JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.171

104.207.35.171 was found in our database!

This IP was reported 158 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.171

Whois 104.207.35.171

IP Abuse Reports for 104.207.35.171:

This IP address has been reported a total of 158 times from 21 distinct sources. 104.207.35.171 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-03 14:58:47 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇪🇸 librebit	2026-04-28 10:37:04 (1 month ago)	Brute force	Brute-Force
🇩🇪 stinpriza	2026-03-30 07:54:13 (2 months ago)	Web App Attack	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-24 06:44:50 (2 months ago)	Forum/form spam	Web Spam
🇳🇱 homeshowdomain.nl	2026-03-02 22:59:04 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-02	Web App Attack SSH Hacking
🇦🇺 MAGIC	2026-01-13 00:01:45 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 fbarela	2025-12-29 03:00:16 (5 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇦🇺 MAGIC	2025-12-20 01:13:18 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-07 14:33:12 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-02 20:47:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 15:47:33.040473 2025] [security2:error] [pid 4055:tid 4055] [client 104.207.35.171:22135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "premierveterinarysurgery.com"] [uri "/.git/HEAD"] [unique_id "aS9QZWLgqfkCTG58mPnOEwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 18:34:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 13:34:26.549033 2025] [security2:error] [pid 16233:tid 16233] [client 104.207.35.171:33701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weddingcakebags.com"] [uri "/.env"] [unique_id "aS8xMosBBmPyq1Uj1f8-iAAAACs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 12:27:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:27:08.301437 2025] [security2:error] [pid 26976:tid 26976] [client 104.207.35.171:42697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lazymanvegan.com"] [uri "/.env"] [unique_id "aS7bHJHg6IqEAbm0YdpulwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:46:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:46:02.629038 2025] [security2:error] [pid 2021445:tid 2021445] [client 104.207.35.171:49485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "depcare.com"] [uri "/.env"] [unique_id "aS6ZOmhSG5E2OjGLMoJkYwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:18:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.171 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:18:23.034343 2025] [security2:error] [pid 6033:tid 6033] [client 104.207.35.171:16167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hazeltrane.com"] [uri "/.env"] [unique_id "aS52n1eAlPhHRQOMhaKZ1wAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 158 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 139.170.73.4

🇺🇸 129.153.7.7

🇨🇳 124.89.89.155

🇳🇱 45.148.10.151

🇳🇱 45.148.10.141

🇩🇪 213.209.159.231

🇦🇷 186.56.11.2

🇨🇳 175.44.132.18

🇻🇳 171.244.143.209

🇿🇦 164.160.89.58

🇺🇸 150.107.38.247

🇺🇸 147.185.132.251

🇺🇸 140.235.168.39

🇧🇷 129.121.42.236

🇮🇳 103.176.16.21

🇺🇸 57.151.98.114

🇺🇸 34.186.233.229

🇧🇪 34.34.171.65

🇮🇷 5.237.92.148

🇵🇹 185.124.124.147