JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.225

104.207.35.225 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.225

Whois 104.207.35.225

IP Abuse Reports for 104.207.35.225:

This IP address has been reported a total of 151 times from 20 distinct sources. 104.207.35.225 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-03-29 13:40:49 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.35.225 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.35.225 (US/United States/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-03-25 18:19:13 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.35.225 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.35.225 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-03-23 09:18:32 (2 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 TPI-Abuse	2026-02-15 11:26:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:26:27.734228 2026] [security2:error] [pid 28962:tid 28962] [client 104.207.35.225:15553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thewaywework.com"] [uri "/admin/.env"] [unique_id "aZGtY1KHsHt7jv_Q3A1DGwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 07:05:45 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:51:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:51:25.888401 2026] [security2:error] [pid 7336:tid 7336] [client 104.207.35.225:56563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "suedblick.com"] [uri "/.env"] [unique_id "aZFQzR8U8LBPfLAIh7VSLQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 03:05:53 (3 months ago)	Blocking for trying to access an exploit file: /dev/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-15 02:46:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:46:44.364734 2026] [security2:error] [pid 2396384:tid 2396384] [client 104.207.35.225:41749] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "springmeadowventures.com"] [uri "/api/.env"] [unique_id "aZEzlGIfYSRHLjmOTGgV8AAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 02:46:28 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.35.225 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.35.225 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:31:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:31:14.235325 2026] [security2:error] [pid 30398:tid 30398] [client 104.207.35.225:31335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spirits66.com"] [uri "/.env"] [unique_id "aZEv8gWIbz16GIG_CqCfBgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:23:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:23:22.426594 2026] [security2:error] [pid 22888:tid 22892] [client 104.207.35.225:16751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lzmarketingsolutions.com"] [uri "/backend/.env"] [unique_id "aZEgCnQUAKxpIYdUYRLAmAAAAQE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:06:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:05:56.943307 2026] [security2:error] [pid 2170:tid 2256] [client 104.207.35.225:34873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mtiminis.com"] [uri "/dev/.git/config"] [unique_id "aZEb9GK04aBCi-tiI-BA2wAAAM4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:49:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:49:44.436376 2026] [security2:error] [pid 24992:tid 24992] [client 104.207.35.225:18185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luisgtechgroup.com"] [uri "/config/.env"] [unique_id "aZEYKI6hTaaO3HZyHeGNXwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:09:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:09:33.099586 2026] [security2:error] [pid 4128:tid 4128] [client 104.207.35.225:38761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lorendata.net"] [uri "/.git/config"] [unique_id "aZEOvV0OJAskYEFt4sslYAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:03:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.225 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:03:08.112132 2026] [security2:error] [pid 554303:tid 554303] [client 104.207.35.225:9793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "listerman.org"] [uri "/.env"] [unique_id "aZD_LD3ZJebA-vbU7WIIVwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇻 217.60.3.128

🇺🇸 207.90.244.12

🇫🇮 87.239.126.198

🇷🇺 81.13.62.77

🇨🇦 54.39.6.68

🇺🇸 20.127.244.67

🇵🇰 175.107.208.134

🇬🇧 172.64.192.60

🇨🇳 115.190.83.184

🇨🇳 113.237.12.14

🇹🇷 78.187.230.168

🇺🇸 68.7.114.69

🇺🇸 64.62.156.98

🇩🇪 46.101.173.8

🇩🇪 45.135.194.83

🇻🇳 27.79.166.101

🇨🇳 14.103.110.123

🇮🇱 2.54.236.236

🇬🇧 192.250.239.173

🇻🇳 183.91.11.36