JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.71

104.207.53.71 was found in our database!

This IP was reported 154 times. Confidence of Abuse is 24%: ?

24%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.71

Whois 104.207.53.71

IP Abuse Reports for 104.207.53.71:

This IP address has been reported a total of 154 times from 20 distinct sources. 104.207.53.71 was first reported on June 5th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇮 administrator	2026-06-02 22:16:19 (3 days ago)	2026-06-02 00:08:13,830 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 104.207.53.71 20 ... show more 2026-06-02 00:08:13,830 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 104.207.53.71 2026-06-02 00:08:13,830 fail2ban.actions [1162]: NOTICE [ninjafirewall] Ban 104.207.53.71 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇦🇺 oncord	2026-05-15 19:39:05 (3 weeks ago)	Form spam	Web Spam
🇨🇭 backslash	2026-05-10 18:03:02 (3 weeks ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇸🇮 administrator	2026-05-04 16:25:48 (1 month ago)	2026-04-11 19:38:21,205 fail2ban.actions [953175]: NOTICE [ninjafirewall] Ban 104.207.53.71 ... show more 2026-04-11 19:38:21,205 fail2ban.actions [953175]: NOTICE [ninjafirewall] Ban 104.207.53.71 2026-04-15 07:57:36,964 fail2ban.actions [1104]: NOTICE [ninjafirewall] Ban 104.207.53.71 2026-04-19 01:04:47,949 fail2ban.actions [1048]: NOTICE [ninjafirewall] Ban 104.207.53.71 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇨🇭 ALPHANET	2026-04-27 14:36:41 (1 month ago)	web exploits	Hacking Exploited Host Web App Attack
🇱🇻 garmtech.com	2026-04-21 16:14:39 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 19-14.104.207.53.71.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 19-14.104.207.53.71.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2026-02-21 04:32:06 (3 months ago)	wordpress-trap	Web App Attack
🇦🇺 oncord	2026-01-02 19:07:18 (5 months ago)	Form spam	Web Spam
Anonymous	2025-12-10 10:49:51 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-02 15:35:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 10:35:06.930233 2025] [security2:error] [pid 5354:tid 5354] [client 104.207.53.71:54653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "todayhelp.com"] [uri "/.env"] [unique_id "aS8HKqqituVWJzTSFL-pkAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:52:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:51:59.764430 2025] [security2:error] [pid 26992:tid 26992] [client 104.207.53.71:45199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lisalehmann.com"] [uri "/.svn/wc.db"] [unique_id "aS5-fxK27fOq6oduAFuKCAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:15:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:15:33.512485 2025] [security2:error] [pid 728:tid 728] [client 104.207.53.71:38381] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "danharrisphotoart.com"] [uri "/.env"] [unique_id "aS519feSFW39PEhd_EmrVwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 13:46:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:46:01.003596 2025] [security2:error] [pid 17647:tid 17647] [client 104.207.53.71:40257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mitchellamazing.com"] [uri "/wp-config.php"] [unique_id "aSmnmZ7kcagsmEiNBbbxzgAAAAM"], referer: http://amazingengineering.com/wp-config.php show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 14:53:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 09:53:03.929149 2025] [security2:error] [pid 23994:tid 23994] [client 104.207.53.71:12005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.mydarklady.com"] [uri "/.env"] [unique_id "aScUT86HaQADM1zjMUEm9wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:57:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.71 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:57:09.019968 2025] [security2:error] [pid 26657:tid 26657] [client 104.207.53.71:11825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.randeen.com"] [uri "/.env"] [unique_id "aSVTRRKjEGyoqZzYNN0K4wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 154 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 193.124.20.247

🇳🇱 176.65.139.233

🇺🇸 147.185.132.213

🇺🇸 144.31.35.238

🇦🇺 103.208.219.38

🇧🇪 34.156.205.200

🇯🇵 20.78.148.25

🇧🇷 205.210.31.230

🇧🇪 198.235.24.173

🇩🇪 193.124.20.248

🇸🇬 172.217.97.20

🇮🇳 125.19.220.30

🇨🇳 111.162.142.49

🇫🇷 91.231.89.149

🇬🇧 35.203.211.146

🇬🇧 35.203.210.62

🇻🇳 160.30.160.183

🇨🇳 115.231.78.3

🇧🇩 103.86.198.162

🇫🇷 85.204.70.96