JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.52.176

104.207.52.176 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.52.176

Whois 104.207.52.176

IP Abuse Reports for 104.207.52.176:

This IP address has been reported a total of 125 times from 16 distinct sources. 104.207.52.176 was first reported on June 5th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-13 08:45:36 (5 months ago)	APTUDE WEBFORM SPAM 104.207.52.176 (104.207.52.176)	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:42 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-28 18:15:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 13:14:57.990181 2025] [security2:error] [pid 14222:tid 14222] [client 104.207.52.176:24553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yankeetownfishing.com"] [uri "/.env"] [unique_id "aVFzoaoVfZaI3QW9gTgwYwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 15:53:49 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 10:53:44.149095 2025] [security2:error] [pid 20099:tid 20099] [client 104.207.52.176:51799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "happyskinhappylife.com"] [uri "/.svn/wc.db"] [unique_id "aVFSiMFpwMKwDpJmQedZsQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 10:45:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 05:45:49.739407 2025] [security2:error] [pid 5151:tid 5151] [client 104.207.52.176:25035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lmffl.com"] [uri "/.env"] [unique_id "aVEKXTVX2SihIyze8NNoGgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 00:22:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 19:22:07.462563 2025] [security2:error] [pid 16193:tid 16193] [client 104.207.52.176:52921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jessicabaer.com"] [uri "/.git/HEAD"] [unique_id "aVB4L6otXkELasDaqXNVSAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 22:33:29 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 17:33:23.081743 2025] [security2:error] [pid 11412:tid 11412] [client 104.207.52.176:11151] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "familymailboxes.com"] [uri "/.git/HEAD"] [unique_id "aVBesyTKt_rPSAeiusa3MgAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 21:44:12 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 16:44:08.289516 2025] [security2:error] [pid 13282:tid 13282] [client 104.207.52.176:46583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abilityimprinting.com"] [uri "/.git/HEAD"] [unique_id "aVBTKJvCaX28fZSmXdnhvwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 madeit	2025-11-30 04:33:01 (6 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:54:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.176 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:54:09.846622 2025] [security2:error] [pid 32098:tid 32098] [client 104.207.52.176:9039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.technoware-lb.com"] [uri "/.git/HEAD"] [unique_id "aSVSkUfKAQIKk0nigyQZtAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-21 12:00:22 (6 months ago)	(From [email protected]) Interested in sending more organic visitors t ... show more (From [email protected]) Interested in sending more organic visitors to singerfamilychiropractic.com? Start your Free Trial. show less	Phishing Web Spam
🇺🇸 nowyouknow	2025-11-10 19:22:23 (7 months ago)	(From [email protected]) THE FASTEST WAY TO CREATE, PUBLISH, & PROFIT FROM EBOOKS… NO WRITING ... show more (From [email protected]) THE FASTEST WAY TO CREATE, PUBLISH, & PROFIT FROM EBOOKS… NO WRITING REQUIRED PROFIT-READY EBOOKS with covers, TOC, chapters, sections, links, images, & content! https://viewbet-24.site/eBookWriterAI to UNSUBSCRIBE: https://viewbet-24.site/unsubscribe?domain=jubileefamilychiropractic.com Address: 209 West Street Comstock Park, MI 49321 show less	Phishing Web Spam
🇺🇸 ChamberofCommerce.com	2025-11-08 15:46:09 (7 months ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇦🇺 oncord	2025-11-08 11:58:30 (7 months ago)	Form spam	Web Spam
🇩🇪 DEV-DNS	2025-11-04 04:25:24 (7 months ago)	(wordpress) Failed wordpress login from 104.207.52.176 (GB/United Kingdom/England/City of London/-/[ ... show more (wordpress) Failed wordpress login from 104.207.52.176 (GB/United Kingdom/England/City of London/-/[redacted]) show less	Brute-Force

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 209.50.185.112

🇪🇨 157.100.108.59

🇺🇸 98.90.43.197

🇳🇱 91.92.40.6

🇭🇰 8.210.75.108

🇺🇸 2600:3c03::f03c:93ff:fe80:6c16

🇧🇷 187.73.24.2

🇻🇳 115.78.9.138

🇵🇰 103.84.151.19

🇺🇬 102.85.15.109

🇳🇱 51.158.205.203

🇳🇱 45.148.10.141

🇺🇸 5.249.165.36

🇺🇸 209.50.163.204

🇧🇩 202.52.40.124

🇺🇸 162.216.149.67

🇬🇧 159.65.91.36

🇮🇳 152.32.158.219

🇷🇺 45.92.177.156

🇷🇺 45.92.177.13