JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.168

104.207.56.168 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.168

Whois 104.207.56.168

IP Abuse Reports for 104.207.56.168:

This IP address has been reported a total of 140 times from 16 distinct sources. 104.207.56.168 was first reported on June 5th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:08 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-26 11:13:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:13:34.437826 2025] [security2:error] [pid 15489:tid 15489] [client 104.207.56.168:34719] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ceravolo.net"] [uri "/.env"] [unique_id "aSbg3vA9ubW9UJzPD7fKtwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:38:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:37:55.997220 2025] [security2:error] [pid 27256:tid 27256] [client 104.207.56.168:9943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.cofias.net"] [uri "/.svn/wc.db"] [unique_id "aSbYgzSLohKgGucnOjoSYQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 08:11:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:11:54.702108 2025] [security2:error] [pid 20255:tid 20255] [client 104.207.56.168:31939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.limocorpuschristi.com"] [uri "/.env"] [unique_id "aSa2Skh0SJIzQIRqnoI1UgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:06:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:06:34.863867 2025] [security2:error] [pid 2517:tid 2517] [client 104.207.56.168:30537] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.stoughtonpipeandwelding.net"] [uri "/.env"] [unique_id "aSam-g9LRhZ_huHwhVN6qgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:37:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:37:52.785976 2025] [security2:error] [pid 3363:tid 3363] [client 104.207.56.168:33693] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.lilpiggiescardgame.com"] [uri "/.env"] [unique_id "aSaSMG2I3HMLd8pMERAcBgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:11:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:11:23.274941 2025] [security2:error] [pid 3775697:tid 3775697] [client 104.207.56.168:34173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.hawleyrentals.com"] [uri "/.env"] [unique_id "aSQhO0FbcJjgkmCX3WTkyQAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:12:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:12:44.564435 2025] [security2:error] [pid 13940:tid 13970] [client 104.207.56.168:57447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "attorneylouisiana.com.aafm.us"] [uri "/.git/HEAD"] [unique_id "aSQFbFcEhUGiZJQ6jyqfbQAAANM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2025-11-24 03:32:27 (6 months ago)	2025-11-24 @ 04:32:27 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:16:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:16:50.225787 2025] [security2:error] [pid 13945:tid 13945] [client 104.207.56.168:15685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.chatsupply.us"] [uri "/.svn/wc.db"] [unique_id "aSPOIo-85aKZYPgTdZvAdwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-23 12:46:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 07:46:31.035970 2025] [security2:error] [pid 11417:tid 11417] [client 104.207.56.168:34527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.yourbrandhere.com"] [uri "/.env"] [unique_id "aSMCJ-xzL7krwXEDAkKN3gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-11-17 20:12:12 (6 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-11-10 22:51:35 (6 months ago)	(From [email protected]) THE FASTEST WAY TO CREATE, PUBLISH, & PROFIT FROM EBOOKS… NO WRIT ... show more (From [email protected]) THE FASTEST WAY TO CREATE, PUBLISH, & PROFIT FROM EBOOKS… NO WRITING REQUIRED PROFIT-READY EBOOKS with covers, TOC, chapters, sections, links, images, & content! https://viewbet-24.site/eBookWriterAI to UNSUBSCRIBE: https://viewbet-24.site/unsubscribe?domain=greenrunchiropractic.com Address: 209 West Street Comstock Park, MI 49321 show less	Phishing Web Spam
🇦🇺 oncord	2025-11-10 16:12:25 (6 months ago)	Form spam	Web Spam
Anonymous	2025-11-05 10:03:56 (7 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.148.81

🇦🇺 203.29.243.123

🇨🇳 180.167.128.203

🇨🇳 122.97.215.200

🇮🇳 106.201.232.211

🇷🇴 80.94.95.115

🇺🇸 66.132.186.241

🇮🇳 49.35.194.240

🇨🇳 47.93.126.210

🇸🇳 41.214.109.39

🇧🇷 35.198.41.118

🇺🇸 34.10.140.62

🇫🇮 147.185.133.172

🇨🇳 123.178.125.138

🇮🇳 103.210.29.69

🇸🇬 103.187.146.131

🇫🇮 95.216.149.134

🇧🇬 78.128.112.6

🇨🇦 72.11.188.130

🇳🇱 45.148.10.141