JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.16

104.207.35.16 was found in our database!

This IP was reported 86 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.16

Whois 104.207.35.16

IP Abuse Reports for 104.207.35.16:

This IP address has been reported a total of 86 times from 15 distinct sources. 104.207.35.16 was first reported on June 28th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-13 12:44:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:44:45.303584 2026] [security2:error] [pid 9217:tid 9217] [client 104.207.35.16:38133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microscopicpablo.com"] [uri "/backup/.git/config"] [unique_id "aY8cvYHPmdeOfXQaHMSrMQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 09:16:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:16:43.239259 2026] [security2:error] [pid 18811:tid 18811] [client 104.207.35.16:29305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mexicanfriedicecreammix.com"] [uri "/app/.git/config"] [unique_id "aY7r-8DIV6nDFZ_NtdfX5AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-02-13 08:00:59 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:04:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:04:14.375659 2026] [security2:error] [pid 25311:tid 25311] [client 104.207.35.16:18691] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medics-group.com"] [uri "/site/.git/config"] [unique_id "aY7M7kaLGUvtYne4sK57WAAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:05:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:05:32.925201 2026] [security2:error] [pid 2872:tid 2872] [client 104.207.35.16:63929] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matchsticbranding.agency"] [uri "/new/.git/config"] [unique_id "aY6xHJ9KqcO17EA_p58qXAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:41:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:41:29.512614 2026] [security2:error] [pid 11197:tid 11302] [client 104.207.35.16:30939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marinkovich.org"] [uri "/admin/.env"] [unique_id "aY6daaO58UA0nNnVfPecsgAAAhE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:22:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:22:51.468653 2026] [security2:error] [pid 17893:tid 17893] [client 104.207.35.16:59533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mardensmith.com"] [uri "/.env.production"] [unique_id "aY6ZC2Vy8YvOQRYAUkOoxwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 03:18:25 (3 months ago)	Blocking for trying to access an exploit file: /dev/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-13 01:42:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:42:28.964339 2026] [security2:error] [pid 7079:tid 7079] [client 104.207.35.16:24051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mailperform.com"] [uri "/dev/.git/config"] [unique_id "aY6BhHgokNjd2qCRIhOfvAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:13:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:13:41.528238 2026] [security2:error] [pid 13489:tid 13489] [client 104.207.35.16:35781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magazinesubscriptionsusa.com"] [uri "/.env.production"] [unique_id "aY56xbI4DXWb9arcw3wHfAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:55:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:55:40.428822 2026] [security2:error] [pid 1902358:tid 1902358] [client 104.207.35.16:31289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gemexpressions.com"] [uri "/.git/config"] [unique_id "aY4wPAkTjIbrpXVlxelvagAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 15:56:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:56:48.972456 2026] [security2:error] [pid 26644:tid 26644] [client 104.207.35.16:48227] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deweysearch.com"] [uri "/.git/config"] [unique_id "aY34QHP2ZbeL97V-bRHSCwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-28 06:50:57 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇦🇺 oncord	2025-12-14 08:06:01 (5 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-28 20:07:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 15:07:14.466143 2025] [security2:error] [pid 23948:tid 23948] [client 104.207.35.16:57329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aarce.me"] [uri "/.env.backup"] [unique_id "aSoA8pIHSjg6fv__ZkFHYgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 86 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇰 185.226.0.83

🇧🇷 179.126.0.200

🇩🇪 161.35.65.86

🇬🇧 143.110.165.73

🇨🇳 112.86.225.48

🇧🇩 103.163.117.83

🇺🇸 54.197.35.199

🇺🇸 52.45.92.83

🇫🇷 51.210.79.90

🇮🇳 223.191.66.116

🇬🇧 217.146.80.102

🇮🇳 122.168.194.41

🇫🇷 95.111.224.232

🇱🇹 81.30.98.142

🇺🇸 157.230.15.107

🇷🇴 143.20.185.207

🇨🇳 101.132.180.130

🇺🇸 100.29.192.88

🇰🇿 95.58.255.251

🇧🇬 79.124.56.230