_easyblog&view=dashboard&layout=write HTTP/1.1" 404 789 "https://REDACTED" "Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0" show less	Web App Attack
🇮🇹 VHosting	2025-12-23 22:45:20 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇵🇱 sefinek.net	2025-12-09 21:19:34 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 stinpriza	2025-11-30 04:28:43 (6 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:34:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:34:12.884105 2025] [security2:error] [pid 23649:tid 23649] [client 104.207.34.240:25479] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.polymermembranes.com"] [uri "/.svn/wc.db"] [unique_id "aSbltN3_3ceVNurPdk-QtAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:40:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:39:59.323482 2025] [security2:error] [pid 28156:tid 28156] [client 104.207.34.240:26133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jbtransportation.net"] [uri "/.svn/wc.db"] [unique_id "aSa832YG_50CtaIMfHARjgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:01:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:01:06.715491 2025] [security2:error] [pid 13061:tid 13092] [client 104.207.34.240:32851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.wheezer.org"] [uri "/.env"] [unique_id "aSaXosSbpAzTiaHKW529kgAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:18:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:17:52.767471 2025] [security2:error] [pid 21572:tid 21572] [client 104.207.34.240:45901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.kevinjewell.com"] [uri "/.env"] [unique_id "aSZxYB176mKGCz23EA_I1gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:10:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:10:10.590401 2025] [security2:error] [pid 2242280:tid 2242280] [client 104.207.34.240:35873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.birdsofnewcaledonia.com"] [uri "/.git/HEAD"] [unique_id "aSZhglSiIhNeiFbwd8qllgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:29:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:29:34.799544 2025] [security2:error] [pid 7274:tid 7274] [client 104.207.34.240:28239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.mykidsdaycare.net"] [uri "/.git/HEAD"] [unique_id "aSZX_ruUZLKvKCgq9-t5jwAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:49:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:49:17.539436 2025] [security2:error] [pid 25883:tid 25883] [client 104.207.34.240:57849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.gslandservices.com"] [uri "/.git/HEAD"] [unique_id "aSZOjfpff3k_p6hrVmER8AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 MPL	2025-11-25 21:59:13 (6 months ago)	tcp/80 (9 or more attempts)	Port Scan

Showing 1 to 15 of 170 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.168

🇳🇱 45.148.10.141

🇹🇷 5.180.105.252

🇩🇪 213.209.159.227

🇧🇷 205.210.31.231

🇷🇴 193.32.162.13

🇩🇪 185.202.156.48

🇻🇳 183.91.11.36

🇺🇸 147.185.132.177

🇺🇸 147.185.132.171

🇨🇳 120.48.107.50

🇦🇺 109.176.34.100

🇺🇸 104.17.150.222

🇵🇰 103.125.179.18

🇫🇷 95.111.230.59

🇩🇪 82.21.70.35

🇺🇸 68.220.171.40

🇨🇳 59.82.0.6

🇲🇾 47.250.44.178

🇨🇱 34.176.231.181