JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.114

104.207.53.114 was found in our database!

This IP was reported 118 times. Confidence of Abuse is 17%: ?

17%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.114

Whois 104.207.53.114

IP Abuse Reports for 104.207.53.114:

This IP address has been reported a total of 118 times from 19 distinct sources. 104.207.53.114 was first reported on June 7th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 paulshipley.com.au	2026-06-14 18:23:29 (5 days ago)	[Mon Jun 15 04:23:28.438600 2026] [security2:error] [pid 9823] [client 104.207.53.114:55833] [client ... show more [Mon Jun 15 04:23:28.438600 2026] [security2:error] [pid 9823] [client 104.207.53.114:55833] [client 104.207.53.114] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "levellapromotions.com.au"] [uri "/xmlrpc.php"] [unique_id "ai7xoKxg9t4LJZ7imKnPSAAAAAw"] ... show less	Web App Attack
🇩🇪 Axel	2026-05-26 00:28:46 (3 weeks ago)	[2026-05-26 00:28:46 UTC] Honeypot WebLogic connection attempt \| AXFRA HONEYPOT	Web App Attack
🇺🇸 nationaleventpros.com	2026-05-23 13:42:41 (4 weeks ago)	WordPress login attempt	Brute-Force
🇮🇹 VHosting	2026-02-24 10:55:08 (3 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇩🇪 kjaerulff	2026-02-22 12:50:37 (3 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇵🇱 sefinek.net	2026-01-03 02:21:38 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:57 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-24 09:16:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:16:18.640810 2025] [security2:error] [pid 14927:tid 14927] [client 104.207.53.114:12381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hollyndlaw.com"] [uri "/.env"] [unique_id "aSQiYqdHyXWYh6p3cL0ZIwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 05:40:01 (6 months ago)	suspicious request in access.log	Web App Attack
Anonymous	2025-04-06 23:03:02 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 11:03:58 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 10:05:04 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 21:48:41 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-02 19:14:28 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.02 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.02 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-01 18:20:01 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.01 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.01 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 118 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 165.227.39.235

🇮🇩 103.191.92.72

🇩🇪 69.5.169.105

🇳🇱 45.148.10.151

🇷🇴 2.57.121.25

🇩🇪 139.19.117.131

🇺🇸 44.133.30.251

🇺🇸 34.174.171.35

🇷🇺 5.141.84.102

🇷🇺 104.28.246.126

🇵🇰 72.255.3.175

🇫🇷 51.38.52.76

🇺🇸 44.145.145.70

🇨🇳 39.100.70.249

🇨🇭 35.216.195.77

🇳🇱 176.65.148.215

🇺🇸 170.187.163.117

🇺🇸 165.154.163.182

🇺🇸 162.216.149.251

🇺🇸 91.230.168.203