JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.81

104.207.53.81 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.81

Whois 104.207.53.81

IP Abuse Reports for 104.207.53.81:

This IP address has been reported a total of 135 times from 13 distinct sources. 104.207.53.81 was first reported on June 7th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-06-02 01:21:00 (4 days ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-13 08:18:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:18:37.818782 2026] [security2:error] [pid 21954:tid 21954] [client 104.207.53.81:59797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mentalmolecule.com"] [uri "/api/.git/config"] [unique_id "aY7eXT_vpYRYwtX7RuPvwQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:35:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:35:30.245135 2026] [security2:error] [pid 7370:tid 7370] [client 104.207.53.81:9805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mehlerproperties.com"] [uri "/backup/.git/config"] [unique_id "aY7UQs7RtUN9BFE0r5ZVDAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:06:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:06:27.107286 2026] [security2:error] [pid 14804:tid 14804] [client 104.207.53.81:21823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medioskreativos.com"] [uri "/.git/config"] [unique_id "aY7Nc5mV_aMwl1a2CY6G1AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:10:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:09:57.760630 2026] [security2:error] [pid 2713555:tid 2713555] [client 104.207.53.81:53681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcefa.org"] [uri "/.env"] [unique_id "aY7ANY2HVano4WeORXWjgQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:14:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:14:48.140247 2026] [security2:error] [pid 16765:tid 16765] [client 104.207.53.81:46833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marcastecnologia.com"] [uri "/api/.env"] [unique_id "aY6XKBnKo10O9yJhdkVh9AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 20:02:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 15:02:17.632593 2026] [security2:error] [pid 11072:tid 11072] [client 104.207.53.81:18843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "getagriponlife.net"] [uri "/.git/config"] [unique_id "aY4xyeggTCIwDMA8V-nv9gAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:35:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:35:04.466013 2026] [security2:error] [pid 17823:tid 17823] [client 104.207.53.81:26493] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "homebuilt.org"] [uri "/.git/config"] [unique_id "aY4raE2RuaIJd4mM4LSR9wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:50:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:50:25.035851 2026] [security2:error] [pid 12551:tid 12551] [client 104.207.53.81:40797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "diveron.com"] [uri "/.env"] [unique_id "aY4S4SqxrYZk7V_HbWiEWwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:47:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:47:46.785711 2026] [security2:error] [pid 31477:tid 31477] [client 104.207.53.81:43393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coordinatedtechnology.net"] [uri "/.env"] [unique_id "aY4EMrJf2MW0SfmiTwkN8QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 09:01:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 04:01:45.160598 2026] [security2:error] [pid 3316323:tid 3316323] [client 104.207.53.81:48909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gdhlgroup.com"] [uri "/backend/.env"] [unique_id "aY2W-cONOZNNpnGXknNspAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 16:43:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 11:43:15.782599 2026] [security2:error] [pid 2678895:tid 2678895] [client 104.207.53.81:20603] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftiptondds.com"] [uri "/frontend/.env"] [unique_id "aYtgI9phDy8vdwA53wudCAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fortypoundhead	2026-01-15 15:13:35 (4 months ago)	SQL Injection Attempt	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:05:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:05:34.457525 2025] [security2:error] [pid 28965:tid 28965] [client 104.207.53.81:27395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thegolfhole.com"] [uri "/.env"] [unique_id "aSP1ruSBnxbKxazWWLXe8AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.203.243.242

🇨🇳 139.170.73.14

🇺🇸 74.125.113.146

🇩🇪 69.5.169.189

🇩🇪 69.5.169.178

🇮🇪 54.216.60.252

🇮🇪 54.155.70.106

🇺🇸 45.79.128.205

🇺🇸 20.65.201.12

🇨🇳 14.103.127.204

🇨🇳 1.193.63.199

🇨🇳 222.176.201.21

🇺🇸 212.102.40.218

🇺🇸 205.210.31.60

🇧🇪 198.235.24.254

🇳🇱 193.176.31.213

🇬🇧 193.163.125.199

🇬🇧 193.32.209.228

🇺🇸 172.202.117.222

🇮🇳 120.62.8.17