JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.202

104.207.45.202 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.202

Whois 104.207.45.202

IP Abuse Reports for 104.207.45.202:

This IP address has been reported a total of 133 times from 21 distinct sources. 104.207.45.202 was first reported on June 3rd 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2026-01-03 03:45:13 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:56 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇫🇷 applemooz	2025-11-01 11:21:29 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇬🇧 Bytemark	2025-10-27 01:05:02 (7 months ago)	Oct 27 01:04:58 dlcentre3 sshd[5960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Oct 27 01:04:58 dlcentre3 sshd[5960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.207.45.202 Oct 27 01:05:00 dlcentre3 sshd[5960]: Failed password for invalid user yehuda from 104.207.45.202 port 26079 ssh2 show less	Brute-Force SSH
Anonymous	2025-10-22 02:38:13 (7 months ago)	2025-10-22T04:38:10.454429 localhost.localdomain sshd[813855]: pam_unix(sshd:auth): authentication f ... show more 2025-10-22T04:38:10.454429 localhost.localdomain sshd[813855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.207.45.202 2025-10-22T04:38:12.678379 localhost.localdomain sshd[813855]: Failed password for invalid user [email protected] from 104.207.45.202 port 51055 ssh2 ... show less	Brute-Force SSH
🇨🇦 wil.com	2025-10-13 23:13:20 (7 months ago)	GlobalProtect login attempts with user nkapde.	VPN IP Brute-Force
Anonymous	2025-10-08 07:00:56 (7 months ago)	Attempted brute force login to web vpn 27 time(s); last attempt for 2025.10.08 is noted in report ti ... show more Attempted brute force login to web vpn 27 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-07 19:57:51 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-04 18:39:24 (8 months ago)	Attempted brute force login to web vpn 81 time(s); last attempt for 2025.10.04 is noted in report ti ... show more Attempted brute force login to web vpn 81 time(s); last attempt for 2025.10.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-09-29 12:19:07 (8 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.09.29 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.09.29 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-04-09 06:45:20 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 104.207.45.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.45.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 09 02:45:16.959770 2025] [security2:error] [pid 1944633:tid 1944633] [client 104.207.45.202:47987] [client 104.207.45.202] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bella-vista.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bella-vista.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_YXfE9klQZgnDzrwc6QRwAAAAs"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 07:36:38 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 18:25:21 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 09:21:58 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 14:25:09 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a06:4880:c000::f1

🇺🇸 2604:a940:302:118:0:3f::

🇦🇺 2404:6800:4006:1002::125

🇻🇪 201.249.205.94

🇻🇪 200.75.136.149

🇲🇿 197.219.208.38

🇺🇦 194.44.140.65

🇭🇰 193.239.154.106

🇫🇷 185.177.72.69

🇺🇸 152.232.238.223

🇷🇺 78.37.9.103

🇺🇸 47.251.242.234

🇭🇰 47.82.66.94

🇬🇧 37.10.113.222

🇨🇳 36.135.100.48

🇺🇸 34.26.88.36

🇺🇸 34.20.240.128

🇺🇸 20.62.194.227

🇬🇧 213.166.84.38

🇺🇸 198.46.199.116