JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.215

104.207.51.215 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.215

Whois 104.207.51.215

IP Abuse Reports for 104.207.51.215:

This IP address has been reported a total of 134 times from 18 distinct sources. 104.207.51.215 was first reported on June 4th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-19 12:07:23 (1 week ago)	Brute force	Brute-Force
Anonymous	2026-06-09 07:10:12 (2 weeks ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇺 RedBear IT	2026-03-26 10:00:37 (3 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-30 15:34:08 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 10:33:58.132836 2025] [security2:error] [pid 8000:tid 8000] [client 104.207.51.215:53259] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nuevo.allcostaricarentals.com"] [uri "/.env"] [unique_id "aVPw5i13fy3tOFbmBY4HzgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 10:21:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 05:21:37.726045 2025] [security2:error] [pid 16703:tid 16703] [client 104.207.51.215:10215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.aliciagrant.com"] [uri "/.env"] [unique_id "aVOnsShNOq3eaG0YDZuBwgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ManagedStack	2025-12-30 06:45:02 (5 months ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:11:20 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:11:13.932757 2025] [security2:error] [pid 1295:tid 1295] [client 104.207.51.215:21461] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "musicrolls.com.player-care.com"] [uri "/.env"] [unique_id "aSaaAfInQxEtFfqabKcUmgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:31:29 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:31:26.001250 2025] [security2:error] [pid 28924:tid 28924] [client 104.207.51.215:14687] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.kinkycouple4u.com"] [uri "/.svn/wc.db"] [unique_id "aSaQriUP5-uGt-v-rIc4JQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:58:54 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:58:48.573875 2025] [security2:error] [pid 1448:tid 1448] [client 104.207.51.215:34085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.instepdogobedience.com"] [uri "/.git/HEAD"] [unique_id "aSZs6NrgJiY5cyaTK0357wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:19:24 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:19:11.610620 2025] [security2:error] [pid 20581:tid 20581] [client 104.207.51.215:49941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.guitarwisdom.com"] [uri "/.git/HEAD"] [unique_id "aSZVjxKSUVn9J2iOYTnB9QAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:53:40 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:53:35.287651 2025] [security2:error] [pid 8679:tid 8679] [client 104.207.51.215:32021] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.godarise.kidswow.com"] [uri "/.env"] [unique_id "aSZPj62Cq5-SR9rx9Xr88wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:40:38 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:40:32.192475 2025] [security2:error] [pid 23910:tid 23910] [client 104.207.51.215:39577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.embeddedtrade.com"] [uri "/.git/HEAD"] [unique_id "aSP94N6Ol1hQu8bdSxAEpgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:47:42 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:47:38.511248 2025] [security2:error] [pid 31838:tid 31838] [client 104.207.51.215:58695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.wiainvestigation.com"] [uri "/.git/HEAD"] [unique_id "aSPxegssesDcegiw4CnNnQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 23:00:34 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 104.207.51.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 18:00:20.315990 2025] [security2:error] [pid 7713:tid 7718] [client 104.207.51.215:57437] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.teresahagadorn.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.teresahagadorn.com"] [uri "/s3cmd.ini"] [unique_id "aRURhJXHm9fPUfMp4oxmKAAAAQE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 applemooz	2025-11-01 12:05:39 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.81

🇺🇸 76.133.97.153

🇳🇱 213.177.179.80

🇸🇬 194.61.41.8

🇬🇧 193.176.29.18

🇪🇨 190.155.74.6

🇲🇽 189.240.44.9

🇨🇳 180.76.234.93

🇧🇷 170.80.65.140

🇫🇮 147.185.133.238

🇹🇼 110.25.110.136

🇸🇪 89.253.90.113

🇳🇱 77.83.39.14

🇺🇸 206.221.176.60

🇳🇱 195.178.110.188

🇺🇸 194.104.8.140

🇻🇳 103.106.104.172

🇨🇦 99.227.84.173

🇷🇺 95.188.91.101

🇳🇱 91.92.40.48