JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.167

104.207.53.167 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.167

Whois 104.207.53.167

IP Abuse Reports for 104.207.53.167:

This IP address has been reported a total of 141 times from 15 distinct sources. 104.207.53.167 was first reported on June 11th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Spiderpiggy	2026-05-22 20:15:26 (2 weeks ago)	Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoi ... show more Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoint: /wp-login.php show less	Brute-Force Bad Web Bot SSH
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇳🇱 homeshowdomain.nl	2026-03-02 22:59:27 (3 months ago)	Auto-ban: >3000 req/min op 2026-03-02	Web App Attack SSH Hacking
🇫🇮 Shaik Sai Meera	2025-12-09 04:30:11 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-06 11:42:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:42:40.966327 2025] [security2:error] [pid 12291:tid 12291] [client 104.207.53.167:38615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "glamorgirl.net"] [uri "/.svn/wc.db"] [unique_id "aTQWsO1E06V5RycFAI9aHAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 13:14:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:14:00.486726 2025] [security2:error] [pid 10711:tid 10711] [client 104.207.53.167:39037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "derekvantreese.com"] [uri "/.env"] [unique_id "aTLamINxI5itLyLnUNxWFAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:25:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:25:39.863806 2025] [security2:error] [pid 1406:tid 1492] [client 104.207.53.167:11609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deyyoungart.com"] [uri "/.env"] [unique_id "aTLBMwcKNvWm-eU-9V2vMgAAAQo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 06:30:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:30:54.801307 2025] [security2:error] [pid 24906:tid 24930] [client 104.207.53.167:14733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bostonnewsletter.com"] [uri "/.git/HEAD"] [unique_id "aTJ8HlGzorWkQ7OOrv4D9wAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 05:43:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:43:06.684941 2025] [security2:error] [pid 31559:tid 31559] [client 104.207.53.167:52047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "penisbreath.com"] [uri "/.git/HEAD"] [unique_id "aTJw6uI6Oma4Nru4OMyP1QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:55:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:55:49.859852 2025] [security2:error] [pid 12097:tid 12097] [client 104.207.53.167:55329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "secretsofbookpublishing.com"] [uri "/.env"] [unique_id "aTJJtYwmlLg389CriLBINAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 20:41:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 15:41:16.639193 2025] [security2:error] [pid 9012:tid 9012] [client 104.207.53.167:24411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mimitudordesigns.com"] [uri "/.git/HEAD"] [unique_id "aS9O7Nk7GlUoRlQAoDsC-gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 18:49:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 13:49:24.719013 2025] [security2:error] [pid 18061:tid 18061] [client 104.207.53.167:45587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roxieleigh.com"] [uri "/.env"] [unique_id "aS80tJgdywXrZcHxqtYy2AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:44:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:44:50.624492 2025] [security2:error] [pid 15926:tid 15926] [client 104.207.53.167:31145] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "samuelpaley.com"] [uri "/.git/HEAD"] [unique_id "aS6nAnXfla9ihP3-WWqs7QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:43:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:43:07.199193 2025] [security2:error] [pid 20406:tid 20406] [client 104.207.53.167:13019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "margroberts.com"] [uri "/.git/HEAD"] [unique_id "aS5uW_U6PxCj4D4TVEtnEwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:15:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:15:18.431682 2025] [security2:error] [pid 22760:tid 22760] [client 104.207.53.167:36269] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "syndetec.com"] [uri "/.svn/wc.db"] [unique_id "aS5n1sdsdFlB0-9FcyRsWwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 51.68.226.87

🇺🇸 47.251.35.109

🇳🇱 45.148.10.151

🇲🇳 203.23.199.88

🇸🇪 158.174.210.161

🇨🇳 123.4.226.192

🇺🇿 84.54.122.149

🇱🇹 77.90.185.230

🇺🇸 2604:a880:400:d1:0:4:8c07:1

🇺🇸 209.250.5.234

🇵🇰 182.180.154.234

🇩🇪 167.94.146.37

🇺🇸 157.254.174.96

🇨🇳 101.37.35.156

🇬🇧 45.82.76.109

🇺🇸 40.77.167.75

🇵🇦 190.97.165.93

🇸🇪 155.4.31.215

🇧🇩 118.179.89.81

🇮🇹 79.3.96.178