JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.149

104.207.45.149 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.149

Whois 104.207.45.149

IP Abuse Reports for 104.207.45.149:

This IP address has been reported a total of 137 times from 19 distinct sources. 104.207.45.149 was first reported on June 8th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-03 06:07:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 03 01:07:39.798446 2026] [security2:error] [pid 26238:tid 26238] [client 104.207.45.149:9663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "donnrowe.com"] [uri "/g4exE0.htaccess"] [unique_id "aYGQq2gj-YzoAK4y3v04kQAAAB0"], referer: http://donnrowe.com show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-01-12 21:46:51 (4 months ago)	trolling for resource vulnerabilities	Web App Attack
🇱🇻 garmtech.com	2025-12-28 19:51:19 (5 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 TPI-Abuse	2025-11-25 06:24:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:24:03.222770 2025] [security2:error] [pid 8419:tid 8419] [client 104.207.45.149:39667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lamineparke.chevronparkett.com"] [uri "/.env"] [unique_id "aSVLgyta8IaAVzIsU_AR-gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:50:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:50:33.023625 2025] [security2:error] [pid 6588:tid 6588] [client 104.207.45.149:58939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.yevid.com"] [uri "/.svn/wc.db"] [unique_id "aSU1mYMl1vw6-PjHUYd2NgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:26:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:26:10.411731 2025] [security2:error] [pid 2530:tid 2530] [client 104.207.45.149:47729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.athletefirst.org"] [uri "/.svn/wc.db"] [unique_id "aSUh0v_SHp0_iO2bOMChTQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:07:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:07:37.259364 2025] [security2:error] [pid 21228:tid 21228] [client 104.207.45.149:56653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ianadolphus.com"] [uri "/.svn/wc.db"] [unique_id "aSUdeeBR2J1HfqmrlowpdgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:03:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:03:22.511755 2025] [security2:error] [pid 4281:tid 4281] [client 104.207.45.149:46989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.newlife12steprecovery.org"] [uri "/.svn/wc.db"] [unique_id "aSUOapaMCS249Wa63fEoVAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:11:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:11:51.313389 2025] [security2:error] [pid 10107:tid 10107] [client 104.207.45.149:25839] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.thomaschemical.com"] [uri "/.env"] [unique_id "aSUCVwY-t6EwTTH66oahIQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2025-11-24 10:18:31 (6 months ago)	Accessed trap at '/.aws/credentials'	Web App Attack
Anonymous	2025-11-13 23:14:25 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 nowyouknow	2025-11-09 17:01:30 (6 months ago)	(From [email protected]) Hi there from SeoBests, Enhance your website’s SEO performance, expa ... show more (From [email protected]) Hi there from SeoBests, Enhance your website’s SEO performance, expand your online exposure and grow powerful backlinks! Access the top SEO services in one place - SeoBests.com Explore current SEO sales: 50% DISCOUNT Monthly SEO Campaigns + Take 5000 Backlinks FREE: https://tiny.cc/seobests-50bonus Browse through various SEO services, more than 100 deals, and premium experts. SeoBests.com - your leading SEO backlinks seller. show less	Phishing Web Spam
🇬🇧 relianoid.com	2025-11-07 20:47:52 (6 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇨🇭 backslash	2025-10-25 16:40:02 (7 months ago)		Web Spam
🇺🇸 fbarela	2025-10-17 19:01:20 (7 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.201.159.77

🇨🇳 182.109.165.221

🇨🇳 120.228.90.45

🇰🇬 46.251.203.6

🇨🇳 14.218.99.99

🇨🇳 1.59.217.232

🇨🇳 221.211.227.116

🇺🇸 216.25.89.141

🇰🇷 211.40.167.121

🇺🇿 198.163.195.13

🇬🇧 193.176.29.21

🇨🇳 183.66.44.2

🇧🇴 181.115.147.5

🇰🇿 178.91.215.68

🇰🇿 178.88.10.246

🇲🇽 177.248.37.16

🇨🇳 171.213.254.94

🇺🇸 162.241.239.202

🇨🇳 122.158.153.127

🇻🇳 117.6.222.194