JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.155

104.207.53.155 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 25%: ?

25%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.155

Whois 104.207.53.155

IP Abuse Reports for 104.207.53.155:

This IP address has been reported a total of 146 times from 17 distinct sources. 104.207.53.155 was first reported on June 12th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 LiftUp Hosting	2026-06-05 03:45:59 (3 days ago)	Honeypot hit: HTTP/1.1 request on 8546 POST / User-Agent: Go-http-client/1.1 Accept-Encoding: gzip ... show more Honeypot hit: HTTP/1.1 request on 8546 POST / User-Agent: Go-http-client/1.1 Accept-Encoding: gzip POST Data: {"jsonrpc":"2.0","method":"eth_chainId","params":[],"id":1}; 8546 [2] TCP show less	Hacking Bad Web Bot
🇺🇸 mnsf	2026-06-01 14:06:37 (6 days ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-05-28 00:29:25 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇮 as211431.net	2026-05-14 16:11:23 (3 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /index.php UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇮 as211431.net	2026-04-06 03:11:55 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /join UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-13 06:38:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:38:33.601386 2026] [security2:error] [pid 29632:tid 29654] [client 104.207.53.155:40321] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mecconsultant.com"] [uri "/admin/.env"] [unique_id "aY7G6RUXTk969RUcTNrUggAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 06:25:14 (3 months ago)	Blocking for trying to access an exploit file: /new/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-13 06:13:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:13:35.977019 2026] [security2:error] [pid 21834:tid 21866] [client 104.207.53.155:32637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcismanila.com"] [uri "/api/.env"] [unique_id "aY7BD0ROvpmJnDlW3uV9fAAAAQI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:14:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:14:04.539593 2026] [security2:error] [pid 14970:tid 14970] [client 104.207.53.155:43587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "matrixpercussiontrio.com"] [uri "/api/.env"] [unique_id "aY6zHLeeG9ZI9bbi1yjNBAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 05:07:14 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:57:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:57:48.288454 2026] [security2:error] [pid 2285880:tid 2285880] [client 104.207.53.155:28989] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "masterpiecemorgans.com"] [uri "/wp/.git/config"] [unique_id "aY6vTGIJuAv0H9iegEyynAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:20:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:20:31.280790 2026] [security2:error] [pid 17711:tid 17711] [client 104.207.53.155:64413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "martaaizenman.com"] [uri "/backup/.git/config"] [unique_id "aY6mj9M45sQqWfsFoMasSgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:39:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:39:06.183571 2026] [security2:error] [pid 12313:tid 12313] [client 104.207.53.155:23751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mandel.vc"] [uri "/.env"] [unique_id "aY6Oyks4gSDlacEUUfx08AAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:59:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:59:27.499951 2026] [security2:error] [pid 30827:tid 30827] [client 104.207.53.155:14647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "makaihe.com"] [uri "/dev/.git/config"] [unique_id "aY6FfxSBbu3SnUkEva-vMQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:25:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.155 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:25:22.075041 2026] [security2:error] [pid 245739:tid 245739] [client 104.207.53.155:14637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deandobkin.com"] [uri "/.env"] [unique_id "aY4NAr6gbEG9uMqWn3RZfgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.85

🇺🇸 172.214.209.153

🇨🇳 106.111.115.127

🇻🇳 103.205.98.76

🇷🇴 92.118.39.236

🇸🇬 34.177.102.54

🇩🇪 212.132.120.41

🇧🇴 190.181.4.12

🇮🇳 182.78.70.98

🇩🇪 167.94.145.22

🇳🇱 85.121.55.197

🇱🇹 81.30.98.44

🇷🇺 78.138.168.46

🇳🇱 45.148.10.240

🇩🇪 43.158.113.225

🇵🇰 39.46.159.61

🇨🇳 27.8.127.104

🇻🇳 14.191.113.244

🇳🇱 212.107.27.243

🇫🇷 185.177.72.12