JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.213

104.207.45.213 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.213

Whois 104.207.45.213

IP Abuse Reports for 104.207.45.213:

This IP address has been reported a total of 143 times from 17 distinct sources. 104.207.45.213 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-05-16 22:18:49 (1 month ago)	104.207.45.213 - - [17/May/2026:00:18:48 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 104.207.45.213 - - [17/May/2026:00:18:48 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" show less	Hacking Web App Attack
🇨🇭 ALPHANET	2025-12-27 22:46:36 (5 months ago)	web exploits	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 21:48:30 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 16:48:24.403812 2025] [security2:error] [pid 596479:tid 596486] [client 104.207.45.213:27875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "flapjacktoys.com"] [uri "/.svn/wc.db"] [unique_id "aVBUKHUqdCJsxqa21mupmAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 16:58:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 11:58:05.503055 2025] [security2:error] [pid 7087:tid 7087] [client 104.207.45.213:48947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "airdeluxemusic.com"] [uri "/.env"] [unique_id "aVAQHc3gobGNuh3aiD6sNwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Thaliruth	2025-12-26 16:19:03 (5 months ago)	default:80 104.207.45.213 - - [26/Dec/2025:17:19:02 +0100] "GET /.aws/credentials HTTP/1.0" 404 433 ... show more default:80 104.207.45.213 - - [26/Dec/2025:17:19:02 +0100] "GET /.aws/credentials HTTP/1.0" 404 433 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" 104.207.45.213 - - [26/Dec/2025:17:19:02 +0100] "GET /.aws/credentials HTTP/1.1" 404 269 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
Anonymous	2025-12-11 18:54:37 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 21:50:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 16:50:20.094060 2025] [security2:error] [pid 9928:tid 9928] [client 104.207.45.213:31409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "genevainvestors.com"] [uri "/.git/HEAD"] [unique_id "aSjHnHm6P-UfyQkEB2xRmAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:56:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:55:53.648019 2025] [security2:error] [pid 29767:tid 29767] [client 104.207.45.213:29641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.concentricsteel.com"] [uri "/.git/HEAD"] [unique_id "aSQBeWMThmbPR-7VcVUGtQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:34:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:34:16.609436 2025] [security2:error] [pid 1305:tid 1305] [client 104.207.45.213:43679] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.nessmonsters.com"] [uri "/.git/HEAD"] [unique_id "aSPuWEDTaonjcnSDUBkquwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:10:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:10:01.605559 2025] [security2:error] [pid 12144:tid 12144] [client 104.207.45.213:18653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wordpress.americanacademyofteachersofsinging.org"] [uri "/.git/HEAD"] [unique_id "aSPoqQ6L-_VZSC2C4uWz6gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:54:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:54:01.800704 2025] [security2:error] [pid 27755:tid 27755] [client 104.207.45.213:58099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.mitchellamazing.com"] [uri "/.git/HEAD"] [unique_id "aSPk6YsfKzVxLRZip4YgDAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:32:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:32:44.303184 2025] [security2:error] [pid 466:tid 466] [client 104.207.45.213:28559] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.spiralingmedia.com"] [uri "/.env"] [unique_id "aSPf7JOSJ3JK4xy4QqoN8AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:04:04 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-11-13 23:44:26 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-17 19:06:15 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 150.107.38.21

🇬🇧 107.181.154.136

🇺🇸 64.62.156.216

🇸🇬 43.134.27.142

🇷🇺 213.180.203.128

🇰🇿 193.31.200.85

🇨🇦 173.34.148.189

🇨🇱 104.239.44.214

🇳🇱 91.92.40.8

🇩🇪 85.214.180.225

🇷🇴 80.94.92.168

🇳🇱 77.91.71.12

🇰🇷 59.21.37.60

🇨🇳 14.29.201.23

🇨🇦 4.204.204.10

🇧🇷 191.183.136.228

🇮🇹 185.15.170.244

🇫🇷 176.183.121.46

🇵🇭 154.18.197.35

🇻🇳 125.235.229.205