JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.64

104.207.36.64 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.64

Whois 104.207.36.64

IP Abuse Reports for 104.207.36.64:

This IP address has been reported a total of 147 times from 17 distinct sources. 104.207.36.64 was first reported on June 8th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-05-13 21:28:44 (3 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.36.64 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.36.64 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-24 00:16:57 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/104.207.36.64 2026-04- ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/104.207.36.64 2026-04-23 06:48:28 /static/ 2026-04-23 06:45:34 /code show less	Web App Attack
🇫🇷 Octopuce	2026-03-19 16:38:14 (2 months ago)	Aggressive web search of vulnerable pages: /index.php?option=%27&view=article&id=14%3asvjat-ja-rusi- ... show more Aggressive web search of vulnerable pages: /index.php?option=%27&view=article&id=14%3asvjat-ja-rusi-sviataja-rus&catid=33%3acollection-tam-izda ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 19:02:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 14:02:04.083074 2026] [security2:error] [pid 4116871:tid 4116871] [client 104.207.36.64:35879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arborterra.org"] [uri "/api/.git/config"] [unique_id "aYzSLGNoP66a9Jt9QTgXZwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 22:59:46 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 04:45:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:45:22.519127 2026] [security2:error] [pid 12746:tid 12791] [client 104.207.36.64:40117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idealcentralvac.com"] [uri "/admin/.env"] [unique_id "aYq34i7qoT-4nEbOWPXrygAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:48:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:48:47.276615 2026] [security2:error] [pid 10651:tid 10651] [client 104.207.36.64:48317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kitebeach.com"] [uri "/new/.git/config"] [unique_id "aYqqn_oCPnrfntf3Fi1VTAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:33:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:33:10.849853 2026] [security2:error] [pid 10852:tid 10852] [client 104.207.36.64:30463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iat.com.pa"] [uri "/dev/.git/config"] [unique_id "aYqm9ikNfUtLi9ZCh6vB-wAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-10 00:36:00 (3 months ago)	Blocking for trying to access an exploit file: /config/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-10 00:31:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:31:24.794842 2026] [security2:error] [pid 937968:tid 937988] [client 104.207.36.64:36977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettleofgold.com"] [uri "/api/.git/config"] [unique_id "aYp8XKwhT4RZ6FzCjF2tGQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:48:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:47:54.891050 2026] [security2:error] [pid 4602:tid 4602] [client 104.207.36.64:36359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ken-parker.com"] [uri "/dev/.git/config"] [unique_id "aYpyKmf_RXIZTFN2dIRmdQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:20:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:20:51.571052 2026] [security2:error] [pid 1570:tid 1605] [client 104.207.36.64:13819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keetons.net"] [uri "/wp/.git/config"] [unique_id "aYpr03eVpx3S5SN-NSqjIwAAANg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:02:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:01:59.683792 2026] [security2:error] [pid 16053:tid 16053] [client 104.207.36.64:21599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kdarmsta.com"] [uri "/site/.git/config"] [unique_id "aYpnZ0ke7wLvR-dE9t0ELgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:16:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.64 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:15:58.630476 2026] [security2:error] [pid 9805:tid 9805] [client 104.207.36.64:32487] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hometechllc.com"] [uri "/.env.production"] [unique_id "aYpAflB0ADNaRWPK7sgXDwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:25:43 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 209.97.141.74

🇵🇰 153.117.40.127

🇱🇹 62.60.130.128

🇧🇷 177.71.84.44

🇺🇸 70.164.250.141

🇭🇰 61.244.153.78

🇨🇳 61.240.213.113

🇵🇱 45.43.137.130

🇳🇱 45.8.17.36

🇵🇱 20.215.66.169

🇺🇸 20.51.61.81

🇬🇧 18.133.30.244

🇳🇱 185.213.174.123

🇨🇳 180.184.86.82

🇪🇸 138.100.233.40

🇮🇳 125.19.194.166

🇨🇳 116.207.109.163

🇨🇳 113.221.97.73

🇷🇴 92.118.39.236

🇬🇧 51.38.75.122