JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.172

104.207.51.172 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.172

Whois 104.207.51.172

IP Abuse Reports for 104.207.51.172:

This IP address has been reported a total of 133 times from 19 distinct sources. 104.207.51.172 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇱🇻 garmtech.com	2026-03-09 01:10:20 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇪🇸 librebit	2026-02-25 02:55:31 (3 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-01-15 09:18:11 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 04:18:06.810496 2026] [security2:error] [pid 7779:tid 7779] [client 104.207.51.172:23059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ticmatopografiaeingenieria.com"] [uri "/.git/HEAD"] [unique_id "aWiwzobsgdvZ8qEVXRxdnQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-01-13 11:55:42 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇧🇪 voormedia	2026-01-12 14:23:38 (5 months ago)	Accessed trap at '/.git/HEAD'	Web App Attack
🇺🇸 TPI-Abuse	2026-01-08 14:04:17 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 08 09:04:10.648168 2026] [security2:error] [pid 1636:tid 1636] [client 104.207.51.172:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "globetechsecurities.com"] [uri "/.svn/wc.db"] [unique_id "aV-5Wo3gPIB6WEbhTrLTGgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-30 20:36:13 (5 months ago)	"GET /.git/HEAD HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 10:21:51 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 05:21:41.998812 2025] [security2:error] [pid 16427:tid 16427] [client 104.207.51.172:21065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.dodgersboosterclub.com"] [uri "/.svn/wc.db"] [unique_id "aVOntYvqYx-5HEJgAK1nyAAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:51:57 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:51:52.085322 2025] [security2:error] [pid 24352:tid 24352] [client 104.207.51.172:19063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "diceknobs.com"] [uri "/.git/HEAD"] [unique_id "aVIW-JtQFau5XYbbp4L5qwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:48:49 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:48:41.088264 2025] [security2:error] [pid 25677:tid 25677] [client 104.207.51.172:51761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beansidhesbrits.com"] [uri "/.git/HEAD"] [unique_id "aVIIKSoocJ02d-rtHz_E6QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:56:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.172 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:56:25.385878 2025] [security2:error] [pid 16122:tid 16122] [client 104.207.51.172:54851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cydab.com"] [uri "/.env"] [unique_id "aVH76ekhrONRTqTTd1NhcAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-12-14 22:00:08 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇬🇧 SilverZippo	2025-12-01 20:29:41 (6 months ago)	Web App Attack	Web App Attack
Anonymous	2025-11-07 07:50:36 (7 months ago)	[redacted] 104.207.51.172 - - [07/Nov/2025:08:50:21 +0100] "POST /xmlrpc.php HTTP/2.0" 200 448 "-" " ... show more [redacted] 104.207.51.172 - - [07/Nov/2025:08:50:21 +0100] "POST /xmlrpc.php HTTP/2.0" 200 448 "-" "Mozilla/4.0 (compatible; MSIE 5.5; Windows 98; Win 9x 4.90)" [redacted] 104.207.51.172 - - [07/Nov/2025:08:50:23 +0100] "POST /xmlrpc.php HTTP/2.0" 200 448 "-" "Mozilla/5.0 (iPad; CPU OS 7_0_3 like Mac OS X) AppleWebKit/537.51.1 (KHTML, like Gecko) Version/7.0 Mobile/11B511 Safari/9537.53" [redacted] 104.207.51.172 - - [07/Nov/2025:08:50:24 +0100] "POST /xmlrpc.php HTTP/2.0" 200 448 "-" "Mozilla/5.0 (iPad; CPU OS 11_2_5 like Mac OS X) AppleWebKit/604.5.6 (KHTML, like Gecko) Version/11.0 Mobile/15D60 Safari/604.1" [redacted] 104.207.51.172 - - [07/Nov/2025:08:50:26 +0100] "POST /xmlrpc.php HTTP/2.0" 200 448 "-" "Mozilla/5.0 (iPad; CPU OS 7_1 like Mac OS X) AppleWebKit/537.51.2 (KHTML, like Gecko) Version/7.0 Mobile/11D167 Safari/9537.53" [redacted] 104.207.51.172 - - [07/Nov/2025:08:50:27 +0100] "POST /xmlrpc.php HTTP/2.0" 200 448 "-" "Mozilla/4.0 (compat ... show less	Hacking Web App Attack

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.192

🇬🇧 104.248.161.154

🇸🇰 46.151.198.72

🇺🇸 45.156.129.57

🇺🇸 23.21.175.228

🇺🇸 3.173.21.63

🇮🇳 223.185.53.158

🇨🇳 218.25.89.208

🇯🇵 202.172.25.41

🇭🇰 199.45.154.190

🇺🇸 147.185.132.252

🇮🇳 122.170.100.253

🇭🇰 114.111.52.109

🇨🇳 60.220.241.50

🇸🇬 47.84.129.223

🇸🇬 43.153.194.220

🇳🇱 5.187.35.142

🇺🇸 3.17.157.181

🇺🇸 199.96.166.234

🇧🇷 191.233.234.186