JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.39

104.207.45.39 was found in our database!

This IP was reported 148 times. Confidence of Abuse is 18%: ?

18%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.39

Whois 104.207.45.39

IP Abuse Reports for 104.207.45.39:

This IP address has been reported a total of 148 times from 20 distinct sources. 104.207.45.39 was first reported on June 22nd 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 Esko	2026-06-12 18:12:41 (1 week ago)	104.207.45.39 - - [12/Jun/2026:18:12:41 +0000] "GET /news-sitemap.xml HTTP/1.1" 488 0 "-" "Mozilla/5 ... show more 104.207.45.39 - - [12/Jun/2026:18:12:41 +0000] "GET /news-sitemap.xml HTTP/1.1" 488 0 "-" "Mozilla/5.0" show less	Web App Attack
🇩🇪 Admins@FBN	2026-05-13 04:11:06 (1 month ago)	Threat Host blocked...	Hacking Web Spam Email Spam
Anonymous	2026-05-12 17:37:57 (1 month ago)	104.207.45.39 - - [13/May/2026:01:37:56 +0800] "GET http://folical.cn/.git/HEAD HTTP/1.1" 301 236 "- ... show more 104.207.45.39 - - [13/May/2026:01:37:56 +0800] "GET http://folical.cn/.git/HEAD HTTP/1.1" 301 236 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Mobile/15E148 Safari/604.1" ... show less	Bad Web Bot Web App Attack
🇨🇭 4server	2026-05-12 14:45:45 (1 month ago)	[TueMay1216:45:42.7893392026][security2:error][pid2201084:tid2201215][client104.207.45.39:0]ModSecur ... show more [TueMay1216:45:42.7893392026][security2:error][pid2201084:tid2201215][client104.207.45.39:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".svn\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"buonviaggio.ch\"][uri\"/.svn/wc.db\"][unique_id\"agM9Frk7HOJUZ1oABDW1mAAAANM\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:59:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:59:09.547794 2026] [security2:error] [pid 6457:tid 6457] [client 104.207.45.39:62589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "learningbyshipping.com"] [uri "/.env.save"] [unique_id "aY8uLTi_C9qx5-qJfvOPtwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:42:08 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:42:02.662243 2026] [security2:error] [pid 30719:tid 30800] [client 104.207.45.39:19647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lead-sleds.com"] [uri "/admin/.git/config"] [unique_id "aY8qKhURnomY53g_cuXnGQAAAJU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 13:02:14 (4 months ago)	Blocking for trying to access an exploit file: /api/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-13 12:52:25 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:52:17.779530 2026] [security2:error] [pid 18915:tid 18915] [client 104.207.45.39:33779] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midnight-tech.com"] [uri "/admin/.git/config"] [unique_id "aY8egd6nTMpOOjz3odDYGgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:56:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:56:42.308059 2026] [security2:error] [pid 2285871:tid 2285871] [client 104.207.45.39:19119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "masterpiecemorgans.com"] [uri "/.env.production"] [unique_id "aY6vCm3Piq_pRKXoCA-tMAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:13:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:13:15.414380 2026] [security2:error] [pid 21900:tid 21960] [client 104.207.45.39:47159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maroontribe.com"] [uri "/wp/.git/config"] [unique_id "aY6k27GzGAitYrNBn181KAAAAYM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:16:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:16:21.827355 2026] [security2:error] [pid 24134:tid 24134] [client 104.207.45.39:20325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maleein.com"] [uri "/config/.env"] [unique_id "aY6JdRa_l3X3NGm7HliE3gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:13:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:13:36.199625 2026] [security2:error] [pid 1718860:tid 1718880] [client 104.207.45.39:22847] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magazineofwallstreet.com"] [uri "/.env"] [unique_id "aY56wN361X8i7nDm3g1EGwAAAI4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Carsten	2026-02-13 00:51:22 (4 months ago)	GET [backup/.git/config]	Port Scan
🇺🇸 TPI-Abuse	2026-02-12 17:59:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:59:10.759229 2026] [security2:error] [pid 18696:tid 18696] [client 104.207.45.39:13079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "donnysimonton.com"] [uri "/.env"] [unique_id "aY4U7kljS0L39SUcBGdnFAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-28 21:35:52 (6 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 148 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 2406:da19:776:6e02:97a5:d92:1a9e:afd2

🇺🇸 167.71.191.246

🇹🇷 152.233.53.79

🇮🇩 103.136.58.121

🇺🇸 64.23.205.149

🇰🇷 211.253.31.30

🇮🇳 185.100.212.141

🇮🇩 110.35.80.116

🇮🇳 92.4.76.12

🇷🇴 80.94.92.182

🇹🇷 152.233.53.8

🇨🇦 85.217.149.17

🇩🇪 69.5.169.13

🇺🇸 65.49.1.69

🇮🇳 182.19.35.57

🇻🇳 125.212.235.194

🇨🇳 117.175.51.134

🇯🇵 103.163.220.28

🇨🇦 85.217.149.51

🇱🇹 81.30.98.144