JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.45

104.207.51.45 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.45

Whois 104.207.51.45

IP Abuse Reports for 104.207.51.45:

This IP address has been reported a total of 141 times from 22 distinct sources. 104.207.51.45 was first reported on June 4th 2024, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Bedios GmbH	2026-06-10 00:47:44 (10 hours ago)	SQL backup theft attempt	Hacking
🇩🇪 4server	2026-04-21 07:39:38 (1 month ago)	[TueApr2109:39:32.9197182026][security2:error][pid3025238:tid3025269][client104.207.51.45:0]ModSecur ... show more [TueApr2109:39:32.9197182026][security2:error][pid3025238:tid3025269][client104.207.51.45:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"beyondsecurity.ch\"][uri\"/data.sql\"][unique_id\"aecptJrE_IcxiUza34QV8wAAABU\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 masterguru	2026-04-02 05:50:50 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.51.45 (GB/United Kingdom/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.51.45 (GB/United Kingdom/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇱🇻 garmtech.com	2026-03-29 14:26:30 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇪🇨 icp77	2026-03-19 16:08:00 (2 months ago)	Abuse DDoS	DDoS Attack Port Scan Brute-Force Exploited Host Web App Attack SSH FTP Brute-Force Hacking SQL Injection
🇺🇸 TPI-Abuse	2026-02-19 04:22:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:22:48.428020 2026] [security2:error] [pid 26118:tid 26118] [client 104.207.51.45:51561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "klingandi.com"] [uri "/v2/.git/config"] [unique_id "aZaQGBXzmgUPJQ3QIXsL3AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-19 04:05:20 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:56:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:56:20.333502 2026] [security2:error] [pid 1797577:tid 1797590] [client 104.207.51.45:46869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kemalinal.com"] [uri "/.env.local"] [unique_id "aZZ71IgQ-ghje_JnZwfPdwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:38:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:38:16.864692 2026] [security2:error] [pid 21153:tid 21153] [client 104.207.51.45:45135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keaborner.com"] [uri "/v2/.git/config"] [unique_id "aZZ3mNB9tdw09a6PXprrUgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:15:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:15:31.344225 2026] [security2:error] [pid 31974:tid 31974] [client 104.207.51.45:38683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "transportadoresaereos.com"] [uri "/dev/.git/config"] [unique_id "aZYd4wT0XvzxytJ9wdgFqQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 19:41:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 14:41:39.853650 2026] [security2:error] [pid 7580:tid 7580] [client 104.207.51.45:50869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tonyvillanueva.com"] [uri "/v2/.git/config"] [unique_id "aZYV87fNbvGb_Jqh2HlwuwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:48:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:48:42.921747 2026] [security2:error] [pid 30390:tid 30390] [client 104.207.51.45:22361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thoughtworm.com"] [uri "/.env.local"] [unique_id "aZYJit_uVM5e-L5v56rt2QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2026-02-18 13:06:03 (3 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:01:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.45 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:01:29.274686 2026] [security2:error] [pid 25720:tid 25720] [client 104.207.51.45:55715] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wastetrack.io"] [uri "/api/.git/config"] [unique_id "aZWqGXP8Jih7cpt6ruxe4AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:40:11 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.84.100.132

🇧🇬 79.124.62.126

🇷🇺 213.33.134.158

🇯🇵 212.32.76.27

🇨🇱 200.89.69.247

🇲🇽 189.238.102.82

🇲🇽 189.203.178.180

🇳🇱 93.123.109.128

🇮🇷 79.175.176.177

🇺🇸 74.208.38.160

🇺🇸 65.49.1.32

🇫🇷 46.105.28.235

🇳🇱 45.148.10.152

🇳🇱 45.148.10.147

🇬🇧 34.39.97.107

🇮🇹 2.228.82.80

🇺🇸 207.90.244.19

🇷🇴 193.32.162.16

🇲🇽 187.144.76.60

🇳🇬 105.114.15.2