JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.52.92

104.207.52.92 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.52.92

Whois 104.207.52.92

IP Abuse Reports for 104.207.52.92:

This IP address has been reported a total of 149 times from 19 distinct sources. 104.207.52.92 was first reported on June 20th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 HandyTreff.de	2026-05-23 18:50:39 (1 week ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -37.052 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -37.052 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.3 show less	Web App Attack Bad Web Bot
🇦🇺 MAGIC	2026-02-27 01:15:41 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇳🇱 jjnxpct	2026-02-16 04:54:23 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /test/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇪🇸 masterguru	2026-02-15 12:31:26 (3 months ago)	Restricted File Access Attempt. Matched phrase "/.git/" at REQUEST_FILENAME. (930130-122)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:01:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:01:53.425896 2026] [security2:error] [pid 12357:tid 12357] [client 104.207.52.92:59215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pamelalambert.com"] [uri "/app/.git/config"] [unique_id "aZG1sSHgNsYWQKWYqkgtKwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇪 SkyDancer	2026-02-15 11:35:45 (3 months ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-15 10:57:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:57:34.461965 2026] [security2:error] [pid 23011:tid 23011] [client 104.207.52.92:16483] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "osmansirel.com"] [uri "/.env.production"] [unique_id "aZGmnqnCS6_ZQeP6Cg1FWQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 paissangroup	2026-02-15 06:41:11 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:42:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:42:35.328396 2026] [security2:error] [pid 19642:tid 19642] [client 104.207.52.92:28273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scandicakes.com"] [uri "/.env.save"] [unique_id "aZFcy3c178KmB45WPoPLFQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:24:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:24:51.433214 2026] [security2:error] [pid 9322:tid 9322] [client 104.207.52.92:25345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nue18.com"] [uri "/wp/.git/config"] [unique_id "aZFKk2IrsmT2MpVt3bGlBAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:47:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:46:53.779266 2026] [security2:error] [pid 10652:tid 10652] [client 104.207.52.92:18667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portfoliolighting.net"] [uri "/api/.git/config"] [unique_id "aZFBrVH21J-o-j7tEZmMbwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:31:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:31:39.923067 2026] [security2:error] [pid 4284:tid 4284] [client 104.207.52.92:54167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nolaanime.com"] [uri "/.env.local"] [unique_id "aZE-G_MODfDhxnUnvSb5KwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:42:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:42:04.279450 2026] [security2:error] [pid 20313:tid 20313] [client 104.207.52.92:38355] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "russellzone.com"] [uri "/frontend/.env"] [unique_id "aZEyfIucu38_B8MFY3RZ7gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:17:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:17:06.438705 2026] [security2:error] [pid 22655:tid 22655] [client 104.207.52.92:38137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "platformintelligence.com"] [uri "/backend/.env"] [unique_id "aZEsomoPCAFQ3Fg0T58SfQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:32:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.52.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:32:12.470256 2026] [security2:error] [pid 2170:tid 2255] [client 104.207.52.92:10933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nederbragt.net"] [uri "/app/.env"] [unique_id "aZEiHGK04aBCi-tiI-BDFAAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 184.105.247.244

🇹🇭 184.22.113.190

🇳🇱 64.225.74.178

🇨🇳 39.96.178.211

🇷🇴 2.57.121.112

🇺🇸 2607:f8b0:4001:c76::129

🇺🇸 192.142.2.40

🇮🇳 182.95.187.22

🇹🇼 180.176.176.116

🇧🇷 177.128.8.123

🇮🇳 122.187.251.73

🇰🇷 116.34.14.135

🇺🇸 104.237.246.35

🇷🇺 79.143.29.28

🇯🇵 61.86.148.52

🇳🇱 45.148.10.183

🇩🇪 213.209.159.227

🇧🇪 198.235.24.248

🇲🇿 197.219.210.94

🇫🇷 185.255.126.2