JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.124

104.207.51.124 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 39%: ?

39%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.124

Whois 104.207.51.124

IP Abuse Reports for 104.207.51.124:

This IP address has been reported a total of 133 times from 20 distinct sources. 104.207.51.124 was first reported on June 18th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-05-30 11:08:32 (1 week ago)	trolling for resource vulnerabilities	Web App Attack
Anonymous	2026-05-30 09:19:27 (1 week ago)	Web attack blocked by Wordfence on vestingstadvalkenburg.nl (1 hit). Reported by CRMON.	Web App Attack
🇲🇽 octageeks.com	2026-05-30 04:12:45 (1 week ago)	Wordpress malicious attack:[octaflood]	Web App Attack
Anonymous	2026-05-29 02:41:48 (1 week ago)	[ssd5.kdns.gr] httpd-login-spray-site: sites=weihnachtsbasar-athen.gr; logs=/var/log/httpd/domains/w ... show more [ssd5.kdns.gr] httpd-login-spray-site: sites=weihnachtsbasar-athen.gr; logs=/var/log/httpd/domains/weihnachtsbasar-athen.gr.log; samples=site_wide=true \| distinct_ips=23 \| /wp-login.php show less	Hacking Web App Attack
🇩🇪 Hazzard	2026-05-23 17:13:17 (2 weeks ago)	(wordpress) Failed wordpress login from 104.207.51.124 (GB/United Kingdom/England/City of London/-/[ ... show more (wordpress) Failed wordpress login from 104.207.51.124 (GB/United Kingdom/England/City of London/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇺🇸 koinkash.org	2026-05-23 01:39:29 (2 weeks ago)	They are fraudulent. Malicious threat actor requesting php file /xmlrpc.php	Web App Attack
🇺🇸 oncord	2026-05-22 10:01:03 (2 weeks ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-03-05 08:08:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 03:08:33.288271 2026] [security2:error] [pid 5903:tid 5915] [client 104.207.51.124:11901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.howardhallis.com"] [uri "/.git/objects/c0/1ada13ee9a58afc51489ea80a53dca6dbe7eaa"] [unique_id "aak6AcM5boPVIRJ8UEms1QAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-01-04 08:40:03 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:06:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:06:08.015942 2025] [security2:error] [pid 1337:tid 1337] [client 104.207.51.124:34371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ianadolphus.com"] [uri "/.env"] [unique_id "aSQR8N6E3ehwmjI8gstUPgAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:57:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:57:14.268869 2025] [security2:error] [pid 3965261:tid 3965322] [client 104.207.51.124:54173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "plasticsurgeondallas.com.aafm.us"] [uri "/.env"] [unique_id "aSPzuh7XGNzpCBYjvUsPzAAAAlc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:09:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:09:40.923856 2025] [security2:error] [pid 4711:tid 4711] [client 104.207.51.124:41589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jinkokyudojo.com"] [uri "/.svn/wc.db"] [unique_id "aSPolMsDfnhoTEhbRUVAjgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:49:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:48:52.835334 2025] [security2:error] [pid 17165:tid 17165] [client 104.207.51.124:9761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ecotermic-ventas.com"] [uri "/.git/HEAD"] [unique_id "aSPjtB800vteutL2S-YJPAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:21:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:21:39.371642 2025] [security2:error] [pid 3285513:tid 3285513] [client 104.207.51.124:46505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pasamugo.com"] [uri "/.env"] [unique_id "aSPdU1PXxcp-HM0qKEc88AAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-10 13:48:17 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.10 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 103.174.115.72

🇫🇮 74.125.46.24

🇯🇵 47.79.36.221

🇷🇴 2.57.121.25

🇨🇳 223.247.218.112

🇭🇰 144.48.8.10

🇮🇩 103.174.115.238

🇮🇩 103.174.115.196

🇮🇩 103.174.115.168

🇮🇩 103.174.115.5

🇿🇦 102.64.39.109

🇷🇺 130.49.181.239

🇮🇩 103.174.114.164

🇮🇩 103.174.114.50

🇻🇳 103.173.226.169

🇻🇳 103.173.154.45

🇰🇷 14.63.196.175

🇮🇳 205.254.187.11

🇺🇸 198.98.56.227

🇫🇷 185.177.72.69