JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.52.233

104.207.52.233 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.52.233

Whois 104.207.52.233

IP Abuse Reports for 104.207.52.233:

This IP address has been reported a total of 136 times from 16 distinct sources. 104.207.52.233 was first reported on June 22nd 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Spiderpiggy	2026-05-22 20:15:24 (1 week ago)	Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoi ... show more Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoint: /wp-login.php show less	Brute-Force Bad Web Bot SSH
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 myagent.site	2026-02-10 15:06:31 (3 months ago)	Blocking for trying to access an exploit file: /.env.local	Hacking
🇺🇸 TPI-Abuse	2026-02-10 06:27:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:27:50.554309 2026] [security2:error] [pid 17370:tid 17370] [client 104.207.52.233:34365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ikutabukkyokai.com"] [uri "/.env.save"] [unique_id "aYrP5s1MoK_T2WCuzjH6DwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kommunos	2026-02-10 06:22:10 (3 months ago)	/dev/.git/config	Web App Attack
Anonymous	2026-02-10 04:31:17 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-10 03:54:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:54:21.418562 2026] [security2:error] [pid 598832:tid 598832] [client 104.207.52.233:56961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kittyloveschai.com"] [uri "/app/.git/config"] [unique_id "aYqr7V_3bDc1O5HU6OhGaQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:54:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:54:48.509824 2026] [security2:error] [pid 1518:tid 1518] [client 104.207.52.233:51267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-brochures.com"] [uri "/.env.save"] [unique_id "aYqd-MZ2brSNVhzHam7ACQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 myintarweb	2026-02-10 02:53:40 (3 months ago)	104.207.52.233 - - [10/Feb/2026:02:53:39 +0000] 443 "GET /admin/.git/config HTTP/1.1" 404 5279 "-" " ... show more 104.207.52.233 - - [10/Feb/2026:02:53:39 +0000] 443 "GET /admin/.git/config HTTP/1.1" 404 5279 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:34:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:34:18.241287 2026] [security2:error] [pid 7325:tid 7325] [client 104.207.52.233:43049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kellermoving.com"] [uri "/app/.env"] [unique_id "aYpu-scoWw52ikRsYfkNeQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:44:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:44:12.938526 2026] [security2:error] [pid 835:tid 835] [client 104.207.52.233:45301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "houston-church-of-god.org"] [uri "/.git/config"] [unique_id "aYpjPNiDdkE853BMLUsnogAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xserverx.ru	2026-02-09 21:16:31 (3 months ago)	Honeypot triggered: IP: 104.207.52.233 Request to: https://horny-pot.ru/app/.git/config Method: GET ... show more Honeypot triggered: IP: 104.207.52.233 Request to: https://horny-pot.ru/app/.git/config Method: GET Host: horny-pot.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 Referer: Direct Country: DE ASN: Unknown Triggered rules: (\.git/\|\.gitignore\|\.git/config), /\.git Timestamp: 2026-02-09T21:16:31.169Z show less	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:44:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:44:41.655691 2026] [security2:error] [pid 7947:tid 7947] [client 104.207.52.233:14931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honigcpa.com"] [uri "/wp/.git/config"] [unique_id "aYpHOUQ8dG1__lKD5i43dAAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:55 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 octageeks.com	2025-12-24 05:06:29 (5 months ago)	Wordpress malicious attack:[octawp]	Web App Attack

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.231.89.196

🇺🇸 213.254.175.86

🇩🇪 213.209.159.108

🇧🇷 212.85.23.178

🇺🇸 172.239.71.245

🇺🇸 162.216.149.250

🇭🇰 103.43.191.43

🇺🇸 74.207.252.107

🇩🇪 51.75.149.221

🇫🇷 51.68.226.87

🇺🇸 24.44.98.41

🇺🇸 20.163.32.79

🇺🇸 18.216.128.142

🇺🇸 16.145.187.38

🇺🇸 3.144.166.116

🇷🇴 2.57.121.112

🇧🇷 177.52.83.51

🇳🇱 176.65.139.128

🇭🇰 165.154.62.128

🇭🇰 103.30.40.129