JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.139

104.207.35.139 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.139

Whois 104.207.35.139

IP Abuse Reports for 104.207.35.139:

This IP address has been reported a total of 146 times from 15 distinct sources. 104.207.35.139 was first reported on June 19th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-04 21:06:02 (1 week ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-04 20:05:02 (1 week ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-03-02 23:01:13 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-02	Web App Attack SSH Hacking
🇦🇺 MAGIC	2026-01-19 02:07:39 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 MAGIC	2025-12-09 00:04:46 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 10:36:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:36:15.683115 2025] [security2:error] [pid 7770:tid 7770] [client 104.207.35.139:29397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bioemperor.com"] [uri "/.env"] [unique_id "aSbYH9RwdK5lU71Ia4f_JgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:15:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:15:14.505700 2025] [security2:error] [pid 2509:tid 2509] [client 104.207.35.139:17725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.grayowl.com"] [uri "/.env"] [unique_id "aSapAuK37-VyVRlzhNzcsAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:10:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:10:21.606505 2025] [security2:error] [pid 1151:tid 1151] [client 104.207.35.139:15849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.partiklezoo.com"] [uri "/.git/HEAD"] [unique_id "aSaZzaZQxT8y9S5OtK4PPQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:04:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:04:06.652855 2025] [security2:error] [pid 31381:tid 31381] [client 104.207.35.139:16563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.333w88.com"] [uri "/.git/HEAD"] [unique_id "aSZgFsHh70m74Getf3_CnAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:59:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:59:34.723334 2025] [security2:error] [pid 16223:tid 16223] [client 104.207.35.139:17207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kingdomofgodbooks.org.halotoys.com"] [uri "/.git/HEAD"] [unique_id "aSZQ9l7PX4hQ7-TS-r-bTwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:36:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:36:09.376842 2025] [security2:error] [pid 24329:tid 24329] [client 104.207.35.139:33991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.wedemandavote.com"] [uri "/.git/HEAD"] [unique_id "aSZLebZpRTxjD-WTGq7fUQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:48:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:47:59.336724 2025] [security2:error] [pid 18411:tid 18411] [client 104.207.35.139:49357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.jperverseincentives.org"] [uri "/.env"] [unique_id "aSVRH4dT62QImi_QtPAzwAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:20:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:20:30.062757 2025] [security2:error] [pid 21166:tid 21166] [client 104.207.35.139:38075] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.greatwesternfirearms.com"] [uri "/.env"] [unique_id "aSVKrs7uWf7TQFt035tKfwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:57:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:58.154127 2025] [security2:error] [pid 6027:tid 6027] [client 104.207.35.139:17675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.trigonom.com"] [uri "/.svn/wc.db"] [unique_id "aSU3Gn01RZs0sF_pUrJo_AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:39:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:39:48.527809 2025] [security2:error] [pid 20976:tid 20976] [client 104.207.35.139:46527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.alltrashremoval.com"] [uri "/.svn/wc.db"] [unique_id "aSUzFPtCya0kIaPSu5djUgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 91.92.40.19

🇸🇬 43.156.61.33

🇮🇪 207.254.22.207

🇺🇸 205.210.31.85

🇺🇸 172.253.15.213

🇨🇳 123.145.1.171

🇮🇩 103.187.165.26

🇰🇷 101.36.114.198

🇩🇪 85.215.117.93

🇫🇷 62.210.207.172

🇸🇬 47.79.201.84

🇺🇸 44.223.222.130

🇨🇳 123.160.173.208

🇻🇳 118.70.182.193

🇺🇸 107.150.110.170

🇨🇦 96.30.129.165

🇷🇴 93.114.194.159

🇳🇱 91.92.241.35

🇳🇱 85.121.126.149

🇰🇷 58.229.141.26