JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.244

104.207.53.244 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 19%: ?

19%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.244

Whois 104.207.53.244

IP Abuse Reports for 104.207.53.244:

This IP address has been reported a total of 145 times from 23 distinct sources. 104.207.53.244 was first reported on June 4th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-05-30 03:36:37 (1 week ago)	Fail2Ban banned 104.207.53.244 for security violations in jail wp-armour. Log: 2026/05/30 03:36:37 [ ... show more Fail2Ban banned 104.207.53.244 for security violations in jail wp-armour. Log: 2026/05/30 03:36:37 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.53.244 \| Target: wplogin" , client: 104.207.53.244, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇱🇻 garmtech.com	2026-05-26 23:27:49 (1 week ago)	IM360 WAF: Prohibited WordPress username login/registration	Web App Attack
🇺🇸 lostswordfish.com	2026-05-23 10:42:04 (2 weeks ago)	Wordfence waf block on jestrellafoundation	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 08:45:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 03:45:38.926957 2026] [security2:error] [pid 4921:tid 4921] [client 104.207.53.244:59841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aschmidtconsulting.com"] [uri "/api/.git/config"] [unique_id "aY2TMmNDJLdq9ZAMRLMI-QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 05:20:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 00:20:15.511972 2026] [security2:error] [pid 10831:tid 10831] [client 104.207.53.244:37731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artisticheadstones.com"] [uri "/api/.git/config"] [unique_id "aY1jDyi7-CqOsY07RySEYAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2026-02-11 04:52:56 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /test/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
Anonymous	2026-02-11 04:31:15 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-10 16:10:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 11:09:58.097593 2026] [security2:error] [pid 29672:tid 29676] [client 104.207.53.244:54421] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "12am.com"] [uri "/admin/.env"] [unique_id "aYtYVmqmJhIz38r7Ayr3KwAAAUE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:49:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:49:31.825975 2026] [security2:error] [pid 19995:tid 19995] [client 104.207.53.244:15363] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koolstra.net"] [uri "/api/.env"] [unique_id "aYrU-5Q_jx0qJUqkGRzbVwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:38:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:38:24.185594 2026] [security2:error] [pid 18023:tid 18023] [client 104.207.53.244:9787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ibcnu.com"] [uri "/test/.git/config"] [unique_id "aYqoMHfY_x7Qy7vrTO9EnAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:50:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:50:25.063430 2026] [security2:error] [pid 32208:tid 32217] [client 104.207.53.244:38401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "humaehealth.com"] [uri "/frontend/.env"] [unique_id "aYqA0TLjGA96x6QIS84OGAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-09 23:00:00 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-09 20:52:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:51:54.590196 2026] [security2:error] [pid 1444389:tid 1444389] [client 104.207.53.244:12709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hookedupfishing.net"] [uri "/admin/.git/config"] [unique_id "aYpI6kyi5S87bPRcgXyxzgAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:42:14 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇦🇺 oncord	2025-10-08 08:00:41 (7 months ago)	Form spam	Web Spam

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2001:470:1:332::26

🇮🇩 182.9.161.174

🇳🇱 176.65.139.254

🇺🇸 172.71.170.172

🇧🇯 154.127.35.68

🇺🇸 147.185.132.70

🇨🇳 113.102.237.67

🇰🇬 77.235.20.52

🇺🇸 64.62.197.95

🇺🇸 64.62.156.66

🇨🇳 27.10.216.156

🇨🇦 20.116.34.103

🇩🇪 213.209.159.175

🇳🇱 176.65.139.56

🇧🇬 93.94.141.115

🇬🇧 89.37.172.133

🇷🇴 80.94.95.242

🇮🇳 49.42.248.41

🇸🇬 47.79.193.159

🇳🇱 45.148.10.240