JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.102

104.207.56.102 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.102

Whois 104.207.56.102

IP Abuse Reports for 104.207.56.102:

This IP address has been reported a total of 155 times from 21 distinct sources. 104.207.56.102 was first reported on June 19th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-04-23 16:12:00 (1 month ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇦🇺 oncord	2026-04-20 00:52:06 (1 month ago)	Form spam	Web Spam
🇦🇺 oncord	2026-04-08 05:10:31 (2 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-28 00:17:23 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-15 23:33:36 (3 months ago)	Form spam	Web Spam
🇳🇱 jjnxpct	2026-02-14 04:52:49 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /admin/.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /admin/.env] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 09:17:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:17:01.881925 2026] [security2:error] [pid 28131:tid 28131] [client 104.207.56.102:11237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "17thstreetrealty.com"] [uri "/.env"] [unique_id "aY7sDSlRIRcNRKJfBpAd7gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 08:05:32 (3 months ago)	Too many Status 40X (12) Scanning/Probing (14)	Brute-Force Web App Attack
🇮🇩 Burayot	2026-02-13 06:08:23 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.56.102 (DE/Germany/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.56.102 (DE/Germany/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:07:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:07:16.325747 2026] [security2:error] [pid 3760:tid 3760] [client 104.207.56.102:27689] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koreagreenrecycling.com"] [uri "/api/.git/config"] [unique_id "aY6_lI_NhPb3gOvAiYgvQAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:52:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:52:10.442743 2026] [security2:error] [pid 31958:tid 31958] [client 104.207.56.102:14905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konahawaiirealty.com"] [uri "/.env.production"] [unique_id "aY68Cpnc1HhBONhwKVJVYwAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:07:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:07:20.205083 2026] [security2:error] [pid 2257807:tid 2257807] [client 104.207.56.102:12071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keysenterprise.net"] [uri "/new/.git/config"] [unique_id "aY6VaIDfa6Ca1x0DbvtViAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:43:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:43:42.601947 2026] [security2:error] [pid 17238:tid 17238] [client 104.207.56.102:54263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentuckianacordcutters.com"] [uri "/backup/.git/config"] [unique_id "aY6P3uRxZ0x5HPYtimlBegAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:17:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:17:38.036584 2026] [security2:error] [pid 11199:tid 11352] [client 104.207.56.102:58037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keetons.net"] [uri "/api/.env"] [unique_id "aY6JwmNevODDHiaXVgFCTAAAAsM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:34:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.102 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:34:31.313291 2026] [security2:error] [pid 8262:tid 8262] [client 104.207.56.102:41541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katemcleod.net"] [uri "/.env.save"] [unique_id "aY5_p7amI1HUtzrp-AnMpgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 135.237.126.245

🇨🇳 124.164.251.88

🇺🇸 199.48.128.86

🇮🇳 125.20.210.182

🇨🇳 112.28.8.215

🇺🇸 104.237.132.65

🇺🇸 103.143.11.150

🇨🇳 39.154.5.255

🇺🇸 18.191.151.103

🇳🇱 5.61.209.33

🇺🇸 172.67.220.93

🇺🇸 154.92.22.13

🇧🇷 136.248.121.226

🇨🇳 121.225.55.155

🇨🇳 119.48.135.27

🇨🇳 118.250.105.210

🇮🇳 112.133.246.85

🇨🇳 59.52.179.214

🇮🇹 45.196.215.21

🇬🇧 8.208.34.88