JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.15

104.207.35.15 was found in our database!

This IP was reported 86 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.15

Whois 104.207.35.15

IP Abuse Reports for 104.207.35.15:

This IP address has been reported a total of 86 times from 20 distinct sources. 104.207.35.15 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-16 14:06:24 (1 month ago)	Forum/form spam	Web Spam
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 fbarela	2026-01-25 04:00:58 (4 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-11-30 13:09:57 (6 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-26 06:51:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:51:52.129257 2025] [security2:error] [pid 5361:tid 5383] [client 104.207.35.15:50133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.idealcentralvac.com"] [uri "/.svn/wc.db"] [unique_id "aSajiA6mFNQyT6yLV4IQGAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2025-11-26 05:53:13 (6 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:31:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:31:09.030654 2025] [security2:error] [pid 13113:tid 13186] [client 104.207.35.15:59609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.linfoulk.org"] [uri "/.svn/wc.db"] [unique_id "aSaQnRhhwHzhmSuL6kjT8wAAAY0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:02:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:02:53.166124 2025] [security2:error] [pid 5070:tid 5070] [client 104.207.35.15:44871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.atlanticcitypartybuses.com"] [uri "/.git/HEAD"] [unique_id "aSZRvYmh9XUBwTedRBt02QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:08:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:08:30.803869 2025] [security2:error] [pid 22430:tid 22430] [client 104.207.35.15:49939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.handshadowpuppets.com"] [uri "/.git/HEAD"] [unique_id "aSUdrr5M_jLLsxZsH-QJwAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-24 15:59:43 (6 months ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:32:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:32:22.029384 2025] [security2:error] [pid 8471:tid 8471] [client 104.207.35.15:52097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.aantariaconstructions.com"] [uri "/.svn/wc.db"] [unique_id "aSQYFiFMkKdSSuaz-60MTQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:03:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:03:36.485665 2025] [security2:error] [pid 5957:tid 5957] [client 104.207.35.15:40103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jspd.com"] [uri "/.svn/wc.db"] [unique_id "aSQRWEYfBIvHPZi4Rxht4AAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:35:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:35:37.263917 2025] [security2:error] [pid 7947:tid 7947] [client 104.207.35.15:30583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.studioarts.net"] [uri "/.git/HEAD"] [unique_id "aSQKyYC-EU4pOnn7tbe5YwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:13:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:13:30.586607 2025] [security2:error] [pid 19766:tid 19766] [client 104.207.35.15:17125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.starktigers75.com"] [uri "/.git/HEAD"] [unique_id "aSQFmmo0fL5bHVqW6TJDBQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:42:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:42:33.748001 2025] [security2:error] [pid 24065:tid 24065] [client 104.207.35.15:56635] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.aufflammen.com"] [uri "/.svn/wc.db"] [unique_id "aSP-WScCW-I5AQaszTtF0wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 86 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 189.203.163.10

🇺🇸 184.154.206.137

🇨🇳 180.76.143.203

🇨🇳 115.198.201.128

🇰🇷 114.30.180.58

🇬🇭 102.223.92.101

🇺🇸 65.49.20.76

🇸🇬 52.237.80.79

🇰🇪 41.203.215.119

🇺🇸 40.124.186.101

🇯🇵 40.74.68.248

🇨🇳 39.130.240.253

🇺🇸 20.98.140.180

🇪🇸 5.182.83.231

🇮🇪 3.252.254.177

🇬🇧 212.227.125.15

🇦🇷 201.177.180.20

🇳🇱 176.65.139.43

🇨🇦 165.245.233.68

🇬🇧 193.163.125.84