JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.207

104.207.35.207 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.207

Whois 104.207.35.207

IP Abuse Reports for 104.207.35.207:

This IP address has been reported a total of 149 times from 18 distinct sources. 104.207.35.207 was first reported on June 6th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-11 01:43:23 (2 months ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-03-09 03:27:55 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-27.104.207.35.207.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-27.104.207.35.207.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 oncord	2026-02-13 01:31:43 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 08:44:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 03:44:53.304711 2026] [security2:error] [pid 4350:tid 4350] [client 104.207.35.207:62555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aschmidtconsulting.com"] [uri "/wp/.git/config"] [unique_id "aY2TBbYTzhKGGsKEHwvMiwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ANTI SCANNER	2026-02-10 15:21:38 (3 months ago)	Scanner : /v2/.git/config	Web Spam
🇺🇸 TPI-Abuse	2026-02-10 06:30:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:30:40.506043 2026] [security2:error] [pid 19237:tid 19237] [client 104.207.35.207:63409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ilandman.com"] [uri "/app/.env"] [unique_id "aYrQkOEV5ook7aRRu-VcsQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:30:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:30:28.618211 2026] [security2:error] [pid 13901:tid 13901] [client 104.207.35.207:15549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icro.net"] [uri "/config/.env"] [unique_id "aYq0ZBWs7y-jLoiE-QDrTAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-10 02:26:10 (3 months ago)	Blocking for trying to access an exploit file: /app/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-10 00:19:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:19:33.452163 2026] [security2:error] [pid 937968:tid 937972] [client 104.207.35.207:24097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrfamilyassociation.com"] [uri "/backup/.git/config"] [unique_id "aYp5lawhT4RZ6FzCjF2oGQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:07:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.207 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:07:01.823011 2026] [security2:error] [pid 6049:tid 6049] [client 104.207.35.207:36837] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathynash.com"] [uri "/wp/.git/config"] [unique_id "aYpahfxAb09W7NPWpwtmDQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-08 02:20:01 (3 months ago)		Web Spam
🇦🇺 oncord	2026-02-06 16:50:09 (4 months ago)	Form spam	Web Spam
Anonymous	2025-12-14 08:24:18 (5 months ago)	botnet	DDoS Attack
🇨🇭 backslash	2025-12-10 15:00:12 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c2e::122

🇻🇳 160.30.113.59

🇩🇪 155.117.127.153

🇨🇳 115.227.26.85

🇱🇹 77.90.185.80

🇳🇱 213.177.179.162

🇮🇳 135.235.138.43

🇬🇧 89.37.172.139

🇹🇼 49.216.121.11

🇳🇱 45.148.10.157

🇺🇸 45.131.194.85

🇩🇪 213.209.159.35

🇮🇩 163.7.9.55

🇧🇬 78.128.114.46

🇳🇱 31.56.209.34

🇮🇷 2.180.164.95

🇺🇸 172.237.150.127

🇺🇸 137.184.55.22

🇺🇸 47.85.47.96

🇯🇵 23.81.44.23