JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.35

104.207.46.35 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.35

Whois 104.207.46.35

IP Abuse Reports for 104.207.46.35:

This IP address has been reported a total of 140 times from 21 distinct sources. 104.207.46.35 was first reported on June 14th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-05-19 19:00:03 (3 weeks ago)	Fail2Ban banned 104.207.46.35 for security violations in jail wp-armour. Log: 2026/05/19 19:00:02 [e ... show more Fail2Ban banned 104.207.46.35 for security violations in jail wp-armour. Log: 2026/05/19 19:00:02 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.46.35 \| Target: wplogin" , client: 104.207.46.35, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇨🇭 backslash	2026-05-10 07:18:05 (1 month ago)		Bad Web Bot
🇬🇧 PeravixGroup	2026-05-06 19:08:56 (1 month ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 oncord	2026-04-24 14:04:41 (1 month ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2026-04-10 20:28:59 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 23-28.104.207.46.35.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 23-28.104.207.46.35.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-13 13:42:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:42:43.599514 2026] [security2:error] [pid 22226:tid 22226] [client 104.207.46.35:35543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindforestmovie.com"] [uri "/app/.env"] [unique_id "aY8qUzOTr8vNGBVlyQ98awAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:07:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:07:05.895870 2026] [security2:error] [pid 30718:tid 30815] [client 104.207.46.35:47183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lauricella.us"] [uri "/backup/.git/config"] [unique_id "aY8h-RnEObaE8PLu9qd7HgAAAEI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:34:52 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:34:46.388728 2026] [security2:error] [pid 7368:tid 7368] [client 104.207.46.35:41557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mehlerproperties.com"] [uri "/.env.save"] [unique_id "aY7UFioyw6ihekYggyeOtwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:12:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:12:07.738121 2026] [security2:error] [pid 32089:tid 32089] [client 104.207.46.35:38751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medpact.net"] [uri "/app/.git/config"] [unique_id "aY7Ox5OINs9xtDDHIhhcLQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:17:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:17:34.628201 2026] [security2:error] [pid 31582:tid 31582] [client 104.207.46.35:35773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matteozacchino.dev"] [uri "/.env.production"] [unique_id "aY6z7iVS84-2-nEO6rZMEQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 05:06:11 (4 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:37:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:37:05.143012 2026] [security2:error] [pid 17648:tid 17648] [client 104.207.46.35:35209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynmonroebook.com"] [uri "/.env"] [unique_id "aY6cYUH6yPoZPYKveHkCSwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-12 00:36:16 (4 months ago)	104.207.46.35 - - [12/Feb/2026:00:36:15 +0000] "GET /wp/.git/config HTTP/1.1" 302 645 "-" "Mozilla/5 ... show more 104.207.46.35 - - [12/Feb/2026:00:36:15 +0000] "GET /wp/.git/config HTTP/1.1" 302 645 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 02:17:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 21:17:11.832586 2026] [security2:error] [pid 22943:tid 22943] [client 104.207.46.35:43233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "futurbike.it"] [uri "/wp/.git/config"] [unique_id "aYvmp3HC041sfj_yuSd9mQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 194.87.250.213

🇨🇳 183.201.208.25

🇺🇸 170.106.180.139

🇳🇱 160.119.76.24

🇮🇳 103.38.219.22

🇵🇹 89.153.125.230

🇺🇸 74.82.47.36

🇫🇮 35.228.114.189

🇬🇧 5.226.140.20

🇨🇳 221.229.218.50

🇯🇵 203.25.124.51

🇬🇧 193.163.125.91

🇬🇧 193.32.209.238

🇩🇪 144.31.218.74

🇨🇳 115.49.202.187

🇫🇷 92.103.134.183

🇵🇹 87.103.85.15

🇱🇹 81.30.98.142

🇺🇸 66.228.62.150

🇺🇸 66.132.186.216