JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.35.39

104.207.35.39 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.35.39

Whois 104.207.35.39

IP Abuse Reports for 104.207.35.39:

This IP address has been reported a total of 137 times from 14 distinct sources. 104.207.35.39 was first reported on June 6th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hazzard	2026-05-16 08:27:32 (2 weeks ago)	(wordpress) Failed wordpress login from 104.207.35.39 (US/United States/Virginia/Ashburn/-/[redacted ... show more (wordpress) Failed wordpress login from 104.207.35.39 (US/United States/Virginia/Ashburn/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇦🇺 oncord	2026-01-26 01:29:05 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-02 05:55:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:55:27.439952 2025] [security2:error] [pid 10413:tid 10413] [client 104.207.35.39:17887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ficciones.com"] [uri "/.svn/wc.db"] [unique_id "aS5_T-U2BRFILwxACqomqAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:25:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:24:55.530467 2025] [security2:error] [pid 15858:tid 15858] [client 104.207.35.39:47727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "harrygant.com"] [uri "/.git/HEAD"] [unique_id "aS54J9FM56YQqH4YZGNALAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 03:55:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 22:55:34.342323 2025] [security2:error] [pid 14664:tid 14664] [client 104.207.35.39:14151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cmexico.co"] [uri "/.svn/wc.db"] [unique_id "aS5jNlgm6PxO16PAHp6oTgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 00:09:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 19:09:21.872939 2025] [security2:error] [pid 21367:tid 21367] [client 104.207.35.39:10979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "insurance4you.agency"] [uri "/.git/HEAD"] [unique_id "aS4uMXQ38o_udoeQ_ZhuvgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:27:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:27:40.489788 2025] [security2:error] [pid 18637:tid 18637] [client 104.207.35.39:11889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.cherishedcompanions.com"] [uri "/.env"] [unique_id "aSVMXBRrv3qJfQB9QQlACAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:54:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:54:12.210643 2025] [security2:error] [pid 11932:tid 11932] [client 104.207.35.39:48125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.personalizedbabyshowernapkins.com"] [uri "/.svn/wc.db"] [unique_id "aSUoZMldHG1XzzhLVUY7GwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:26:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:26:40.808518 2025] [security2:error] [pid 24684:tid 24684] [client 104.207.35.39:39651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.parkplacemotel.com"] [uri "/.git/HEAD"] [unique_id "aSUh8NsYOq8PlzfETda68AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:38:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:38:14.995059 2025] [security2:error] [pid 20636:tid 20636] [client 104.207.35.39:17149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.aallred.com"] [uri "/.svn/wc.db"] [unique_id "aSUWlrNqseKSto6J0M82dAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:17:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:17:06.681843 2025] [security2:error] [pid 32735:tid 316] [client 104.207.35.39:32063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.duplexgoldmine.com"] [uri "/.env"] [unique_id "aSURouyRrmvyed2G3rXFRAAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:08:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.35.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:08:43.134595 2025] [security2:error] [pid 7716:tid 7716] [client 104.207.35.39:48789] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abilityimprinting.abilityengraving.com"] [uri "/.git/HEAD"] [unique_id "aSUBmx9y6aN_J9Y5he93kQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 02:43:01 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇱🇻 garmtech.com	2025-10-20 16:44:42 (7 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
Anonymous	2025-10-18 12:26:05 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 34.76.44.47

🇬🇧 2a06:4880:2000::47

🇺🇸 2607:f8b0:4001:c11::120

🇷🇺 188.92.241.150

🇩🇪 176.65.132.22

🇨🇳 124.90.11.105

🇯🇵 118.194.229.94

🇸🇬 114.119.150.37

🇷🇴 92.118.39.236

🇳🇱 86.54.31.46

🇺🇸 31.58.29.144

🇩🇪 213.209.159.56

🇺🇸 162.216.150.147

🇧🇯 154.127.34.197

🇸🇬 114.119.155.96

🇫🇷 62.210.209.225

🇨🇳 14.103.111.167

🇰🇷 220.80.232.146

🇫🇷 185.255.126.27

🇩🇪 167.94.145.31