JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.52.213

104.207.52.213 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.52.213

Whois 104.207.52.213

IP Abuse Reports for 104.207.52.213:

This IP address has been reported a total of 140 times from 17 distinct sources. 104.207.52.213 was first reported on June 13th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-04-18 08:40:43 (2 months ago)	[Sat Apr 18 10:40:42.950893 2026] [authz_core:error] [pid 560720:tid 560803] [remote 104.207.52.213: ... show more [Sat Apr 18 10:40:42.950893 2026] [authz_core:error] [pid 560720:tid 560803] [remote 104.207.52.213:10547] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-02-18 03:46:59 (4 months ago)	Try to access /dev/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 03:03:46 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 22:03:40.539306 2026] [security2:error] [pid 711402:tid 711402] [client 104.207.52.213:44569] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rewirenetworks.com"] [uri "/.env"] [unique_id "aZUsDKCRRWzE3CcYTbiiQgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 00:50:58 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:50:53.134948 2026] [security2:error] [pid 16659:tid 16659] [client 104.207.52.213:22285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulpasquali.com"] [uri "/wp/.git/config"] [unique_id "aZUM7e9kNwZF9YZOMwUOxAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 relianoid.com	2025-12-24 01:51:07 (5 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
Anonymous	2025-12-21 08:46:09 (5 months ago)	Attempted brute force login to web vpn 198 time(s); last attempt for 2025.12.21 is noted in report t ... show more Attempted brute force login to web vpn 198 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 23:11:22 (6 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.12.19 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-01 23:52:16 (6 months ago)	Attempted brute force login to web vpn 1010 time(s); last attempt for 2025.12.01 is noted in report ... show more Attempted brute force login to web vpn 1010 time(s); last attempt for 2025.12.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-30 23:23:25 (6 months ago)	Attempted brute force login to web vpn 975 time(s); last attempt for 2025.11.30 is noted in report t ... show more Attempted brute force login to web vpn 975 time(s); last attempt for 2025.11.30 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-27 23:06:51 (6 months ago)	Attempted brute force login to web vpn 2598 time(s); last attempt for 2025.11.27 is noted in report ... show more Attempted brute force login to web vpn 2598 time(s); last attempt for 2025.11.27 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-27 19:00:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:00:39.021882 2025] [security2:error] [pid 16107:tid 16107] [client 104.207.52.213:35581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "achildsspace.com"] [uri "/.svn/wc.db"] [unique_id "aSif1-_ShhIaoDzMQOTNiAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:42:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:42:50.179570 2025] [security2:error] [pid 10747:tid 10768] [client 104.207.52.213:13701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.bobchaos.com"] [uri "/.git/HEAD"] [unique_id "aSVP6l2GfO2s-Qdwr6eHnwAAAJA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:47:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:47:15.970841 2025] [security2:error] [pid 5104:tid 5104] [client 104.207.52.213:45305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.easternimport.com"] [uri "/.env"] [unique_id "aSUKo_aSZ--51DfC4QbUVgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-18 23:37:00 (7 months ago)	Attempted brute force login to web vpn 378 time(s); last attempt for 2025.11.18 is noted in report t ... show more Attempted brute force login to web vpn 378 time(s); last attempt for 2025.11.18 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-11-01 06:13:43 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇷 94.139.183.254

🇺🇸 216.180.246.129

🇳🇱 195.178.110.199

🇩🇪 193.124.20.243

🇬🇹 190.151.130.5

🇮🇹 185.77.50.128

🇧🇷 168.138.232.38

🇩🇪 167.94.145.28

🇺🇸 157.245.1.7

🇬🇧 86.142.254.162

🇷🇺 80.253.31.232

🇦🇱 77.242.19.240

🇺🇸 3.130.168.2

🇮🇳 182.95.176.122

🇺🇸 137.184.36.28

🇷🇺 109.63.134.29

🇺🇸 104.243.35.45

🇱🇻 95.182.80.111

🇳🇱 91.92.40.10

🇸🇪 78.70.227.169