JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.15

104.207.51.15 was found in our database!

This IP was reported 91 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.15

Whois 104.207.51.15

IP Abuse Reports for 104.207.51.15:

This IP address has been reported a total of 91 times from 17 distinct sources. 104.207.51.15 was first reported on June 2nd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-23 05:03:12 (3 weeks ago)		Bad Web Bot
🇳🇱 MM-bot	2026-05-13 19:07:56 (1 month ago)	URL-probe: HTTP/1.1 GET request on /.git/HEAD (2026-05-13 21:07:56 UTC+2)	Web App Attack Hacking
🇩🇪 4server	2026-05-12 17:22:42 (1 month ago)	[TueMay1219:22:36.8367122026][security2:error][pid379599:tid379641][client104.207.51.15:0]ModSecurit ... show more [TueMay1219:22:36.8367122026][security2:error][pid379599:tid379641][client104.207.51.15:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"elyon2.ch\"][uri\"/.git/HEAD\"][unique_id\"agNh3Lht5Aj9-hCnblC8dQAAAEU\"] show less	Port Scan Brute-Force Web App Attack
🇪🇸 librebit	2026-04-15 18:45:36 (2 months ago)	Brute force	Brute-Force
🇩🇪 Bedios GmbH	2026-02-09 13:40:13 (4 months ago)	SQL backup theft attempt	Hacking
🇵🇱 sefinek.net	2026-01-01 10:44:04 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇳🇱 homeshowdomain.nl	2025-12-07 23:01:19 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-07	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-05 13:45:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:45:32.255619 2025] [security2:error] [pid 8020:tid 8034] [client 104.207.51.15:50967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "longevityworkout.com"] [uri "/.svn/wc.db"] [unique_id "aTLh_JsJP7QP_uYcdsb50gAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 06:52:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:52:26.603725 2025] [security2:error] [pid 30124:tid 30124] [client 104.207.51.15:58979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wellness-mastery.com"] [uri "/.svn/wc.db"] [unique_id "aTKBKlcEAJfq6C2UwLJJYgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-12-05 00:46:30 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-05 00:40:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 19:40:36.625320 2025] [security2:error] [pid 23374:tid 23374] [client 104.207.51.15:24883] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jasonmcquain.com"] [uri "/.svn/wc.db"] [unique_id "aTIqBGR_nhJvFZzMm8ORHgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:30:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:29:56.297149 2025] [security2:error] [pid 29715:tid 29715] [client 104.207.51.15:26451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.oscarssons.com"] [uri "/.git/HEAD"] [unique_id "aSbktOpoATvO5J9zvF_r_AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇸 Smel	2025-11-26 11:18:40 (6 months ago)	Unauthorized Probe/Connection, Hack -	Port Scan Hacking
🇺🇸 TPI-Abuse	2025-11-26 03:07:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.15 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:07:08.311148 2025] [security2:error] [pid 24083:tid 24083] [client 104.207.51.15:47083] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.noramsg.com"] [uri "/.git/HEAD"] [unique_id "aSZu3CknE3UjoeQx2VlxfwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 91 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇪 197.248.34.233

🇩🇪 195.230.103.248

🇨🇳 120.36.82.210

🇨🇳 39.144.142.158

🇮🇷 37.255.206.45

🇬🇧 35.203.210.152

🇮🇳 34.14.214.227

🇮🇷 2.180.228.43

🇺🇸 207.90.244.17

🇲🇾 180.75.239.86

🇩🇪 161.35.222.101

🇺🇸 130.131.249.131

🇺🇸 130.131.220.154

🇨🇳 121.43.239.80

🇻🇳 103.116.39.175

🇳🇱 91.92.40.50

🇳🇱 45.148.10.147

🇰🇷 14.63.84.223

🇷🇺 5.206.111.208

🇲🇽 187.191.48.5