JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.200

104.207.45.200 was found in our database!

This IP was reported 154 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.200

Whois 104.207.45.200

IP Abuse Reports for 104.207.45.200:

This IP address has been reported a total of 154 times from 21 distinct sources. 104.207.45.200 was first reported on June 6th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 03:40:18 (3 weeks ago)	Brute force	Brute-Force
Anonymous	2026-04-20 07:02:45 (1 month ago)	Forum/form spam	Web Spam
🇬🇧 relianoid.com	2026-04-17 01:05:10 (1 month ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇳🇱 jjnxpct	2026-02-20 04:54:21 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /new/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Web App Attack Hacking
🇵🇱 ketovoila.pl	2026-02-19 23:22:44 (3 months ago)	ketovoila.pl HONEYPOT traffic: count=13, paths=13; sample_path=ketovoila.pl/.env.staging; UA=Mozilla ... show more ketovoila.pl HONEYPOT traffic: count=13, paths=13; sample_path=ketovoila.pl/.env.staging; UA=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36; window=2026-02-19T03:12:56Z..2026-02-19T03:12:54Z show less	Port Scan Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-19 05:12:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:12:23.896863 2026] [security2:error] [pid 6480:tid 6480] [client 104.207.45.200:62859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kraftre.com"] [uri "/.env"] [unique_id "aZabtzL3mqiJYhgJ8k2a-gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 ketovoila.pl	2026-02-19 03:19:17 (3 months ago)	ketovoila.pl HONEYPOT traffic: count=3, paths=3; sample_path=ketovoila.pl/frontend/.env; UA=Mozilla/ ... show more ketovoila.pl HONEYPOT traffic: count=3, paths=3; sample_path=ketovoila.pl/frontend/.env; UA=Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36; window=2026-02-19T03:12:55Z..2026-02-19T03:12:54Z show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-02-19 02:55:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:55:20.167515 2026] [security2:error] [pid 17082:tid 17082] [client 104.207.45.200:55563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kelting.net"] [uri "/.env.production"] [unique_id "aZZ7mAHV0GP9fXkU0pzbggAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 00:48:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 19:48:19.774791 2026] [security2:error] [pid 12699:tid 12699] [client 104.207.45.200:24865] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "w1rq.com"] [uri "/admin/.git/config"] [unique_id "aZZd0y-XoGeTFnHqpzi95QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 23:13:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 18:13:03.961001 2026] [security2:error] [pid 21162:tid 21162] [client 104.207.45.200:52799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "veracurnow.com"] [uri "/backup/.git/config"] [unique_id "aZZHf5LTA1rtleQtHxx5IgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 22:32:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 17:32:52.488490 2026] [security2:error] [pid 23275:tid 23275] [client 104.207.45.200:23831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "utd.net"] [uri "/.env.staging"] [unique_id "aZY-FMSUWvzJtUPMOC6xegAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-18 21:39:11 (3 months ago)	http-sensitive-files - IP: 104.207.45.200 - time="2026-02-18T22:39:11+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 104.207.45.200 - time="2026-02-18T22:39:11+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.45.200 (US/200373) : 4h ban on Ip 104.207.45.200" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 21:12:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 16:12:29.221710 2026] [security2:error] [pid 19948:tid 19948] [client 104.207.45.200:64223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "turtletaekwondo.com"] [uri "/dev/.git/config"] [unique_id "aZYrPYcA7IAK4nSpQ4b5_wAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:15:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:15:04.983863 2026] [security2:error] [pid 1069:tid 1069] [client 104.207.45.200:37565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "transmittersolution.com"] [uri "/admin/.git/config"] [unique_id "aZYdyCcZ3SC3q-dPLbYi4wAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 19:54:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 14:54:23.748295 2026] [security2:error] [pid 1303938:tid 1303959] [client 104.207.45.200:36657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "totalbodycare753.com"] [uri "/.env.production"] [unique_id "aZYY760LpJ7TpfWKnINPQAAAAFI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 154 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 204.76.203.206

🇺🇸 157.230.90.196

🇺🇸 104.232.79.58

🇺🇸 65.49.1.38

🇳🇱 45.148.10.240

🇹🇼 198.235.24.42

🇧🇷 177.99.193.135

🇧🇷 168.0.102.191

🇹🇳 165.50.70.54

🇨🇳 159.75.115.184

🇯🇵 150.230.103.115

🇨🇳 119.45.157.82

🇩🇪 69.5.169.72

🇺🇸 64.62.197.191

🇺🇸 52.165.88.155

🇬🇧 35.203.210.68

🇮🇳 182.95.234.6

🇭🇰 152.32.171.73

🇻🇳 152.32.160.252

🇩🇪 151.243.11.34