JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.160

104.207.45.160 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.160

Whois 104.207.45.160

IP Abuse Reports for 104.207.45.160:

This IP address has been reported a total of 144 times from 20 distinct sources. 104.207.45.160 was first reported on June 5th 2024, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-17 03:11:23 (19 hours ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-06-16 02:17:14 (1 day ago)	Web App Attack	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇳🇱 homeshowdomain.nl	2026-02-12 22:59:50 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-12	Hacking Web App Attack SSH
🇺🇸 ANTI SCANNER	2026-02-10 15:21:51 (4 months ago)	Scanner : /test/.git/config	Web Spam
🇺🇸 TPI-Abuse	2026-02-10 03:05:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:05:35.959518 2026] [security2:error] [pid 12745:tid 12762] [client 104.207.45.160:64769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madring.click"] [uri "/backup/.git/config"] [unique_id "aYqgfyzFaBOFmlrgLfF5YAAAAI4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Teufel100	2026-02-10 02:06:12 (4 months ago)	ModSecurity rejected a query'	Hacking Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:06:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:05:49.385222 2026] [security2:error] [pid 1636095:tid 1636095] [client 104.207.45.160:34865] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentuckyminiaturehorsebreeders.org"] [uri "/wp/.git/config"] [unique_id "aYp2XbybFtPAK_QMYiwSAwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:18:58 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:18:51.779296 2026] [security2:error] [pid 29395:tid 29395] [client 104.207.45.160:54179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horse7.com"] [uri "/dev/.git/config"] [unique_id "aYpPO6dIMofloM_rkOHjNQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-29 00:46:36 (5 months ago)	2025-12-29T02:46:35.851629+02:00 zanati wp(www.sahpa.co.za)[397793]: Blocked authentication attempt ... show more 2025-12-29T02:46:35.851629+02:00 zanati wp(www.sahpa.co.za)[397793]: Blocked authentication attempt for [email protected] from 104.207.45.160 ... show less	Web App Attack
Anonymous	2025-12-28 16:18:38 (5 months ago)	104.207.45.160 - - [28/Dec/2025:16:18:37 +0000] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (Windo ... show more 104.207.45.160 - - [28/Dec/2025:16:18:37 +0000] "GET /.env HTTP/1.1" 404 397 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.0.0" ... show less	Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2025-12-08 03:46:40 (6 months ago)	2025-12-08 @ 04:46:40 (CET) ~ Blocked for trying to access: /wp/kickstart.php	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:22:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:22:10.874568 2025] [security2:error] [pid 28337:tid 28337] [client 104.207.45.160:48761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.karsini-services.com"] [uri "/.svn/wc.db"] [unique_id "aSZkUp-F4AtfaHynYsiMcwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:25:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:24:56.760158 2025] [security2:error] [pid 1433:tid 1433] [client 104.207.45.160:29367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.crowleywoodworking.com"] [uri "/.git/HEAD"] [unique_id "aSZW6K4bv0sxepnwFpkSVAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:49:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.160 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:49:38.975510 2025] [security2:error] [pid 14657:tid 14657] [client 104.207.45.160:16943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.cuul.co"] [uri "/.git/HEAD"] [unique_id "aSZOokWb852oeShaZQdiAQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 45.227.254.170

🇺🇸 17.22.253.202

🇿🇦 169.239.183.156

🇸🇬 168.144.99.170

🇮🇳 143.110.251.21

🇸🇦 82.197.58.135

🇨🇳 58.50.153.132

🇩🇪 43.157.62.101

🇩🇪 213.209.159.56

🇦🇺 168.144.168.225

🇸🇬 168.144.103.186

🇸🇬 168.144.32.182

🇳🇱 158.94.210.205

🇺🇸 147.185.132.234

🇺🇸 147.185.132.39

🇸🇬 101.47.15.119

🇳🇱 91.92.40.37

🇸🇬 43.160.214.230

🇮🇩 202.77.111.162

🇸🇪 185.246.130.20