JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.124

104.207.45.124 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.124

Whois 104.207.45.124

IP Abuse Reports for 104.207.45.124:

This IP address has been reported a total of 149 times from 21 distinct sources. 104.207.45.124 was first reported on June 7th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2026-02-18 22:11:32 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-22 19:44:21 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 14:43:27.434929 2026] [security2:error] [pid 30538:tid 30538] [client 104.207.45.124:40433] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.phantomkennels.com\|F\|2"] [data "[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.phantomkennels.com"] [uri "/[email protected]"] [unique_id "aXJ93wS6t4G_qtoOOYu3AwAAACQ"], referer: http://www.phantomkennels.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:10 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-14 08:16:01 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-09 10:57:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 05:57:00.323737 2025] [security2:error] [pid 13637:tid 13637] [client 104.207.45.124:59733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lindaporcello.com"] [uri "/.git/HEAD"] [unique_id "aTgAfGu1VtpUrBX07sZ-PAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 13:13:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:13:47.230331 2025] [security2:error] [pid 5345:tid 5345] [client 104.207.45.124:32835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gadgeteer.net"] [uri "/.env"] [unique_id "aTQsC0iPbhyzqcoB-ALZOgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:45:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:44:57.422335 2025] [security2:error] [pid 3389:tid 3389] [client 104.207.45.124:47913] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "techskill.net"] [uri "/.git/HEAD"] [unique_id "aTQXOX_IOMYMRC0-EcpsfgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 04:24:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 23:24:36.001528 2025] [security2:error] [pid 15538:tid 15538] [client 104.207.45.124:45973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "belgiophar.info"] [uri "/.git/HEAD"] [unique_id "aTOwBNy091SGGfKkgOHIMwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 CBJ	2025-12-06 00:34:44 (6 months ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 21:10:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 16:10:01.082211 2025] [security2:error] [pid 29927:tid 29927] [client 104.207.45.124:27491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundaciondamashcc.org.ec"] [uri "/.svn/wc.db"] [unique_id "aTNKKc6bPa4RlRTkdh1eBgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 Johan Finn	2025-12-03 02:14:36 (6 months ago)	malicious activity	Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 20:32:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 15:32:39.413584 2025] [security2:error] [pid 10426:tid 10426] [client 104.207.45.124:52637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jackandmaxk.com"] [uri "/.env"] [unique_id "aS9M5_2AgCC5EeGOJ2IU7wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:37:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:37:19.403581 2025] [security2:error] [pid 20404:tid 20404] [client 104.207.45.124:10087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starcrestsales.com"] [uri "/.env"] [unique_id "aS6XL2xsIQcIYHjJoa5efAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:58:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:58:47.703467 2025] [security2:error] [pid 31232:tid 31232] [client 104.207.45.124:37053] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jchiggins.com"] [uri "/.svn/wc.db"] [unique_id "aS6OJwWfRSkaGtSKor7LIQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:30:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:29:56.738886 2025] [security2:error] [pid 10606:tid 10606] [client 104.207.45.124:48277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xyncom.com"] [uri "/.git/HEAD"] [unique_id "aS55VCcbhBtDMKNStTiZlAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 45.227.254.170

🇧🇷 191.37.5.153

🇹🇷 185.128.114.156

🇹🇷 185.128.114.155

🇺🇸 173.255.223.124

🇮🇩 156.230.182.108

🇮🇳 113.193.234.210

🇳🇱 89.21.67.163

🇳🇱 89.21.67.157

🇳🇱 45.148.10.147

🇧🇪 198.235.24.213

🇹🇷 185.128.114.154

🇺🇸 173.239.213.24

🇺🇸 173.239.213.14

🇻🇳 171.244.60.35

🇺🇸 167.99.101.91

🇬🇧 138.199.31.194

🇷🇴 92.118.39.236

🇷🇺 83.239.99.95

🇳🇱 81.19.216.72