JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.219

104.207.56.219 was found in our database!

This IP was reported 123 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.219

Whois 104.207.56.219

IP Abuse Reports for 104.207.56.219:

This IP address has been reported a total of 123 times from 14 distinct sources. 104.207.56.219 was first reported on June 4th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:41 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-11-26 23:54:21 (6 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.26 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.26 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-26 08:03:40 (6 months ago)	104.207.56.219 - - [26/Nov/2025:08:03:40 +0000] "GET /.env HTTP/1.1" 302 451 "-" "Mozilla/5.0 (Windo ... show more 104.207.56.219 - - [26/Nov/2025:08:03:40 +0000] "GET /.env HTTP/1.1" 302 451 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:10:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:10:19.134847 2025] [security2:error] [pid 18935:tid 18935] [client 104.207.56.219:47951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.beirutbazar.com"] [uri "/.env"] [unique_id "aSan2_AZjMfqS2_lHxJidQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 04:00:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 23:00:12.781541 2025] [security2:error] [pid 1788:tid 1788] [client 104.207.56.219:25331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.artsy-style.com"] [uri "/.svn/wc.db"] [unique_id "aSZ7TIVmf67Z7PorT43hwgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:14:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:14:28.025974 2025] [security2:error] [pid 5714:tid 5735] [client 104.207.56.219:55725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.torreymanagement.com.torreydc.com"] [uri "/.svn/wc.db"] [unique_id "aSZUdJ1DbV1MPBadQiJSwgAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:11:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:11:50.602322 2025] [security2:error] [pid 7208:tid 7208] [client 104.207.56.219:60563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.broadcastmonitor.net"] [uri "/.svn/wc.db"] [unique_id "aSVWto8cnqQdV-45-ddN9wAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:35:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:34:48.646708 2025] [security2:error] [pid 2831:tid 2831] [client 104.207.56.219:15895] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mvseasea.com"] [uri "/.svn/wc.db"] [unique_id "aSVOCF4iWlTrhSMPbOVOgQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:03:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:02:50.493134 2025] [security2:error] [pid 243844:tid 243897] [client 104.207.56.219:15939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.acornway.com"] [uri "/.svn/wc.db"] [unique_id "aSQfOjXOrmUtG4L3PF5J8QAAANc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:30:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:30:23.595602 2025] [security2:error] [pid 7257:tid 7257] [client 104.207.56.219:39109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.goglobex.com"] [uri "/.env"] [unique_id "aSQXn_YhkJTYRlxC2s2j6gAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Ad Ministrator	2025-10-17 16:07:20 (7 months ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
🇩🇪 Ad Ministrator	2025-10-11 18:40:18 (8 months ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
Anonymous	2025-04-07 04:14:44 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 11:56:02 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 23:56:14 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 123 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 128.185.209.162

🇮🇷 178.131.6.234

🇮🇳 168.144.81.184

🇯🇵 156.227.232.198

🇨🇳 123.117.152.61

🇨🇳 123.56.8.132

🇰🇷 101.36.114.198

🇺🇸 34.83.109.162

🇧🇷 14.102.230.4

🇺🇸 13.89.125.231

🇰🇷 220.122.115.9

🇮🇩 103.98.176.164

🇳🇱 45.156.87.216

🇨🇳 14.103.105.62

🇬🇧 185.216.145.170

🇮🇳 182.95.103.74

🇺🇸 159.203.95.137

🇦🇺 139.99.216.24

🇩🇪 118.193.59.4

🇮🇩 112.78.33.157