JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.12

104.207.36.12 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.12

Whois 104.207.36.12

IP Abuse Reports for 104.207.36.12:

This IP address has been reported a total of 92 times from 18 distinct sources. 104.207.36.12 was first reported on June 4th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 10dencehispahard SL	2026-01-26 07:24:52 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-01-15 01:49:25 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 20:49:17.683023 2026] [security2:error] [pid 1563953:tid 1564001] [client 104.207.36.12:37881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stonyp.com"] [uri "/.git/HEAD"] [unique_id "aWhHnW0F3EfDJdcHZSVR3gAAAZA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-14 13:28:26 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 08:28:22.851158 2026] [security2:error] [pid 2062:tid 2062] [client 104.207.36.12:57259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bergopro.co.uk"] [uri "/.env"] [unique_id "aWeZ9rAkuhog4IxZWjrQGwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-13 12:36:42 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 07:36:37.996085 2026] [security2:error] [pid 914:tid 914] [client 104.207.36.12:30637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "solve4this.com"] [uri "/.svn/wc.db"] [unique_id "aWY8VYBovMQ6YFmqXW3WTgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-13 11:55:26 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-29 05:37:36 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:37:31.288631 2025] [security2:error] [pid 7916:tid 7916] [client 104.207.36.12:34083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hazeltrane.com"] [uri "/.git/HEAD"] [unique_id "aVITm1EET58sFHIr5JEBCgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:46:10 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:46:06.726957 2025] [security2:error] [pid 27236:tid 27236] [client 104.207.36.12:21961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starfrontiers.com"] [uri "/.git/HEAD"] [unique_id "aVIHju8PFyv_4P66r8KMjAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:25:39 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:25:35.933937 2025] [security2:error] [pid 10346:tid 10346] [client 104.207.36.12:28595] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roguetechhub.com"] [uri "/.svn/wc.db"] [unique_id "aVICvzxXBFeetzL1LTnlTAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-11 08:30:55 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-08 00:38:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 19:38:27.353926 2025] [security2:error] [pid 20655:tid 20662] [client 104.207.36.12:21065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tomithai.com"] [uri "/.git/HEAD"] [unique_id "aTYeA-zPIjpiVHQmwgjPbwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 22:14:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 17:14:25.517519 2025] [security2:error] [pid 6039:tid 6039] [client 104.207.36.12:23979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alianzallc.com"] [uri "/.git/HEAD"] [unique_id "aTX8QeFjgRbkSpvabno5hQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-07 22:10:19 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇳🇱 homeshowdomain.nl	2025-12-06 22:59:37 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-05 05:20:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:20:49.932076 2025] [security2:error] [pid 27463:tid 27463] [client 104.207.36.12:54005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "questionnairetips.com"] [uri "/.git/HEAD"] [unique_id "aTJrsZTV5zJMu8O7DQVmlgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:35:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:35:30.260138 2025] [security2:error] [pid 17172:tid 17172] [client 104.207.36.12:22071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jasonpolland.com"] [uri "/.git/HEAD"] [unique_id "aTJTAuPTBIyfwEnGOXeNegAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 167.99.148.102

🇺🇸 136.144.42.148

🇺🇸 205.210.31.58

🇹🇼 198.235.24.26

🇯🇵 172.235.215.167

🇨🇳 111.61.229.78

🇳🇴 213.151.132.96

🇸🇪 193.189.100.203

🇳🇱 185.242.226.81

🇨🇳 124.220.61.209

🇮🇳 103.49.102.32

🇷🇴 80.94.92.186

🇸🇬 47.245.117.221

🇺🇸 20.64.105.47

🇷🇴 2.57.122.238

🇩🇪 213.209.159.226

🇳🇴 213.151.132.98

🇺🇸 207.135.224.94

🇧🇷 205.210.31.167

🇳🇱 204.76.203.219