JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.133

104.207.56.133 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.133

Whois 104.207.56.133

IP Abuse Reports for 104.207.56.133:

This IP address has been reported a total of 126 times from 12 distinct sources. 104.207.56.133 was first reported on June 6th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-05 20:34:23 (4 months ago)	Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇨🇭 backslash	2025-12-30 19:55:02 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 04:44:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:44:05.965467 2025] [security2:error] [pid 11562:tid 11562] [client 104.207.56.133:51515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jacksonsparts.com"] [uri "/.git/HEAD"] [unique_id "aSU0FYkI8KDlqAZK9BAQdAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇬 Stoyko Stoykov	2025-11-25 04:24:27 (6 months ago)	104.207.56.133 - - [25/Nov/2025:06:24:26 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 ( ... show more 104.207.56.133 - - [25/Nov/2025:06:24:26 +0200] "GET /.git/HEAD HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:09:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:09:29.399074 2025] [security2:error] [pid 6459:tid 6459] [client 104.207.56.133:46063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bryteandbroderick.org"] [uri "/.env"] [unique_id "aSUr-ei4VM8O6-ZMWDMjIwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:47:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:47:10.567005 2025] [security2:error] [pid 32417:tid 32417] [client 104.207.56.133:12763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.discountweddinginvitationsonline.com"] [uri "/.git/HEAD"] [unique_id "aSUmvmcnw8MC_PcU8xfBsQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:27:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:26:51.887844 2025] [security2:error] [pid 17023:tid 17067] [client 104.207.56.133:39581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jean-paullederer.com"] [uri "/.svn/wc.db"] [unique_id "aSUh-71hG8E8_fObGRh8BQAAAQU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:07:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:07:12.649456 2025] [security2:error] [pid 11623:tid 11623] [client 104.207.56.133:25521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dinersquest.com"] [uri "/.git/HEAD"] [unique_id "aSUdYK9FA5YweV-z7mqiSgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:25:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:25:27.747620 2025] [security2:error] [pid 3631:tid 3631] [client 104.207.56.133:23391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.caremedicalbillinginc.com"] [uri "/.env"] [unique_id "aSUTl_hoxPv6j7lq9d5dYwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:06:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:06:10.745474 2025] [security2:error] [pid 1338:tid 1338] [client 104.207.56.133:44121] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ashleycroft.com"] [uri "/.env"] [unique_id "aSUPEkjk2i_aiUb8vLpIawAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:31:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:30:53.599467 2025] [security2:error] [pid 16321:tid 16321] [client 104.207.56.133:56367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.partiklezoo.easterbilby.net"] [uri "/.env"] [unique_id "aSUGzawfGw0Kh70dsafzuwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-11-13 03:14:59 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-11-10 20:30:19 (6 months ago)	Malicious activity detected	Hacking Web App Attack
Anonymous	2025-10-11 08:27:36 (7 months ago)	Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.11 is noted in report ti ... show more Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 23:33:34 (7 months ago)	Attempted brute force login to web vpn 126 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 126 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.176.29.27

🇬🇧 193.163.125.44

🇱🇰 124.43.10.224

🇷🇺 185.75.181.87

🇭🇰 152.32.128.214

🇺🇸 130.131.220.95

🇮🇳 125.20.247.194

🇷🇺 83.239.108.218

🇫🇮 80.223.186.171

🇺🇸 69.169.101.231

🇺🇸 49.51.243.95

🇺🇸 20.12.41.6

🇺🇸 4.246.61.185

🇲🇿 197.219.208.58

🇧🇷 177.61.176.110

🇨🇳 115.190.149.148

🇹🇼 110.25.112.145

🇫🇮 95.217.122.41

🇨🇳 36.249.60.142

🇬🇧 31.14.254.119