JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.79

104.207.53.79 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.79

Whois 104.207.53.79

IP Abuse Reports for 104.207.53.79:

This IP address has been reported a total of 121 times from 12 distinct sources. 104.207.53.79 was first reported on June 4th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-02-28 00:15:24 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇱🇻 garmtech.com	2026-01-12 07:42:40 (4 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-42.104.207.53.79.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 09-42.104.207.53.79.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-01-09 09:41:30 (4 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 11-41.104.207.53.79.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 11-41.104.207.53.79.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 dtorrer	2025-12-31 23:38:53 (5 months ago)	General vulnerability scan.	Port Scan
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (5 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-12-04 05:33:09 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 21:02:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 16:02:19.069685 2025] [security2:error] [pid 16802:tid 16802] [client 104.207.53.79:9369] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "digi-estudio.com"] [uri "/.svn/wc.db"] [unique_id "aSi8W9ixbovTZy2iJqyyVAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:24:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:24:27.069819 2025] [security2:error] [pid 3393:tid 3393] [client 104.207.53.79:10885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.questiondezyn.com"] [uri "/.svn/wc.db"] [unique_id "aSVLm_ASi1XsRmHVJKq3BQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:24:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:24:46.750516 2025] [security2:error] [pid 25218:tid 25218] [client 104.207.53.79:27703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "desertedge.band"] [uri "/.git/HEAD"] [unique_id "aSUhfg42sUWW7Y5o8LFXkAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:39:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:39:06.596507 2025] [security2:error] [pid 13940:tid 13960] [client 104.207.53.79:55805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.philipjnielsen-drafting-design.com"] [uri "/.svn/wc.db"] [unique_id "aSQZqlcEhUGiZJQ6jyrAeAAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:22:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:22:11.495499 2025] [security2:error] [pid 12442:tid 12442] [client 104.207.53.79:23485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.3905ccn.us"] [uri "/.svn/wc.db"] [unique_id "aSQHow06shWQBZcddKiCxgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-06 22:56:31 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 14:21:56 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 06:42:54 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 20:04:41 (1 year ago)	Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 210.104.222.189

🇮🇳 182.95.43.50

🇬🇪 178.217.74.104

🇲🇦 154.144.243.93

🇺🇸 154.53.74.6

🇮🇳 152.52.205.86

🇮🇳 136.232.11.10

🇵🇱 87.251.64.147

🇺🇸 47.251.110.209

🇨🇳 220.202.112.152

🇧🇷 179.181.133.153

🇳🇱 176.65.139.233

🇨🇳 171.37.93.96

🇨🇳 124.163.202.215

🇨🇳 120.234.232.184

🇹🇼 111.70.11.237

🇷🇺 91.215.108.149

🇮🇹 91.80.150.222

🇨🇦 85.217.149.31

🇺🇸 78.153.155.152