JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.52.35

104.207.52.35 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.52.35

Whois 104.207.52.35

IP Abuse Reports for 104.207.52.35:

This IP address has been reported a total of 156 times from 20 distinct sources. 104.207.52.35 was first reported on June 7th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-13 08:29:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:29:25.257188 2026] [security2:error] [pid 8295:tid 8295] [client 104.207.52.35:48035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ladymcollection.com"] [uri "/v2/.git/config"] [unique_id "aY7g5bm5naXUyFUuHHrp0QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:40:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:40:37.878971 2026] [security2:error] [pid 17383:tid 17383] [client 104.207.52.35:41079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kwcccarshow.com"] [uri "/.env.save"] [unique_id "aY7Vde7sK7aSkgbRACs6YwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:31:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:31:21.268244 2026] [security2:error] [pid 31402:tid 31402] [client 104.207.52.35:22165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krankybitchguitars.com"] [uri "/admin/.env"] [unique_id "aY7FORo1h9QNijm5Likc-wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:07:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:07:22.720510 2026] [security2:error] [pid 19652:tid 19652] [client 104.207.52.35:48473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingfish.bet"] [uri "/config/.env"] [unique_id "aY6jehX7be0di66yGEajKwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-13 03:10:38 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:52:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:51:56.149737 2026] [security2:error] [pid 6783:tid 6783] [client 104.207.52.35:16695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrywelt.com"] [uri "/wp/.git/config"] [unique_id "aY6RzP0Xj5VSvfeL0bLeUQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:35:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:35:33.582414 2026] [security2:error] [pid 8341:tid 8341] [client 104.207.52.35:56365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "forestvalleyfarm.com"] [uri "/.git/config"] [unique_id "aY4rhQ1FJpzUiApof7SL7wAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 rsa	2026-02-12 18:03:00 (3 months ago)	GET /.git/config HTTP/1.1	Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:46:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:46:00.464731 2026] [security2:error] [pid 8693:tid 8693] [client 104.207.52.35:17199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "copiersraleigh.com"] [uri "/.env"] [unique_id "aYvRSBCLI6qhdmUxKkxjbwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:03:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:03:19.155676 2026] [security2:error] [pid 23751:tid 23751] [client 104.207.52.35:50581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "getlawforms.com"] [uri "/v2/.git/config"] [unique_id "aYq8F7J-bKUooWlIpLDzyAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:07:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:07:03.704482 2026] [security2:error] [pid 1036082:tid 1036228] [client 104.207.52.35:49341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgementz.com"] [uri "/frontend/.env"] [unique_id "aYqg1wu5-PwVS0XMgJ_UIQAAAhg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:44:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:44:05.738270 2026] [security2:error] [pid 1790795:tid 1790795] [client 104.207.52.35:59887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "geo-modal.com"] [uri "/app/.git/config"] [unique_id "aYqbdSSp8fvrIX24GNIDewAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:50 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-28 07:55:07 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 213.166.84.51

🇩🇪 141.11.250.239

🇰🇷 112.219.151.50

🇮🇳 98.70.43.249

🇺🇸 3.141.106.93

🇻🇳 183.91.11.36

🇺🇸 172.253.8.152

🇰🇿 95.58.188.69

🇳🇴 88.88.156.124

🇺🇿 84.54.73.47

🇺🇸 66.132.224.87

🇺🇸 64.62.197.45

🇮🇳 27.124.65.25

🇮🇶 185.166.25.150

🇭🇰 165.154.92.172

🇭🇰 152.32.171.99

🇷🇴 143.20.185.207

🇳🇱 89.21.67.184

🇷🇴 80.94.92.187

🇬🇧 35.203.210.193