JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.34

104.207.36.34 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.34

Whois 104.207.36.34

IP Abuse Reports for 104.207.36.34:

This IP address has been reported a total of 145 times from 14 distinct sources. 104.207.36.34 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-11 00:18:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:18:28.461363 2026] [security2:error] [pid 25531:tid 25531] [client 104.207.36.34:55505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apropa.org"] [uri "/app/.git/config"] [unique_id "aYvK1PJlXzK2sxOHdPDvRAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:00:25 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 17:04:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 12:04:11.647441 2026] [security2:error] [pid 30061:tid 30061] [client 104.207.36.34:56559] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anxietyquest.com"] [uri "/.env.staging"] [unique_id "aYtlCw_8pVK_g-zuT6zP8wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:16:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:16:04.446970 2026] [security2:error] [pid 20028:tid 20028] [client 104.207.36.34:61541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ik3co.com"] [uri "/.git/config"] [unique_id "aYrNJMTzdajWlx_cFFZMmgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:29:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:29:06.239577 2026] [security2:error] [pid 17078:tid 17078] [client 104.207.36.34:43627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirkrmartin.com"] [uri "/backup/.git/config"] [unique_id "aYqmAlRWOUQt3awbtIhirwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:55:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:55:45.925985 2026] [security2:error] [pid 7775:tid 7775] [client 104.207.36.34:63875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingfishbets.com"] [uri "/frontend/.env"] [unique_id "aYqeMeMfLgYxAzsZOY7W9QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Bedios GmbH	2026-02-10 01:46:57 (3 months ago)	Login credentials theft attempt	Hacking
🇺🇸 TPI-Abuse	2026-02-09 23:45:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:45:05.516602 2026] [security2:error] [pid 9778:tid 9778] [client 104.207.36.34:10867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kemela.com"] [uri "/dev/.git/config"] [unique_id "aYpxgU2g8HimqQ9WsTG4XAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-01-02 02:16:00 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇪 cmbplf	2025-12-14 05:21:52 (5 months ago)	3.477 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-24 09:25:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:25:47.666499 2025] [security2:error] [pid 27439:tid 27539] [client 104.207.36.34:23987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.martinbenes.com"] [uri "/.git/HEAD"] [unique_id "aSQkmwdRJ-GlrOkYv176ggAAAMg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:28:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:28:26.269686 2025] [security2:error] [pid 13088:tid 13088] [client 104.207.36.34:34339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.raysolemfund.org"] [uri "/.svn/wc.db"] [unique_id "aSQJGrkyDYTaQElfpfaSngAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:47:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:46:48.105920 2025] [security2:error] [pid 3309780:tid 3309780] [client 104.207.36.34:10465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.dhappraisalservices.com"] [uri "/.svn/wc.db"] [unique_id "aSPjODIV1nUhSlxAh7DCsQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-13 22:40:32 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-26 15:02:16 (7 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.10.26 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.10.26 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇦 41.143.62.184

🇺🇸 240b:4002:10:d00:1241:5c12:1a2c:2f95

🇮🇳 188.241.62.83

🇦🇷 129.224.215.208

🇳🇱 45.148.10.152

🇩🇪 213.209.159.235

🇫🇮 147.185.133.109

🇬🇧 87.236.176.96

🇧🇷 45.181.138.130

🇺🇸 18.221.214.124

🇨🇳 218.106.33.54

🇳🇱 185.226.197.48

🇺🇸 184.153.165.126

🇺🇸 185.238.231.236

🇳🇱 45.148.10.141

🇳🇱 45.60.29.4

🇬🇧 35.203.211.250

🇨🇦 138.197.164.175

🇮🇹 93.92.79.38

🇨🇳 36.132.34.69