JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.122

104.207.35.122 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.122

Whois 104.207.35.122

IP Abuse Reports for 104.207.35.122:

This IP address has been reported a total of 129 times from 19 distinct sources. 104.207.35.122 was first reported on July 3rd 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-17 05:36:42 (3 days ago)	Web App Attack	Web App Attack
Anonymous	2026-05-17 00:01:38 (1 month ago)	Banned by SPAMHAUS ASN-DROP list (ASN: 200373)	DDoS Attack Hacking Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-02-18 22:11:32 (4 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇪🇸 10dencehispahard SL	2026-01-26 07:23:41 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇱🇻 garmtech.com	2026-01-23 10:32:34 (4 months ago)	IM360 WAF: Attempt to upload malware	Hacking
Anonymous	2025-12-22 14:52:31 (5 months ago)	Attempted brute force login to web vpn 127 time(s); last attempt for 2025.12.22 is noted in report t ... show more Attempted brute force login to web vpn 127 time(s); last attempt for 2025.12.22 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-12-18 18:20:13 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 09:38:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:38:07.046844 2025] [security2:error] [pid 5360:tid 5360] [client 104.207.35.122:39385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.netcastcorp.com"] [uri "/.svn/wc.db"] [unique_id "aSbKfwTwm4mB6PAQ4iqehQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:50:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:50:10.312951 2025] [security2:error] [pid 17945:tid 17945] [client 104.207.35.122:28989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.iconconstructors.com"] [uri "/.env"] [unique_id "aSaVEqmOFwCQk-3FSPUBLwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-11-26 05:40:07 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 01:05:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:05:08.744238 2025] [security2:error] [pid 5859:tid 5859] [client 104.207.35.122:24023] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.runnercomics.com"] [uri "/.svn/wc.db"] [unique_id "aSZSRIYxPblSYf7cUoBHPAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:10:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:10:13.949160 2025] [security2:error] [pid 16432:tid 16432] [client 104.207.35.122:30603] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.xunhung.tonylai.com"] [uri "/.git/HEAD"] [unique_id "aSU6NZbgjrTzft0u3VnqVgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:40:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.122 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:40:17.339461 2025] [security2:error] [pid 10695:tid 10799] [client 104.207.35.122:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.magicdiscovery.com"] [uri "/.svn/wc.db"] [unique_id "aSP90SFZz-lT68YT4kPTTgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-07 08:56:25 (8 months ago)	Attempted brute force login to web vpn 27 time(s); last attempt for 2025.10.07 is noted in report ti ... show more Attempted brute force login to web vpn 27 time(s); last attempt for 2025.10.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-05 17:06:43 (8 months ago)	Attempted brute force login to web vpn 27 time(s); last attempt for 2025.10.05 is noted in report ti ... show more Attempted brute force login to web vpn 27 time(s); last attempt for 2025.10.05 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:1:fb5::21e

🇩🇪 185.216.214.42

🇸🇬 173.239.196.175

🇮🇳 134.209.146.162

🇻🇳 113.190.150.58

🇷🇺 92.36.18.23

🇨🇦 85.217.149.6

🇺🇸 64.62.197.29

🇧🇷 45.231.60.125

🇷🇴 2.57.122.177

🇺🇸 216.25.89.122

🇧🇷 205.210.31.210

🇧🇷 205.210.31.141

🇭🇺 193.68.57.43

🇨🇱 190.196.92.80

🇨🇳 119.96.193.72

🇯🇴 109.107.227.172

🇰🇪 102.213.48.226

🇧🇴 181.115.143.68

🇵🇭 136.158.66.159