JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.71

104.207.34.71 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.71

Whois 104.207.34.71

IP Abuse Reports for 104.207.34.71:

This IP address has been reported a total of 143 times from 23 distinct sources. 104.207.34.71 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-12 05:46:06 (1 month ago)	Attempt to scan vulnerabilities	Hacking
🇦🇺 MAGIC	2026-02-22 01:20:15 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:02 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-15 12:28:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:28:09.588284 2026] [security2:error] [pid 20854:tid 20854] [client 104.207.34.71:25677] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title16.com"] [uri "/test/.git/config"] [unique_id "aZG72bS_jyaV-gcmK4mmyQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:42:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:42:36.036701 2026] [security2:error] [pid 10332:tid 10332] [client 104.207.34.71:56529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomaschemicals.com"] [uri "/site/.git/config"] [unique_id "aZGxLPQ8UnHrnXrmGE3k6QAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:23:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:23:06.404719 2026] [security2:error] [pid 18703:tid 18703] [client 104.207.34.71:50551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theurbanlogger.com"] [uri "/admin/.git/config"] [unique_id "aZGsmhBOFZxW78Sq31NeAAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-15 05:55:18 (3 months ago)	http-sensitive-files - IP: 104.207.34.71 - time="2026-02-15T06:55:18+01:00" level=info msg="(555f66 ... show more http-sensitive-files - IP: 104.207.34.71 - time="2026-02-15T06:55:18+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.34.71 (US/200373) : 4h ban on Ip 104.207.34.71" module=db show less	Web App Attack
Anonymous	2026-02-15 04:31:31 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 03:56:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:56:03.497574 2026] [security2:error] [pid 31013:tid 31013] [client 104.207.34.71:12417] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stinnetthomeinspection.com"] [uri "/.env"] [unique_id "aZFD06gTLUhSIOira_v6RgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:28:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:28:07.446287 2026] [security2:error] [pid 939:tid 939] [client 104.207.34.71:27661] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "statisticsbook.com"] [uri "/app/.env"] [unique_id "aZE9R6VuSqITbp2JgjHP8AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 03:24:00 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:45:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:45:00.335964 2026] [security2:error] [pid 25220:tid 25220] [client 104.207.34.71:25175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naghmehfarahmand.com"] [uri "/v2/.git/config"] [unique_id "aZEzLMxAfNrAbOe-rq1-mAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 01:51:51 (3 months ago)	[Sat Feb 14 19:51:49.861694 2026] [authz_core:error] [pid 3043717:tid 3043746] [client 104.207.34.71 ... show more [Sat Feb 14 19:51:49.861694 2026] [authz_core:error] [pid 3043717:tid 3043746] [client 104.207.34.71:31101] AH01630: client denied by server configuration: /var/www/html/.env [Sat Feb 14 19:51:49.978061 2026] [authz_core:error] [pid 3043717:tid 3043745] [client 104.207.34.71:31101] AH01630: client denied by server configuration: /var/www/html/.env.production [Sat Feb 14 19:51:50.094293 2026] [authz_core:error] [pid 3043717:tid 3043756] [client 104.207.34.71:31101] AH01630: client denied by server configuration: /var/www/html/.env.staging [Sat Feb 14 19:51:50.443463 2026] [authz_core:error] [pid 3043717:tid 3043747] [client 104.207.34.71:31101] AH01630: client denied by server configuration: /var/www/html/.env.save [Sat Feb 14 19:51:50.909304 2026] [authz_core:error] [pid 3043717:tid 3043753] [client 104.207.34.71:31101] AH01630: client denied by server configuration: /var/www/html/.env.local ... show less	Brute-Force
🇺🇸 mnsf	2026-02-15 01:05:39 (3 months ago)	Too many Status 40X (11) Scanning/Probing (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:36:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:35:58.192483 2026] [security2:error] [pid 7285:tid 7285] [client 104.207.34.71:36819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lspfest.com"] [uri "/.env"] [unique_id "aZEU7hyOsDMB5mJ8-0eISAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.83

🇹🇼 101.13.5.49

🇳🇱 45.148.10.141

🇮🇳 43.227.185.238

🇧🇪 34.76.199.74

🇬🇧 31.171.130.109

🇬🇧 31.14.254.15

🇰🇷 203.123.219.137

🇺🇸 162.216.149.227

🇨🇳 115.48.27.89

🇨🇳 112.94.76.237

🇨🇳 60.166.82.60

🇺🇸 46.16.34.179

🇧🇪 35.187.168.184

🇩🇪 216.26.253.86

🇺🇸 173.239.213.18

🇺🇸 162.216.150.188

🇲🇴 125.31.2.160

🇨🇳 118.212.123.121

🇨🇳 116.114.84.246