JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.175

104.207.56.175 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.175

Whois 104.207.56.175

IP Abuse Reports for 104.207.56.175:

This IP address has been reported a total of 125 times from 13 distinct sources. 104.207.56.175 was first reported on June 11th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-18 03:47:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 22:47:05.080448 2026] [security2:error] [pid 1639478:tid 1639478] [client 104.207.56.175:36469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robertet.co"] [uri "/.env"] [unique_id "aZU2Oa5E1ub6UqwDptgngQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 09:08:32 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:08:25.470259 2026] [security2:error] [pid 23185:tid 23192] [client 104.207.56.175:43027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "metrobaselexpoforum.org"] [uri "/.git/config"] [unique_id "aY7qCUKMgqDnCKBKPq-YwwAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:59:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:59:46.636276 2026] [security2:error] [pid 9507:tid 9507] [client 104.207.56.175:22085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "melsjukeboxes.com"] [uri "/api/.env"] [unique_id "aY7Z8ifgvnloM_5JnleXXAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:03:08 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:03:03.331964 2026] [security2:error] [pid 25263:tid 25263] [client 104.207.56.175:24345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medics-group.com"] [uri "/admin/.env"] [unique_id "aY7Mp72zvD9D0ZNJBzqXEAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:07:32 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:07:27.993726 2026] [security2:error] [pid 22743:tid 22743] [client 104.207.56.175:62081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcbrearty.org"] [uri "/site/.git/config"] [unique_id "aY6_n-Z1fHeVQve77tQ-qQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:08:03 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:07:58.200672 2026] [security2:error] [pid 18127:tid 18127] [client 104.207.56.175:35565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "math1on1.net"] [uri "/frontend/.env"] [unique_id "aY6xrj9IbgqjnBmXNHasYgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:47:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:47:15.788530 2026] [security2:error] [pid 21031:tid 21031] [client 104.207.56.175:29393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marjorierosenberg.com"] [uri "/config/.env"] [unique_id "aY6ew3EInpCDFmZYP2eV3wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Axel	2026-02-13 01:40:04 (4 months ago)	Blocked by Fail2Ban. Flagged by jail plesk-modsecurity	Exploited Host
🇺🇸 TPI-Abuse	2026-02-12 20:17:09 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 15:17:05.765327 2026] [security2:error] [pid 19265:tid 19265] [client 104.207.56.175:62793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "imagesbyaubrey.com"] [uri "/.git/config"] [unique_id "aY41QXj-fzK9Hph8BP8vIwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:46:11 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.175 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:46:04.758692 2026] [security2:error] [pid 1064661:tid 1064728] [client 104.207.56.175:35791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "howilearnedtodanceintherain.com"] [uri "/.git/config"] [unique_id "aY4t_A17iyJuiGuKFMJsdQAAAYA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-28 07:56:18 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 Rip	2025-11-02 05:39:16 (7 months ago)	Authentication attack attempt. CMS Brute Force - Access Forbidden	Brute-Force Web App Attack
Anonymous	2025-10-26 22:46:21 (7 months ago)	wordpress-trap	Web App Attack
🇩🇪 Ad Ministrator	2025-10-21 06:04:21 (7 months ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
Anonymous	2025-10-01 10:14:43 (8 months ago)	2025-10-01T12:14:40.824807 localhost.localdomain sshd[236761]: pam_unix(sshd:auth): authentication f ... show more 2025-10-01T12:14:40.824807 localhost.localdomain sshd[236761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.207.56.175 2025-10-01T12:14:42.701591 localhost.localdomain sshd[236761]: Failed password for invalid user [email protected] from 104.207.56.175 port 21779 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 202.155.187.200

🇹🇭 150.95.82.21

🇻🇳 59.153.220.117

🇭🇰 47.56.137.181

🇻🇳 14.230.111.202

🇰🇷 175.203.61.49

🇺🇸 172.253.8.146

🇻🇳 125.212.244.35

🇬🇪 91.239.206.123

🇩🇪 69.5.169.169

🇺🇸 66.132.172.116

🇮🇳 59.179.31.237

🇺🇸 45.79.128.205

🇲🇦 41.250.84.25

🇳🇱 5.187.35.26

🇺🇸 3.131.24.55

🇰🇷 175.201.203.181

🇺🇸 138.197.204.198

🇺🇸 107.174.194.43

🇮🇳 103.127.30.137