JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.54.112

104.207.54.112 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.54.112

Whois 104.207.54.112

IP Abuse Reports for 104.207.54.112:

This IP address has been reported a total of 130 times from 14 distinct sources. 104.207.54.112 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-19 05:41:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:41:33.089000 2026] [security2:error] [pid 31383:tid 31383] [client 104.207.54.112:36127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kugbe.com"] [uri "/api/.git/config"] [unique_id "aZaijaDKTijt7YsOy69mGAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 05:00:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:00:13.652794 2026] [security2:error] [pid 10225:tid 10225] [client 104.207.54.112:52605] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koreagreenrecycling.com"] [uri "/frontend/.env"] [unique_id "aZaY3cdeJ-2f6MvMPcXHJwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 04:02:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:02:48.475245 2026] [security2:error] [pid 13439:tid 13439] [client 104.207.54.112:51079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kistner.us"] [uri "/wp/.git/config"] [unique_id "aZaLaNe3GY3mViuzM9xJrgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-02-19 03:35:26 (3 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:46:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:46:18.508644 2026] [security2:error] [pid 31029:tid 31029] [client 104.207.54.112:39325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karenbernsteinlaw.net"] [uri "/dev/.git/config"] [unique_id "aZZratpQFLdUVk19Cf9iLgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 22:32:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 17:32:25.816626 2026] [security2:error] [pid 30875:tid 30875] [client 104.207.54.112:46879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "utahproaudio.com"] [uri "/.env.staging"] [unique_id "aZY9-chughZuwgwLQq9EEQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:47:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:47:17.551592 2026] [security2:error] [pid 27501:tid 27501] [client 104.207.54.112:29703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thongtracker.com"] [uri "/admin/.env"] [unique_id "aZYJNWEPDAsWGY3uedN5OwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 17:18:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 12:18:49.769552 2026] [security2:error] [pid 93197:tid 93197] [client 104.207.54.112:34375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ziccardiart.com"] [uri "/admin/.env"] [unique_id "aZX0eZWcVOA-9buWHcdt1wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:53:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:53:08.417763 2026] [security2:error] [pid 764567:tid 764591] [client 104.207.54.112:29815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waqm.org"] [uri "/wp/.git/config"] [unique_id "aZWoJKMdmsrQNCFHiC95owAAANU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-16 05:30:05 (4 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
Anonymous	2025-12-21 11:29:56 (5 months ago)	Attempted brute force login to web vpn 252 time(s); last attempt for 2025.12.21 is noted in report t ... show more Attempted brute force login to web vpn 252 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 22:24:11 (5 months ago)	Attempted brute force login to web vpn 144 time(s); last attempt for 2025.12.19 is noted in report t ... show more Attempted brute force login to web vpn 144 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-01 23:31:06 (6 months ago)	Attempted brute force login to web vpn 933 time(s); last attempt for 2025.12.01 is noted in report t ... show more Attempted brute force login to web vpn 933 time(s); last attempt for 2025.12.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-30 23:35:30 (6 months ago)	Attempted brute force login to web vpn 919 time(s); last attempt for 2025.11.30 is noted in report t ... show more Attempted brute force login to web vpn 919 time(s); last attempt for 2025.11.30 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-27 23:41:08 (6 months ago)	Attempted brute force login to web vpn 2436 time(s); last attempt for 2025.11.27 is noted in report ... show more Attempted brute force login to web vpn 2436 time(s); last attempt for 2025.11.27 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 192.109.200.220

🇺🇸 35.185.33.69

🇺🇸 207.90.244.17

🇮🇩 180.178.94.217

🇨🇳 122.51.203.101

🇮🇩 114.10.47.235

🇳🇱 91.92.40.4

🇬🇧 77.68.9.24

🇺🇸 52.146.92.163

🇳🇱 45.148.10.183

🇨🇱 34.176.22.139

🇪🇪 31.59.160.12

🇬🇧 217.146.80.103

🇭🇰 199.45.155.69

🇨🇳 112.66.14.55

🇩🇪 46.101.158.101

🇬🇧 217.146.80.99

🇳🇬 197.211.59.228

🇩🇪 169.150.201.134

🇺🇸 159.65.169.123