JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.203

104.207.56.203 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.203

Whois 104.207.56.203

IP Abuse Reports for 104.207.56.203:

This IP address has been reported a total of 126 times from 13 distinct sources. 104.207.56.203 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-05-07 01:12:05 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 masterguru	2026-05-06 16:25:35 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-05-01 10:04:09 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2026-04-25 10:58:22 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-04-23 16:38:57 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-04-21 02:33:21 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-04-15 10:20:04 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.203 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 Lino Project	2026-04-13 10:33:05 (1 month ago)	104.207.56.203 - - [13/Apr/2026:12:33:04 +0200] "POST /xmlrpc.php HTTP/2.0" 403 455 "-" "Mozilla/5.0 ... show more 104.207.56.203 - - [13/Apr/2026:12:33:04 +0200] "POST /xmlrpc.php HTTP/2.0" 403 455 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:127.0) Gecko/20100101 Firefox/127.0" ... show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-12-06 09:03:47 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 06:30:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.203 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:29:59.930121 2025] [security2:error] [pid 5238:tid 5238] [client 104.207.56.203:38865] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "esysapps.com"] [uri "/.git/HEAD"] [unique_id "aSVM5yQhO5cG0PCdEkZTuAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-12 14:09:56 (6 months ago)	Attempted brute force login to web vpn 73 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 73 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-11 07:44:56 (7 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.11 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 22:15:27 (7 months ago)	Attempted brute force login to web vpn 199 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 199 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-09 23:46:13 (7 months ago)	Attempted brute force login to web vpn 144 time(s); last attempt for 2025.10.09 is noted in report t ... show more Attempted brute force login to web vpn 144 time(s); last attempt for 2025.10.09 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 34.86.176.145

🇺🇸 172.234.228.172

🇮🇳 125.19.206.54

🇫🇷 91.196.152.23

🇮🇹 87.17.24.33

🇯🇵 35.200.107.128

🇺🇸 34.145.255.55

🇺🇸 34.24.106.138

🇺🇸 23.131.184.104

🇺🇸 20.29.23.130

🇰🇷 1.238.106.229

🇮🇳 223.196.169.79

🇺🇦 194.42.205.100

🇧🇷 177.85.13.143

🇮🇹 156.146.41.23

🇧🇩 123.49.60.158

🇺🇸 44.220.188.166

🇺🇸 40.124.173.171

🇭🇰 34.92.221.159

🇪🇹 196.190.123.99