JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.219

104.207.35.219 was found in our database!

This IP was reported 171 times. Confidence of Abuse is 21%: ?

21%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.219

Whois 104.207.35.219

IP Abuse Reports for 104.207.35.219:

This IP address has been reported a total of 171 times from 26 distinct sources. 104.207.35.219 was first reported on June 11th 2024, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-19 12:48:54 (6 days ago)	Brute force	Brute-Force
🇫🇮 as211431.net	2026-05-26 05:52:12 (4 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /index.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.2 Safari/605.1.15 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-16 19:15:21 (1 month ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-08 22:54:03 (1 month ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 Savvii	2026-05-07 03:49:34 (1 month ago)	20 attempts against mh-misbehave-ban on ozone	Brute-Force Bad Web Bot Web App Attack
🇨🇦 TechnoSolutions CL	2026-05-06 16:00:05 (1 month ago)	104.207.35.219 - - [06/May/2026:16:00:04 +0000] "GET http://olo.legacy.azimutpos.com/wp-json/gravity ... show more 104.207.35.219 - - [06/May/2026:16:00:04 +0000] "GET http://olo.legacy.azimutpos.com/wp-json/gravitysmtp/v1/tests/mock-data?page=gravitysmtp-settings HTTP/1.1" 301 162 "-" "curl/8.7.1" ... show less	Hacking Brute-Force Web App Attack
Anonymous	2026-03-21 07:16:31 (3 months ago)	Forum/form spam	Web Spam
🇫🇮 as211431.net	2026-03-19 13:59:13 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 oncord	2026-03-03 05:51:18 (3 months ago)	Form spam	Web Spam
🇩🇪 DocNetzwerk	2026-02-15 12:26:22 (4 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.35.219 (US/United States/-)	SQL Injection
🇩🇪 Mario Silber	2026-02-15 12:07:39 (4 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.35.219 (US/United States/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 11:35:23 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:35:16.606275 2026] [security2:error] [pid 12801:tid 12801] [client 104.207.35.219:22889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "senji.me"] [uri "/wp/.git/config"] [unique_id "aZGvdHb44kIjrrYJR7fExwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:57:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:57:29.374010 2026] [security2:error] [pid 17289:tid 17289] [client 104.207.35.219:64893] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "osmanbozkurt.com"] [uri "/.env.production"] [unique_id "aZGmmcyLr05TqKQpmDJIOAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 07:04:58 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 02:04:52.194203 2026] [security2:error] [pid 21802:tid 21802] [client 104.207.35.219:59801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psychicangelreader.com"] [uri "/test/.git/config"] [unique_id "aZFwFLuSBhPDkz0AG98gDQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:14:28 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:14:24.005265 2026] [security2:error] [pid 25992:tid 25992] [client 104.207.35.219:47025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schunagroup.com"] [uri "/frontend/.env"] [unique_id "aZFkQK0Tfnxwy1Cz6FsFZQAAACU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 171 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.216.164

🇺🇸 162.216.150.107

🇨🇳 120.76.240.4

🇨🇿 77.75.78.170

🇨🇳 220.196.191.58

🇳🇱 176.65.132.24

🇨🇳 123.158.61.127

🇨🇳 116.172.251.29

🇺🇸 96.78.175.41

🇳🇱 91.92.40.36

🇬🇧 87.236.176.241

🇫🇷 51.68.107.149

🇮🇩 36.66.16.233

🇸🇬 206.189.39.63

🇺🇸 195.184.76.106

🇨🇳 182.244.0.150

🇮🇩 103.78.104.30

🇳🇱 45.148.10.239

🇸🇬 8.219.8.101

🇮🇳 4.240.96.30