JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.32

104.207.53.32 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.32

Whois 104.207.53.32

IP Abuse Reports for 104.207.53.32:

This IP address has been reported a total of 135 times from 16 distinct sources. 104.207.53.32 was first reported on June 7th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 dcnet	2026-03-08 00:00:00 (2 months ago)	SSL VPN brute force credential stuffing on FortiGate 100F - unknown user login attempts	Hacking Brute-Force
🇩🇪 F242	2026-01-30 05:49:39 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
🇺🇸 myagent.site	2026-01-20 21:43:28 (4 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-11-26 08:53:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:53:10.331811 2025] [security2:error] [pid 19840:tid 19840] [client 104.207.53.32:40285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.amdavies15.com"] [uri "/.svn/wc.db"] [unique_id "aSa_9hGSV5tk-17r3iBClQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:08:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:07:58.933732 2025] [security2:error] [pid 26004:tid 26004] [client 104.207.53.32:49625] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.allisonannestudios.com"] [uri "/.svn/wc.db"] [unique_id "aSaZPveW_s4oac_YbfFXHwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:27:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:26:58.072562 2025] [security2:error] [pid 19198:tid 19198] [client 104.207.53.32:14407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.weddingmonogramnapkins.com"] [uri "/.env"] [unique_id "aSaPonW7kWrcCYzidpZ9mwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:21:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:21:12.105650 2025] [security2:error] [pid 14550:tid 14550] [client 104.207.53.32:47087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.brigittecavanagh.com"] [uri "/.svn/wc.db"] [unique_id "aSUSmPKrZfjB31D6-XdiZwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 12:00:04 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:28:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:28:06.879433 2025] [security2:error] [pid 3813:tid 3813] [client 104.207.53.32:25331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.wilcoxlawllc.com"] [uri "/.env"] [unique_id "aSQlJgq8VI_V262JRqCceQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:39:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:39:17.327738 2025] [security2:error] [pid 2128:tid 2128] [client 104.207.53.32:43915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.weathercarib.net"] [uri "/.svn/wc.db"] [unique_id "aSPvhTS6FZzTT_1wNOK6EwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:31:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:31:13.748781 2025] [security2:error] [pid 1820:tid 1820] [client 104.207.53.32:18591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gods-law.com"] [uri "/.git/HEAD"] [unique_id "aSPfke0kLzS_sNWX2z-b0wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:07:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:07:29.517671 2025] [security2:error] [pid 8930:tid 8930] [client 104.207.53.32:53797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.billymitchell.com"] [uri "/.git/HEAD"] [unique_id "aSPaATHhdd9QDMr4cV6OfQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-23 17:54:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 12:54:08.158883 2025] [security2:error] [pid 13323:tid 13323] [client 104.207.53.32:59473] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.highspringtradingpost.com"] [uri "/.git/config"] [unique_id "aSNKQHbZp1ThF8AWkm8XhwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 20:45:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 15:45:50.765440 2025] [security2:error] [pid 30436:tid 30436] [client 104.207.53.32:25663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.humandesignanalysis.org"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRTx_lclgEYurEMwDhC25AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-09-30 17:59:32 (8 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.53.32 (GB/United Kingdom/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.53.32 (GB/United Kingdom/-): 1 in the last 3600 secs show less	Web App Attack

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.76.248.54

🇵🇪 201.218.159.254

🇿🇦 197.234.147.2

🇬🇳 197.149.244.169

🇬🇧 193.163.125.59

🇧🇷 177.65.208.171

🇺🇸 157.245.1.7

🇩🇪 155.117.127.214

🇺🇸 150.107.38.168

🇨🇳 123.190.160.246

🇻🇳 103.81.87.161

🇺🇸 91.230.168.169

🇱🇹 81.30.98.62

🇷🇺 45.143.203.150

🇺🇸 20.169.83.157

🇷🇴 2.57.122.177

🇹🇳 196.176.117.172

🇺🇸 192.200.148.79

🇻🇪 190.72.230.207

🇷🇺 176.99.185.241