JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.179

104.207.53.179 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.179

Whois 104.207.53.179

IP Abuse Reports for 104.207.53.179:

This IP address has been reported a total of 143 times from 19 distinct sources. 104.207.53.179 was first reported on June 22nd 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-05-01 22:30:27 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/104.207.53.179 2026-05 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/104.207.53.179 2026-05-01 18:13:51 / 2026-05-01 18:16:27 / show less	Web App Attack
Anonymous	2026-02-15 06:08:02 (4 months ago)	Bot / scanning and/or hacking attempts: GET /admin/.env HTTP/1.1, GET /config/.env HTTP/1.1, GET /ba ... show more Bot / scanning and/or hacking attempts: GET /admin/.env HTTP/1.1, GET /config/.env HTTP/1.1, GET /backend/.env HTTP/1.1, GET /.git/config HTTP/1.1, GET /.env.production HTTP/1.1, GET /.env HTTP/1.1, GET /api/.env HTTP/1.1, GET /frontend/.env HTTP/1.1, GET /app/.env HTTP/1.1, GET /.env.local HTTP/1.1, GET /v2/.git/config HTTP/1.1, GET /dev/.git/config HTTP/1.1, GET /.env.save HTTP/1.1, GET /admin/.git/config HTTP/1.1, GET /.env.staging HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:48:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:47:53.850760 2026] [security2:error] [pid 11707:tid 11707] [client 104.207.53.179:12713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prodivediving.com"] [uri "/test/.git/config"] [unique_id "aZFeCRhCu52HFgBT_shQSAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 05:18:25 (4 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:09:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:09:11.930623 2026] [security2:error] [pid 8096:tid 8096] [client 104.207.53.179:18601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "satanisdead.com"] [uri "/.env"] [unique_id "aZFU91DiV25IAYf-oYVDgQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:10:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:10:36.171501 2026] [security2:error] [pid 13850:tid 13850] [client 104.207.53.179:13359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerkiteforum.com"] [uri "/new/.git/config"] [unique_id "aZFHPCvMQzKnRLCZyhGcygAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2026-02-15 03:55:29 (4 months ago)	/backup/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:47:08 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:47:01.976581 2026] [security2:error] [pid 14007:tid 14007] [client 104.207.53.179:40823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "northamericantrucking.com"] [uri "/test/.git/config"] [unique_id "aZFBtYdyQCLPAwglqw_5OwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:20:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:20:40.196846 2026] [security2:error] [pid 31496:tid 31496] [client 104.207.53.179:44891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "no504.com"] [uri "/api/.env"] [unique_id "aZE7iOchxlcONoIvPH0-nQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-15 03:02:17 (4 months ago)	http-sensitive-files - IP: 104.207.53.179 - time="2026-02-15T04:02:17+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 104.207.53.179 - time="2026-02-15T04:02:17+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.53.179 (GB/200373) : 4h ban on Ip 104.207.53.179" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:39:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:39:17.207494 2026] [security2:error] [pid 9139:tid 9139] [client 104.207.53.179:24755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nhglassmakers.org"] [uri "/.env.staging"] [unique_id "aZEx1QX5EDUiK2x4G7_X2AAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:55:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:55:40.201333 2026] [security2:error] [pid 5962:tid 5962] [client 104.207.53.179:34785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "networkmediasoftware.com"] [uri "/api/.env"] [unique_id "aZEnnPQifFmjGq2EC76g-QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:29:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:29:06.468356 2026] [security2:error] [pid 25130:tid 25130] [client 104.207.53.179:29757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rondeal.com"] [uri "/site/.git/config"] [unique_id "aZEhYox3Jaw00PNqmhkSxQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:12:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:12:42.031769 2026] [security2:error] [pid 7438:tid 7438] [client 104.207.53.179:54057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naturopathicsource.com"] [uri "/wp/.git/config"] [unique_id "aZEditQlrNztjPLjCX1vJQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:56:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.179 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:56:47.675550 2026] [security2:error] [pid 4231:tid 4231] [client 104.207.53.179:62821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "photojeniq.com"] [uri "/backup/.git/config"] [unique_id "aZEZz6hgYRCsksovQzsMAAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 210.4.68.73

🇩🇪 167.94.146.47

🇺🇸 159.148.126.176

🇪🇸 92.172.17.56

🇺🇸 71.6.135.131

🇧🇷 45.165.14.197

🇫🇷 2a05:d012:54b:1d00:20e5:738f:55d1:5616

🇨🇳 220.189.196.134

🇩🇪 213.209.159.231

🇧🇪 198.235.24.183

🇬🇧 188.29.127.100

🇦🇷 186.13.208.170

🇳🇱 185.242.226.19

🇺🇸 154.26.184.99

🇨🇳 111.53.189.3

🇰🇪 102.205.85.11

🇰🇷 59.21.37.60

🇸🇬 35.187.231.181

🇷🇺 5.164.6.184

🇰🇿 185.234.25.200