JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.21

104.207.45.21 was found in our database!

This IP was reported 88 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.21

Whois 104.207.45.21

IP Abuse Reports for 104.207.45.21:

This IP address has been reported a total of 88 times from 19 distinct sources. 104.207.45.21 was first reported on June 22nd 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-23 12:17:17 (2 months ago)	104.207.45.21 - - [23/Mar/2026:13:17:17 +0100] "GET /product/profuel-vitamin-b-komplex-forte-180-tab ... show more 104.207.45.21 - - [23/Mar/2026:13:17:17 +0100] "GET /product/profuel-vitamin-b-komplex-forte-180-tabletten/ HTTP/1.1" 200 63256 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36" show less	Bad Web Bot
Anonymous	2026-03-19 22:13:07 (2 months ago)	Forum/form spam	Web Spam
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇬🇧 relianoid.com	2026-01-09 10:40:39 (4 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:12 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 09:50:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:50:23.686140 2025] [security2:error] [pid 13019:tid 13019] [client 104.207.45.21:36853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "winbayfire.com"] [uri "/.env"] [unique_id "aVJO3yYYtLNS6wtdwsdXXwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:47:18 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:47:12.779906 2025] [security2:error] [pid 16292:tid 16292] [client 104.207.45.21:33759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arriagarealestate.com"] [uri "/.svn/wc.db"] [unique_id "aVJAED8N-5cKJ32h-zkRdwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:29:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:29:02.474006 2025] [security2:error] [pid 29122:tid 29122] [client 104.207.45.21:34571] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "snapdragonworkshops.com"] [uri "/.svn/wc.db"] [unique_id "aVI7zhh0EWOcuG6q-aK-cQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:51:37 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:51:34.406217 2025] [security2:error] [pid 31518:tid 31518] [client 104.207.45.21:40159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "turtle-trap.com"] [uri "/.svn/wc.db"] [unique_id "aVII1h4oEbils5u7kFA6AAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇦🇺 MAGIC	2025-12-23 02:08:20 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-14 22:39:26 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-04 16:03:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.21 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 11:03:00.349341 2025] [security2:error] [pid 14641:tid 14641] [client 104.207.45.21:37215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hoofprints.us"] [uri "/.env"] [unique_id "aTGwtHhHfMySPjJtK_60VQAAADM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-02 13:12:21 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-10-18 09:06:52 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 88 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 203.154.158.195

🇦🇷 190.181.101.246

🇩🇪 141.11.187.21

🇰🇷 116.125.120.27

🇨🇳 114.234.101.12

🇳🇱 93.123.72.166

🇺🇸 205.210.31.89

🇹🇼 198.235.24.47

🇹🇿 196.43.74.176

🇺🇸 172.178.16.179

🇺🇸 154.217.253.190

🇺🇸 129.213.142.121

🇨🇳 115.56.238.174

🇺🇸 67.4.138.182

🇯🇵 45.252.188.23

🇳🇱 45.198.224.138

🇳🇱 45.148.10.151

🇮🇷 2.180.228.227

🇨🇳 180.76.243.197

🇺🇸 168.91.173.57