JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.45.5

104.207.45.5 was found in our database!

This IP was reported 109 times. Confidence of Abuse is 18%: ?

18%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.45.5

Whois 104.207.45.5

IP Abuse Reports for 104.207.45.5:

This IP address has been reported a total of 109 times from 20 distinct sources. 104.207.45.5 was first reported on June 7th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-04 05:05:44 (2 days ago)	Scanning/Probing (34)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-06-01 02:16:59 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-05-28 22:06:31 (1 week ago)	Scanning/Probing (34)	Brute-Force Web App Attack
Anonymous	2026-04-12 05:44:09 (1 month ago)	Attempt to scan vulnerabilities	Hacking
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 mnsf	2026-02-13 14:06:20 (3 months ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:34:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:34:35.708706 2026] [security2:error] [pid 819:tid 819] [client 104.207.45.5:9693] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mehlerproperties.com"] [uri "/api/.env"] [unique_id "aY7UC2Aq5cz2fuooo8pw5wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:15:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:15:05.511003 2026] [security2:error] [pid 15497:tid 15497] [client 104.207.45.5:64781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matrixpercussiontrio.com"] [uri "/test/.git/config"] [unique_id "aY6zWYUwHl5XIjsL17qO8wAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:32:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:31:54.135607 2026] [security2:error] [pid 12740:tid 12740] [client 104.207.45.5:18491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marxistphilosophy.org"] [uri "/app/.env"] [unique_id "aY6pOsrn3B9soAIh-xyTbQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 04:17:45 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-02-13 03:47:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:47:31.363606 2026] [security2:error] [pid 21955:tid 21955] [client 104.207.45.5:49941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marjorierosenberg.com"] [uri "/v2/.git/config"] [unique_id "aY6e0wiAf-j0-HVbxi77FQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:23:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:23:32.850111 2026] [security2:error] [pid 12612:tid 12612] [client 104.207.45.5:64705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mardensmith.com"] [uri "/.git/config"] [unique_id "aY6ZNMEqR15wGh5zZ7eQ2wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:53:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:53:43.426716 2026] [security2:error] [pid 5737:tid 5737] [client 104.207.45.5:11325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manoli.cl"] [uri "/dev/.git/config"] [unique_id "aY6SN10kCaCDlJKrnKc1OQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:58:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:58:38.505671 2026] [security2:error] [pid 9038:tid 9038] [client 104.207.45.5:56847] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "makaelamakes.org"] [uri "/.env.staging"] [unique_id "aY6FTiBn2ON89ollsWAZjAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:30:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.45.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:30:53.013732 2026] [security2:error] [pid 1774691:tid 1774707] [client 104.207.45.5:30901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magusincognito.com"] [uri "/v2/.git/config"] [unique_id "aY5-zXVNotX2_xvF9oFUTwAAAQ4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 109 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.93.89.167

🇺🇸 136.117.38.77

🇮🇳 123.253.162.254

🇺🇿 84.54.73.33

🇮🇹 81.57.15.243

🇸🇬 68.183.178.130

🇮🇪 54.78.174.245

🇺🇦 46.35.247.46

🇷🇴 2.57.121.112

🇫🇮 147.185.133.225

🇫🇮 147.185.133.17

🇸🇬 128.199.231.249

🇳🇱 91.92.42.147

🇸🇬 52.237.80.79

🇧🇷 45.233.218.160

🇮🇱 2620:171:6a:f001:9999::48

🇺🇿 198.163.195.87

🇩🇪 193.36.84.88

🇬🇧 188.240.59.30

🇺🇸 178.156.238.15