JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.72

104.207.53.72 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.72

Whois 104.207.53.72

IP Abuse Reports for 104.207.53.72:

This IP address has been reported a total of 144 times from 17 distinct sources. 104.207.53.72 was first reported on June 28th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-04-17 22:42:31 (1 month ago)	[Sat Apr 18 00:42:30.714649 2026] [authz_core:error] [pid 560721:tid 560786] [remote 104.207.53.72:1 ... show more [Sat Apr 18 00:42:30.714649 2026] [authz_core:error] [pid 560721:tid 560786] [remote 104.207.53.72:12667] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇦🇺 nzhost.co.nz	2026-02-19 12:33:07 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-15 12:39:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:39:05.445157 2026] [security2:error] [pid 13508:tid 13508] [client 104.207.53.72:31717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tmcenvironment.com"] [uri "/config/.env"] [unique_id "aZG-aaYL7ND7xmmP4GiUtgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 nzhost.co.nz	2026-02-15 12:25:53 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-15 11:33:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:33:21.703394 2026] [security2:error] [pid 31288:tid 31288] [client 104.207.53.72:48503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tausiet.com"] [uri "/site/.git/config"] [unique_id "aZGvAQ7Dxz8WHQJQCwHw_wAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 06:07:57 (3 months ago)	Too many Status 40X (13) Scanning/Probing (13)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:03:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:03:06.725181 2026] [security2:error] [pid 1552:tid 1552] [client 104.207.53.72:21309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "syconline.com"] [uri "/.env.save"] [unique_id "aZFhmusq4zUFzUOYnf50JAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:20:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:20:21.706269 2026] [security2:error] [pid 2817:tid 2817] [client 104.207.53.72:49445] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "straypointers.com"] [uri "/site/.git/config"] [unique_id "aZFJhcbB7XzcvfkCkCO0MAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:35:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:35:07.918026 2026] [security2:error] [pid 22200:tid 22255] [client 104.207.53.72:48827] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "steedtimber.com"] [uri "/app/.git/config"] [unique_id "aZE-6_If6G86OktE7M9jvwAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:34:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:34:00.001255 2026] [security2:error] [pid 8886:tid 8886] [client 104.207.53.72:17095] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "machineryenchantress.com"] [uri "/.env.local"] [unique_id "aZEiiBOwf8PZUCkG6j0HwQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:58:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:58:31.684736 2026] [security2:error] [pid 7221:tid 7221] [client 104.207.53.72:31117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lunginjurylaw.com"] [uri "/app/.env"] [unique_id "aZEaN1i17M_VqAlptnP0pQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-02-15 00:30:55 (3 months ago)	198 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-14 23:20:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:20:52.008279 2026] [security2:error] [pid 12032:tid 12032] [client 104.207.53.72:28575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "livinghopehighschool.org"] [uri "/.env.staging"] [unique_id "aZEDVG8tHlqx-gcyqPQ73QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:57:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:57:54.542402 2026] [security2:error] [pid 12015:tid 12015] [client 104.207.53.72:52935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mosherpit.com"] [uri "/frontend/.env"] [unique_id "aZD98hCXJejcvPSfRy2gAQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:34:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.72 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:34:53.169639 2026] [security2:error] [pid 537881:tid 537881] [client 104.207.53.72:50705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lightupaustralia.com.au"] [uri "/app/.env"] [unique_id "aZD4jVUdz2ZBSjo2FezVJAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 113.115.52.194

🇨🇳 61.136.151.178

🇨🇦 20.63.80.176

🇺🇸 2607:f8b0:4004:c0b::122

🇭🇰 223.197.178.95

🇨🇳 222.76.11.216

🇵🇱 194.180.48.31

🇧🇷 187.107.88.97

🇦🇷 186.137.131.237

🇳🇱 176.65.148.253

🇺🇸 172.110.223.185

🇳🇱 160.119.76.23

🇮🇩 157.15.40.88

🇺🇸 137.184.213.196

🇺🇸 132.196.93.0

🇳🇱 77.83.39.197

🇫🇷 62.210.142.167

🇫🇷 54.36.102.244

🇳🇱 45.148.10.152

🇺🇸 43.153.59.115