JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.54.193

104.207.54.193 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.54.193

Whois 104.207.54.193

IP Abuse Reports for 104.207.54.193:

This IP address has been reported a total of 141 times from 19 distinct sources. 104.207.54.193 was first reported on June 12th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:05 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇬🇧 consul.to	2026-02-15 12:50:07 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:10:42 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:10:37.048775 2026] [security2:error] [pid 19792:tid 19870] [client 104.207.54.193:54167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teddysdeli.com"] [uri "/v2/.git/config"] [unique_id "aZG3veBqLJdQUn0BofS9dwAAAUI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:43:58 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:43:49.615973 2026] [security2:error] [pid 24050:tid 24050] [client 104.207.54.193:47777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tcit.org"] [uri "/admin/.git/config"] [unique_id "aZGxdVa2amxTp4DhgkFuGwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 06:07:05 (4 months ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇳🇱 jjnxpct	2026-02-15 04:48:30 (4 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env.staging (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env.staging] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:52:05 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:52:02.104300 2026] [security2:error] [pid 30451:tid 30451] [client 104.207.54.193:22227] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stewhist.org"] [uri "/.env.local"] [unique_id "aZFC4hU2KgN31ZzsuP1AbAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:26:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:26:43.890543 2026] [security2:error] [pid 6454:tid 6454] [client 104.207.54.193:48577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mystudioinparis.com"] [uri "/frontend/.env"] [unique_id "aZEu46xiwCY4nyyJcRLQhQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:24:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:24:44.546898 2026] [security2:error] [pid 25770:tid 25770] [client 104.207.54.193:53905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "murphylumber.ca"] [uri "/backend/.env"] [unique_id "aZEgXPpKtEftTbok9sTLtQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:34:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:34:09.415310 2026] [security2:error] [pid 921:tid 921] [client 104.207.54.193:53307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lmffl.com"] [uri "/admin/.git/config"] [unique_id "aZEGcePq6n_lJmktvUOsgQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:48:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:48:31.518974 2026] [security2:error] [pid 22890:tid 22890] [client 104.207.54.193:61787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "linearconceptsllc.com"] [uri "/admin/.git/config"] [unique_id "aZD7v3xnLqfPcpEDyBlK2wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:59:43 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:59:37.966390 2026] [security2:error] [pid 18167:tid 18167] [client 104.207.54.193:40547] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mobiletitleclerk.com"] [uri "/.env.production"] [unique_id "aZDwScOyqKbT2xgPmtk79AAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-14 21:48:15 (4 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:42:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:42:18.422686 2026] [security2:error] [pid 5505:tid 5505] [client 104.207.54.193:38615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lenorasflowers.com"] [uri "/frontend/.env"] [unique_id "aZDsOo5i7NaBZfeXVnWE8wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 21:25:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:25:01.854940 2026] [security2:error] [pid 11699:tid 11699] [client 104.207.54.193:16519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leesart.net"] [uri "/api/.git/config"] [unique_id "aZDoLWoY91qWrAKzcjMS0AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇲 176.32.193.16

🇩🇪 213.209.159.56

🇬🇧 213.166.84.45

🇧🇷 205.210.31.186

🇧🇷 205.210.31.185

🇩🇪 195.230.103.245

🇦🇲 178.160.228.254

🇹🇭 171.4.251.155

🇺🇸 153.66.28.132

🇸🇬 43.172.197.173

🇺🇸 208.167.249.178

🇧🇷 205.210.31.173

🇧🇷 205.210.31.172

🇪🇹 196.189.155.89

🇲🇴 182.93.50.90

🇲🇽 177.227.67.90

🇺🇸 162.216.150.117

🇭🇰 118.193.47.155

🇲🇦 105.154.232.151

🇹🇳 102.152.213.146