JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.116

104.207.35.116 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.116

Whois 104.207.35.116

IP Abuse Reports for 104.207.35.116:

This IP address has been reported a total of 140 times from 12 distinct sources. 104.207.35.116 was first reported on June 5th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 04:33:51 (1 day ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-06-20 05:02:10 (4 days ago)	Web App Attack	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 MAGIC	2026-03-13 03:23:48 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-13 13:49:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:49:06.634563 2026] [security2:error] [pid 28103:tid 28103] [client 104.207.35.116:15259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindtoken.app"] [uri "/wp/.git/config"] [unique_id "aY8r0pdHfN_o1o-gwZdcEAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:07:57 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:07:49.874242 2026] [security2:error] [pid 23077:tid 23077] [client 104.207.35.116:50933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mikeberro.com"] [uri "/.env"] [unique_id "aY8iJZ-wt112dnklohzFsAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 13:03:06 (4 months ago)	Blocking for trying to access an exploit file: /new/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-13 12:41:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:40:54.549447 2026] [security2:error] [pid 1769:tid 1769] [client 104.207.35.116:62743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microbikinitop.com"] [uri "/.git/config"] [unique_id "aY8b1vPIhk2hOgp6hloajQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:36:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:36:18.324407 2026] [security2:error] [pid 9393:tid 9393] [client 104.207.35.116:45455] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marijuanajoint.com"] [uri "/.env.staging"] [unique_id "aY6cMoLKSzor6rIah-pLywAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:42:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:42:32.436681 2026] [security2:error] [pid 3348:tid 3377] [client 104.207.35.116:64231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mailporte.com"] [uri "/admin/.git/config"] [unique_id "aY6BiJNWmeNIOc4ofldk1gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:38:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:38:32.339496 2026] [security2:error] [pid 13939:tid 13939] [client 104.207.35.116:12681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deweysearch.com"] [uri "/.env"] [unique_id "aY4QGFOO9WS79AIr0hc4hQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:17:07 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:17:00.531429 2026] [security2:error] [pid 1436659:tid 1436659] [client 104.207.35.116:48687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dannyvanryswyk.com"] [uri "/.env"] [unique_id "aY4LDOQux4o29XlbU77lqAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:37:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:37:18.220807 2026] [security2:error] [pid 24063:tid 24063] [client 104.207.35.116:53999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "easttnpros.com"] [uri "/.git/config"] [unique_id "aY4BvkGnwFg-mvYkqaCr9wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:26:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:25:53.837447 2026] [security2:error] [pid 24930:tid 24930] [client 104.207.35.116:62723] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyoneal.com"] [uri "/api/.git/config"] [unique_id "aY0QAWpOnEzByXn98nQ92gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-02-11 20:18:56 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.191

🇫🇮 147.185.133.86

🇩🇪 139.162.164.127

🇺🇸 20.29.58.2

🇵🇱 195.116.145.127

🇺🇸 172.253.8.156

🇳🇬 152.32.142.138

🇮🇳 144.16.144.93

🇳🇴 95.214.100.190

🇺🇸 71.6.240.106

🇦🇺 45.132.225.143

🇬🇧 35.203.210.156

🇰🇷 1.227.228.131

🇧🇷 207.248.16.72

🇹🇼 198.235.24.111

🇺🇸 173.31.10.3

🇲🇦 154.146.240.123

🇺🇸 147.185.132.67

🇨🇳 115.191.9.205

🇻🇳 103.1.210.25