JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.124

104.207.35.124 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.124

Whois 104.207.35.124

IP Abuse Reports for 104.207.35.124:

This IP address has been reported a total of 138 times from 16 distinct sources. 104.207.35.124 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 agenciahypelab.com.br	2026-04-18 09:54:53 (1 month ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇪🇸 librebit	2026-03-27 02:13:08 (2 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-02-19 00:16:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 19:16:10.097377 2026] [security2:error] [pid 2652:tid 2652] [client 104.207.35.124:16307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vjrott.com"] [uri "/.env"] [unique_id "aZZWSjvjEYHtyt9-hThiQQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 14:05:59 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇩🇪 Mario Silber	2026-02-18 12:43:09 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.35.124 (US/United States/-)	SQL Injection
🇫🇷 tilellit.pro	2026-01-20 01:58:30 (4 months ago)	Fail2Ban banned 104.207.35.124 for security violations in jail wp-armour. Log: 2026/01/20 01:58:29 [ ... show more Fail2Ban banned 104.207.35.124 for security violations in jail wp-armour. Log: 2026/01/20 01:58:29 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.35.124 \| Target: wplogin" , client: 104.207.35.124, server: [REDACTED], request: "POST /wp-login.php HTTP/2.0", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
Anonymous	2025-12-22 13:56:12 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-12-08 18:15:13 (5 months ago)	botnet	DDoS Attack
Anonymous	2025-12-02 15:04:01 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-24 08:27:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:27:05.784473 2025] [security2:error] [pid 4506:tid 4506] [client 104.207.35.124:20155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.radtraininginc.com"] [uri "/.git/HEAD"] [unique_id "aSQW2Rx2GVgnFfA16XhVqQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 20:36:36 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-27 23:04:38 (7 months ago)	Attempted brute force login to web vpn 15 time(s); last attempt for 2025.10.27 is noted in report ti ... show more Attempted brute force login to web vpn 15 time(s); last attempt for 2025.10.27 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-21 22:43:25 (7 months ago)	Attempted brute force login to web vpn 16 time(s); last attempt for 2025.10.21 is noted in report ti ... show more Attempted brute force login to web vpn 16 time(s); last attempt for 2025.10.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-19 21:13:09 (7 months ago)	Attempted brute force login to web vpn 146 time(s); last attempt for 2025.10.19 is noted in report t ... show more Attempted brute force login to web vpn 146 time(s); last attempt for 2025.10.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-18 22:07:14 (7 months ago)	Attempted brute force login to web vpn 102 time(s); last attempt for 2025.10.18 is noted in report t ... show more Attempted brute force login to web vpn 102 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 47.253.149.245

🇩🇪 128.14.225.164

🇰🇷 59.24.133.197

🇬🇪 46.49.73.27

🇺🇸 34.58.115.216

🇶🇦 34.18.216.162

🇹🇷 31.206.66.93

🇻🇳 221.132.21.185

🇮🇳 202.141.65.5

🇺🇸 184.105.247.235

🇨🇳 180.153.236.2

🇵🇰 144.48.135.48

🇨🇳 117.177.102.79

🇨🇳 116.178.129.113

🇨🇳 106.117.108.47

🇮🇩 103.174.115.196

🇳🇱 89.248.163.43

🇧🇪 87.67.40.147

🇷🇴 80.94.92.182

🇺🇸 71.6.232.24