JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.53.95

104.207.53.95 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.53.95

Whois 104.207.53.95

IP Abuse Reports for 104.207.53.95:

This IP address has been reported a total of 135 times from 23 distinct sources. 104.207.53.95 was first reported on June 22nd 2024, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-07 18:24:31 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-24.104.207.53.95.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-24.104.207.53.95.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-07 15:43:11 (4 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-43.104.207.53.95.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 18-43.104.207.53.95.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-14 21:57:45 (2 months ago)	APFCOM WEBFORM SPAM 104.207.53.95 (104.207.53.95)	Web Spam
🇺🇸 fortypoundhead	2025-12-17 21:36:47 (5 months ago)	SQL Injection Attempt	SQL Injection Web App Attack
🇧🇪 madeit	2025-11-30 04:35:14 (6 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:28:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:28:23.049956 2025] [security2:error] [pid 23231:tid 23231] [client 104.207.53.95:9539] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.goseethenurse.com"] [uri "/.env"] [unique_id "aSbkV1NGr7l6EBAFyWZrnQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 09:27:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:27:10.834626 2025] [security2:error] [pid 9386:tid 9386] [client 104.207.53.95:44817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mobilecasino.fisseq.com"] [uri "/.git/HEAD"] [unique_id "aSbH7vzG06Mg-XYvEgwM_AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:16:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:15:55.754150 2025] [security2:error] [pid 21598:tid 21598] [client 104.207.53.95:29953] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sandecs.com"] [uri "/.env"] [unique_id "aSZw6zCDXsZf2Mo4giY2mwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:59:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:59:50.276175 2025] [security2:error] [pid 25538:tid 25538] [client 104.207.53.95:53587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thevenicecafe.com"] [uri "/.env"] [unique_id "aSZfFgWL9HmqNWkxC_rX8gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 iNetWorker	2025-11-26 01:49:17 (6 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:04:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:03:55.281993 2025] [security2:error] [pid 4110:tid 4110] [client 104.207.53.95:58511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.magacine.tv"] [uri "/.svn/wc.db"] [unique_id "aSZR-2bDfHjxwk8xAEHbwQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:19:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:19:16.435345 2025] [security2:error] [pid 1817000:tid 1817033] [client 104.207.53.95:38531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ideal-autobody.jd-web-designs.com"] [uri "/.git/HEAD"] [unique_id "aSUuRJiXM9qjzOaPIgQksQAAAVU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:55:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:55:30.849592 2025] [security2:error] [pid 18451:tid 18451] [client 104.207.53.95:20465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.cheynans.com"] [uri "/.svn/wc.db"] [unique_id "aSUaojG47W70on0dwCv8ZgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:55:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.53.95 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:55:33.668988 2025] [security2:error] [pid 14924:tid 14924] [client 104.207.53.95:16093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.automotiveforms.net"] [uri "/.env"] [unique_id "aSQPdcq5W_Xj4moKlf3qlQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 180.76.173.189

🇨🇳 123.165.80.195

🇫🇷 51.68.236.95

🇧🇪 198.235.24.249

🇦🇷 191.241.142.170

🇦🇷 190.104.37.45

🇳🇱 176.65.149.138

🇹🇭 171.100.121.127

🇮🇳 139.59.21.124

🇳🇱 85.121.127.151

🇺🇸 66.132.195.108

🇳🇱 45.148.10.147

🇺🇸 2607:f8b0:4001:c34::12d

🇺🇸 216.73.217.0

🇳🇱 185.242.226.113

🇮🇳 182.95.181.26

🇧🇷 177.135.223.123

🇸🇬 172.253.211.90

🇺🇸 172.90.128.97

🇭🇰 149.88.69.171