JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.52.182

104.207.52.182 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.52.182

Whois 104.207.52.182

IP Abuse Reports for 104.207.52.182:

This IP address has been reported a total of 132 times from 15 distinct sources. 104.207.52.182 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-04-17 23:01:59 (1 month ago)	[Sat Apr 18 01:01:58.167211 2026] [authz_core:error] [pid 560721:tid 560780] [remote 104.207.52.182: ... show more [Sat Apr 18 01:01:58.167211 2026] [authz_core:error] [pid 560721:tid 560780] [remote 104.207.52.182:16033] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:43:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:43:23.501869 2026] [security2:error] [pid 2787223:tid 2787223] [client 104.207.52.182:25093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leadek.com"] [uri "/new/.git/config"] [unique_id "aY8qe49KrdGSw5A3q18wcAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 MM-bot	2026-02-13 13:31:35 (3 months ago)	URL-probe: HTTP/1.1 GET request on /admin/.env (2026-02-13 14:31:35 UTC+1)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:14:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:14:04.167036 2026] [security2:error] [pid 28909:tid 28909] [client 104.207.52.182:40049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mikeziegler.com"] [uri "/admin/.git/config"] [unique_id "aY8jnBNntiXzyfGnK2iyxAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 12:41:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:41:17.334638 2026] [security2:error] [pid 7056:tid 7056] [client 104.207.52.182:27637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microdot.net"] [uri "/backend/.env"] [unique_id "aY8b7TCOcDd94PKrmf2mBwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-13 09:31:40 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.52.182 (GB/United Kingdom/-)	SQL Injection
🇺🇸 mnsf	2026-02-13 09:05:43 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:03:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:03:24.819662 2026] [security2:error] [pid 2584425:tid 2584425] [client 104.207.52.182:18283] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "memelearning.net"] [uri "/frontend/.env"] [unique_id "aY7azE3s4fsK4t6W_H8KkAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 0x44	2026-02-13 07:13:25 (3 months ago)	104.207.52.182 [13/Feb/2026] * Spam host detected, probing for vulnerabilities	Web Spam Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:10:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:10:09.037716 2026] [security2:error] [pid 2637298:tid 2637298] [client 104.207.52.182:45755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maths-teacher-in-phnom-penh.com"] [uri "/.env.save"] [unique_id "aY6yMVUzmKQkz08J2o7qBAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:45:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:45:41.677682 2026] [security2:error] [pid 2055918:tid 2055918] [client 104.207.52.182:44277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mainefirst.org"] [uri "/test/.git/config"] [unique_id "aY6CRTpaK9c4U6bkRpnq6AAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:52:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:51:58.262748 2026] [security2:error] [pid 10655:tid 10757] [client 104.207.52.182:57433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "djkirby.com"] [uri "/.env"] [unique_id "aY4TPtBoxMFZK3qlCroyAQAAAI0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:26:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:26:02.202430 2026] [security2:error] [pid 7548:tid 7548] [client 104.207.52.182:16763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drpeppard.com"] [uri "/.git/config"] [unique_id "aY3_GgWmCrLwSZIOlxzfIgAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 15:53:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:53:17.507778 2026] [security2:error] [pid 7348:tid 7348] [client 104.207.52.182:24727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "desertedge.band"] [uri "/.git/config"] [unique_id "aY33bfpT6dGVsOA6EekevgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 09:00:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.182 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 04:00:52.553419 2026] [security2:error] [pid 3316323:tid 3316323] [client 104.207.52.182:29371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gdhlgroup.com"] [uri "/.env.production"] [unique_id "aY2WxMONOZNNpnGXknNsmAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 220.88.220.59

🇳🇱 212.192.240.126

🇩🇪 139.59.208.49

🇮🇩 128.14.232.254

🇻🇳 116.99.169.49

🇱🇹 81.30.98.44

🇺🇸 45.79.214.122

🇺🇸 20.64.104.164

🇮🇪 3.255.75.157

🇳🇱 185.223.235.12

🇻🇳 152.32.163.183

🇨🇳 115.190.211.2

🇨🇳 115.59.43.176

🇨🇳 114.219.157.97

🇺🇸 104.206.162.130

🇮🇩 103.26.188.11

🇰🇷 59.21.37.60

🇻🇳 27.79.6.12

🇪🇪 196.196.254.85

🇨🇳 180.76.225.175