JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.34.90

104.207.34.90 was found in our database!

This IP was reported 183 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.34.90

Whois 104.207.34.90

IP Abuse Reports for 104.207.34.90:

This IP address has been reported a total of 183 times from 27 distinct sources. 104.207.34.90 was first reported on June 6th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 jjnxpct	2026-02-16 04:54:32 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.aws/credentials (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇩🇪 DocNetzwerk	2026-02-15 12:25:42 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.34.90 (US/United States/-)	SQL Injection
Anonymous	2026-02-15 11:24:18 (3 months ago)	104.207.34.90 - - [15/Feb/2026:11:23:58 +0000] "GET /admin/.git/config HTTP/1.1" 403 2428 "-" "Mozil ... show more 104.207.34.90 - - [15/Feb/2026:11:23:58 +0000] "GET /admin/.git/config HTTP/1.1" 403 2428 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:49:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:49:22.690242 2026] [security2:error] [pid 20636:tid 20636] [client 104.207.34.90:34607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scermak.com"] [uri "/backend/.env"] [unique_id "aZFeYhEXmVKZnhNTu-k1zwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 05:18:21 (3 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:00:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:00:31.921959 2026] [security2:error] [pid 2313:tid 2313] [client 104.207.34.90:11191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarawagnergrants.com"] [uri "/api/.env"] [unique_id "aZFS73Eg4-Vho2Hdq5B2nwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:16:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:16:30.171596 2026] [security2:error] [pid 25458:tid 25458] [client 104.207.34.90:51521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nrvoutdoors.com"] [uri "/test/.git/config"] [unique_id "aZFInk3lX_VWnGYKZ320pgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-02-15 03:30:44 (3 months ago)	Web vulnerability probing: /admin/.env	Web App Attack
🇺🇸 myagent.site	2026-02-15 02:38:01 (3 months ago)	Blocking for trying to access an exploit file: /backup/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-15 02:23:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:23:50.749590 2026] [security2:error] [pid 1947:tid 1947] [client 104.207.34.90:18133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "player-care.com"] [uri "/new/.git/config"] [unique_id "aZEuNoYAy4KpWKfzC75ubwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:39:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:39:44.375518 2026] [security2:error] [pid 458:tid 469] [client 104.207.34.90:16275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nelsonyung.com"] [uri "/backup/.git/config"] [unique_id "aZEj4Ifp7zOmXgeq_CM64gAAAIc"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-02-15 01:12:38 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:09:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:09:38.648814 2026] [security2:error] [pid 22788:tid 22788] [client 104.207.34.90:47717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rodrandolph.com"] [uri "/new/.git/config"] [unique_id "aZEc0jp-8zYV6teYciNseQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2026-02-15 01:02:01 (3 months ago)	vulnerability scan	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:48:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.34.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:48:39.305059 2026] [security2:error] [pid 662513:tid 662513] [client 104.207.34.90:62335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naomicotten.com"] [uri "/v2/.git/config"] [unique_id "aZEX59oTTXw9cqakbuPSfwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 183 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.82.97.51

🇰🇷 218.150.184.241

🇮🇳 188.241.62.83

🇺🇸 212.56.54.52

🇳🇱 176.65.139.229

🇺🇸 165.154.36.71

🇫🇮 135.136.189.182

🇺🇸 2602:fb54:1a00::94

🇰🇷 220.80.66.168

🇩🇪 213.95.191.47

🇵🇰 153.117.9.206

🇮🇳 122.185.146.106

🇨🇳 121.30.65.210

🇬🇧 87.236.176.99

🇺🇸 206.206.103.148

🇰🇷 203.228.30.198

🇳🇱 185.223.235.22

🇺🇸 156.239.253.250

🇫🇷 129.151.234.14

🇳🇱 85.121.127.160