JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.222

104.207.45.222 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.222

Whois 104.207.45.222

IP Abuse Reports for 104.207.45.222:

This IP address has been reported a total of 133 times from 17 distinct sources. 104.207.45.222 was first reported on June 7th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-25 16:58:04 (3 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇸🇪 Juha Jurvanen	2026-05-13 12:14:24 (1 month ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
🇮🇹 VHosting	2026-02-18 22:11:37 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-18 00:48:23 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:48:18.909364 2026] [security2:error] [pid 19186:tid 19186] [client 104.207.45.222:50303] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulaperez.com"] [uri "/.env.local"] [unique_id "aZUMUoUd5oP5hps8eJVogwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-01 17:44:36 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-11-14 02:46:18 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-17 16:26:54 (8 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇵🇱 sefinek.net	2025-10-14 11:30:22 (8 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-10-11 08:20:07 (8 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.11 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 22:07:35 (8 months ago)	Attempted brute force login to web vpn 144 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 144 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-09 21:13:05 (8 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.09 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.09 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-09 12:47:11 (8 months ago)	GlobalProtect login attempts with user pfinnie.	VPN IP Brute-Force
🇺🇸 TPI-Abuse	2025-10-09 09:02:21 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 104.207.45.222 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 104.207.45.222 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 09 05:02:14.985226 2025] [security2:error] [pid 32766:tid 32766] [client 104.207.45.222:57501] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|192.64.150.13:443\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "192.64.150.13"] [uri "/"] [unique_id "aOd6FmfrYHTzXu9WaRadXgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-08 23:35:01 (8 months ago)	Attempted brute force login to web vpn 216 time(s); last attempt for 2025.10.08 is noted in report t ... show more Attempted brute force login to web vpn 216 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-07 20:41:37 (8 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.07 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.07 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.230

🇹🇼 198.235.24.102

🇺🇸 162.216.149.214

🇺🇸 138.113.23.170

🇺🇸 97.188.70.188

🇬🇧 78.153.140.251

🇺🇸 73.162.204.112

🇺🇸 48.217.233.215

🇯🇵 45.192.248.157

🇨🇳 39.104.18.33

🇬🇧 5.70.169.63

🇺🇸 216.239.38.223

🇫🇷 207.180.236.46

🇺🇸 205.210.31.43

🇳🇱 203.17.245.200

🇺🇸 147.185.132.105

🇩🇪 69.5.169.101

🇧🇪 34.140.85.75

🇨🇳 223.247.211.200

🇺🇸 198.46.241.125