JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.26

104.207.51.26 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.26

Whois 104.207.51.26

IP Abuse Reports for 104.207.51.26:

This IP address has been reported a total of 132 times from 14 distinct sources. 104.207.51.26 was first reported on June 14th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 oncord	2025-12-28 05:27:33 (5 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-25 05:28:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:28:07.787114 2025] [security2:error] [pid 24662:tid 24662] [client 104.207.51.26:35317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.mrbss.com"] [uri "/.env"] [unique_id "aSU-ZyFxMZt1oQGETUjnOAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:08:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:08:32.583908 2025] [security2:error] [pid 7541:tid 7541] [client 104.207.51.26:10237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sprek.net"] [uri "/.env"] [unique_id "aSUrwHJqPGn_nfclN6Y8wQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:49:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:49:08.981684 2025] [security2:error] [pid 1621:tid 1621] [client 104.207.51.26:13871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.demodexcure.com"] [uri "/.git/HEAD"] [unique_id "aSUnNAg8bC3STVsqWGHnMAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:30:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:30:19.319659 2025] [security2:error] [pid 20237:tid 20237] [client 104.207.51.26:33133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.casademunt.com"] [uri "/.env"] [unique_id "aSUUu5JxfRwRmpheKPRtPQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:41:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:41:47.364082 2025] [security2:error] [pid 22966:tid 22966] [client 104.207.51.26:32589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mirandaracewalks.com"] [uri "/.svn/wc.db"] [unique_id "aSUJW8fZAFPnjEMnMhBfZAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-25 01:32:41 (6 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-11-25 01:13:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.26 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:13:43.547236 2025] [security2:error] [pid 8699:tid 8699] [client 104.207.51.26:23433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.clearlakelots.com"] [uri "/.git/HEAD"] [unique_id "aSUCx2EjDkzN9WtedZb2GAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-10-19 10:58:39 (7 months ago)	Form spam	Web Spam
Anonymous	2025-10-12 20:25:48 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-10-11 06:46:08 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.11 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 21:47:15 (7 months ago)	Attempted brute force login to web vpn 216 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 216 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-09 22:55:42 (7 months ago)	Attempted brute force login to web vpn 145 time(s); last attempt for 2025.10.09 is noted in report t ... show more Attempted brute force login to web vpn 145 time(s); last attempt for 2025.10.09 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-08 22:48:29 (7 months ago)	Attempted brute force login to web vpn 216 time(s); last attempt for 2025.10.08 is noted in report t ... show more Attempted brute force login to web vpn 216 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇪 190.117.96.174

🇺🇸 62.132.18.53

🇺🇿 213.230.87.251

🇦🇹 159.100.24.182

🇺🇸 147.185.132.227

🇮🇳 143.110.177.177

🇮🇳 139.59.30.229

🇻🇳 116.110.0.137

🇮🇹 109.53.129.82

🇺🇸 64.227.109.89

🇧🇷 177.22.41.167

🇨🇳 101.96.200.79

🇯🇵 54.248.17.61

🇳🇱 45.87.43.112

🇳🇱 5.255.121.146

🇺🇸 216.25.89.78

🇨🇳 180.116.57.246

🇺🇸 172.237.136.85

🇩🇪 167.94.146.44

🇨🇳 120.76.98.153