JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.79

104.207.36.79 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.79

Whois 104.207.36.79

IP Abuse Reports for 104.207.36.79:

This IP address has been reported a total of 134 times from 13 distinct sources. 104.207.36.79 was first reported on June 4th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 mgarofano80	2026-01-23 17:06:25 (4 months ago)		Brute-Force Web App Attack
Anonymous	2025-12-22 14:24:43 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 13:02:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 08:02:28.433275 2025] [security2:error] [pid 16128:tid 16128] [client 104.207.36.79:22807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dreamlikeitmatters.com"] [uri "/.env"] [unique_id "aTbMZDZ5yJc6jraZ0KBrEQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:37:43 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:37:34.039226 2025] [security2:error] [pid 29707:tid 29719] [client 104.207.36.79:30087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "certifiedfinancialmanager.org"] [uri "/.svn/wc.db"] [unique_id "aTV1Diq5XQUJFjJNTI_sagAAAIg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 15:27:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 10:27:24.886043 2025] [security2:error] [pid 23936:tid 23936] [client 104.207.36.79:60959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fitz-studios.com"] [uri "/.git/HEAD"] [unique_id "aTL53BSnyQL5a5nIMKxGjgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 13:58:23 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:58:17.411009 2025] [security2:error] [pid 18148:tid 18148] [client 104.207.36.79:39241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avilade.com"] [uri "/.svn/wc.db"] [unique_id "aTLk-cNTKmq337rJ6Q7YoAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-01 21:49:13 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 10:51:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:51:07.324360 2025] [security2:error] [pid 4066:tid 4066] [client 104.207.36.79:31151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.stoneageartifacts.com"] [uri "/.env"] [unique_id "aSbbm4ydFTUA2EIev6dZpwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:41:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:41:30.138943 2025] [security2:error] [pid 1737:tid 1737] [client 104.207.36.79:28047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.blastjet.net"] [uri "/.env"] [unique_id "aSaTCjvh4z7FKhAWFJi1EQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:05:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:05:35.276919 2025] [security2:error] [pid 17441:tid 17441] [client 104.207.36.79:31399] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.retiredinternationaltravel.com"] [uri "/.git/HEAD"] [unique_id "aSZSXzXp0iZYOAaiHAo2kgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:36:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:36:25.281656 2025] [security2:error] [pid 7231:tid 7231] [client 104.207.36.79:55039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.equitysaver.biz"] [uri "/.env"] [unique_id "aSQZCQxTVIT7hj1t2kex0gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:27:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:26:59.909926 2025] [security2:error] [pid 7594:tid 7594] [client 104.207.36.79:42841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cc.austinbiblestudents.org"] [uri "/.git/HEAD"] [unique_id "aSQIw3iTuVHhqPy94C6ISgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-14 09:24:45 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 techboy117	2025-11-14 00:46:07 (6 months ago)	Blocking due to password spraying.	Brute-Force
🇺🇸 TPI-Abuse	2025-11-12 17:31:26 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.207.36.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 12:31:22.091967 2025] [security2:error] [pid 11622:tid 11622] [client 104.207.36.79:48615] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.firstunitedreserve.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.firstunitedreserve.com"] [uri "/s3cmd.ini"] [unique_id "aRTEarnc5oEJ7Bc7hruzUwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4023:1002::12b

🇸🇬 194.164.107.5

🇷🇺 46.182.132.28

🇭🇰 2602:80d:1004::12

🇨🇳 221.229.220.180

🇮🇳 150.129.206.20

🇭🇰 150.5.169.176

🇰🇷 121.148.184.47

🇮🇳 119.18.52.246

🇰🇷 106.240.29.98

🇲🇲 103.185.222.38

🇫🇷 91.196.152.107

🇨🇳 8.148.81.231

🇹🇷 5.11.161.152

🇩🇪 213.209.159.56

🇺🇸 150.107.38.206

🇳🇱 45.156.128.58

🇺🇸 45.132.227.76

🇺🇸 35.212.204.23

🇺🇸 20.29.57.104