JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.190

104.207.36.190 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.190

Whois 104.207.36.190

IP Abuse Reports for 104.207.36.190:

This IP address has been reported a total of 140 times from 17 distinct sources. 104.207.36.190 was first reported on June 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-18 21:59:35 (2 weeks ago)	Auto-ban: >3000 req/min op 2026-05-18	Web App Attack SSH Hacking
🇺🇸 nowyouknow	2026-05-05 00:20:52 (4 weeks ago)	(From [email protected]) Hello there, I’m giving away something valuable 100% free... No ... show more (From [email protected]) Hello there, I’m giving away something valuable 100% free... No gimmicks. Use this link before it’s gone: https://suniljaindvg.systeme.io/6850adaf Takes like 10 sec. You could end up with it. Enter now. If you do not wish to receive messages from me, please fill out the form on my website show less	Phishing Web Spam
🇩🇪 FeG Deutschland	2026-04-03 03:21:23 (2 months ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27	Exploited Host Web App Attack
🇪🇸 librebit	2026-03-22 03:30:52 (2 months ago)	Brute force	Brute-Force
Anonymous	2026-03-20 11:13:35 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-27 22:16:24 (3 months ago)	Forum/form spam	Web Spam
🇪🇸 librebit	2026-02-09 00:57:01 (3 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2025-11-27 00:42:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 19:42:19.117212 2025] [security2:error] [pid 24913:tid 24913] [client 104.207.36.190:39083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.kingmanrents.com"] [uri "/.git/HEAD"] [unique_id "aSeea0UN3oH1eFRtJSSiyAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 23:14:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 18:14:53.037038 2025] [security2:error] [pid 23770:tid 23770] [client 104.207.36.190:41001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.wisdomsco.com"] [uri "/.env"] [unique_id "aSeJ7b_V2x7jRB0ulc1e8AAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 19:12:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 14:12:47.366053 2025] [security2:error] [pid 6795:tid 6795] [client 104.207.36.190:47009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.brandsrepairandremodeling.com"] [uri "/.env"] [unique_id "aSdRL0t9GaF2MtST4XHb1QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:56:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:56:37.152323 2025] [security2:error] [pid 8204:tid 8204] [client 104.207.36.190:25955] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.qavideo.com"] [uri "/.svn/wc.db"] [unique_id "aSdNZfcYgTUMW41knrabYwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:06:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:06:10.585031 2025] [security2:error] [pid 25545:tid 25545] [client 104.207.36.190:24445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lspfest.com"] [uri "/.env"] [unique_id "aSbREmQ3JJKWN1KLqpTvgwAAADY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:23:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:23:21.999237 2025] [security2:error] [pid 6014:tid 6014] [client 104.207.36.190:44585] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.glaswoodind.com"] [uri "/.git/HEAD"] [unique_id "aSVLWcTVrfNyVS3np5VM8wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:29:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:29:07.800754 2025] [security2:error] [pid 13417:tid 13417] [client 104.207.36.190:59805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.gacstoday.com"] [uri "/.svn/wc.db"] [unique_id "aSU-owbPuK-sCWJeh-JsgAAAADQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:34:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:34:11.476596 2025] [security2:error] [pid 13756:tid 13852] [client 104.207.36.190:25377] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.unitedonegroup.com"] [uri "/.env"] [unique_id "aSUxwy2vRx1ksuNuFaHEYQAAANE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.166.22.95

🇷🇸 178.220.154.125

🇧🇼 168.167.228.74

🇷🇺 91.185.75.244

🇨🇳 60.5.45.231

🇷🇺 193.58.168.54

🇧🇷 138.0.64.120

🇦🇪 95.182.89.91

🇺🇸 64.94.159.239

🇸🇬 146.190.83.66

🇨🇳 144.123.77.28

🇩🇪 109.94.169.111

🇲🇦 105.156.116.48

🇱🇹 81.30.98.44

🇰🇷 64.110.90.250

🇸🇬 47.84.142.16

🇨🇿 31.47.99.147

🇲🇽 186.96.145.241

🇮🇳 128.185.215.202

🇰🇷 121.1.81.95