JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.4

104.207.53.4 was found in our database!

This IP was reported 80 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.4

Whois 104.207.53.4

IP Abuse Reports for 104.207.53.4:

This IP address has been reported a total of 80 times from 15 distinct sources. 104.207.53.4 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-01 17:26:53 (3 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:41 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇩🇪 Vegascosmetics	2025-12-02 22:50:14 (6 months ago)	Kingcopy(AI-IDS):IP does Multiple AWS Environment Abuse	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 22:06:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:06:51.444467 2025] [security2:error] [pid 6252:tid 6252] [client 104.207.53.4:54209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stefaneder.com"] [uri "/.svn/wc.db"] [unique_id "aS9i-2nDe_WtZaZnWNOBqgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 17:27:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 12:27:05.787622 2025] [security2:error] [pid 32181:tid 32206] [client 104.207.53.4:25299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ahmedalbanna.com"] [uri "/.git/HEAD"] [unique_id "aS8hadmyicOVKFmdTk-k7wAAARc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:27:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:27:17.025583 2025] [security2:error] [pid 31081:tid 31081] [client 104.207.53.4:39767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atomicmc.com"] [uri "/.svn/wc.db"] [unique_id "aS6i5fXp1f09rbvP_l7lOQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:14:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:14:42.828531 2025] [security2:error] [pid 22464:tid 22473] [client 104.207.53.4:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.raytbrown.com"] [uri "/.svn/wc.db"] [unique_id "aSQT8jEcu8gE6CBVv_TedQAAAIc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:46:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:46:34.138317 2025] [security2:error] [pid 32684:tid 32684] [client 104.207.53.4:29257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.bitcoinsubscribers.com"] [uri "/.env"] [unique_id "aSQNWjXiJlrCu3xCon2tPAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:00:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:59:54.841710 2025] [security2:error] [pid 13942:tid 14037] [client 104.207.53.4:15847] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serviio.acornway.com"] [uri "/.svn/wc.db"] [unique_id "aSQCag9TCbHXOd9uq_eL3AAAAdM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:20:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:20:11.586381 2025] [security2:error] [pid 24046:tid 24046] [client 104.207.53.4:22649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.danproctor.com"] [uri "/.svn/wc.db"] [unique_id "aSPrC1bDAssJ76OcRm7yegAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:47:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:47:39.893957 2025] [security2:error] [pid 15351:tid 15351] [client 104.207.53.4:31429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.insidepublications.com"] [uri "/.svn/wc.db"] [unique_id "aSPja6Z72WTH5ZT4v4yKaQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:09:03 (6 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-10-11 06:15:34 (7 months ago)	Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.11 is noted in report ti ... show more Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 23:16:29 (7 months ago)	Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.10 is noted in report ti ... show more Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 80 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 122.13.25.186

🇷🇺 95.139.90.64

🇵🇹 85.244.8.67

🇱🇹 81.30.98.158

🇸🇦 51.253.215.78

🇺🇸 18.226.8.239

🇮🇪 3.252.128.103

🇺🇸 3.149.234.245

🇨🇦 3.98.49.38

🇨🇳 223.243.179.70

🇺🇸 216.73.161.184

🇬🇧 195.206.182.212

🇧🇷 178.92.205.166

🇮🇪 128.251.36.118

🇨🇳 117.82.134.122

🇧🇪 91.86.88.24

🇩🇪 49.13.138.33

🇮🇶 45.157.54.7

🇬🇧 31.14.254.67

🇺🇸 18.218.63.16