JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.233

104.207.56.233 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.233

Whois 104.207.56.233

IP Abuse Reports for 104.207.56.233:

This IP address has been reported a total of 153 times from 22 distinct sources. 104.207.56.233 was first reported on June 7th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 Saec	2026-06-12 01:30:33 (1 week ago)	Jarvis auto-ban: CF honeypot path /xmlrpc.php (3× on saec.ovh)	Port Scan Web App Attack
🇩🇪 Bedios GmbH	2026-05-04 04:12:08 (1 month ago)	Login credentials theft attempt	Hacking
🇩🇪 _ArminS_	2026-04-30 07:01:07 (1 month ago)	WEB-Scan 46009:80 detected 2026.04.30 09:01:07 blocked until 2026.06.19 02:03:54	Port Scan
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 mnsf	2026-02-15 23:05:46 (4 months ago)	Too many Status 40X (12) Scanning/Probing (13)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-02-15 12:49:12 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:28:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:28:29.600231 2026] [security2:error] [pid 17995:tid 17995] [client 104.207.56.233:32675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "title44.com"] [uri "/site/.git/config"] [unique_id "aZG77YaA0ME5PnwloYNUkwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2026-02-15 12:17:59 (4 months ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:05:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:04:54.471402 2026] [security2:error] [pid 19791:tid 19869] [client 104.207.56.233:48815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tigerresource.com"] [uri "/.env.local"] [unique_id "aZG2ZhKq6u_YnrIXroFjDwAAARA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 11:51:54 (4 months ago)	Blocking for trying to access an exploit file: /api/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-15 05:58:39 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:58:33.963068 2026] [security2:error] [pid 1425:tid 1425] [client 104.207.56.233:18011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "swwpccpa.com"] [uri "/.env.staging"] [unique_id "aZFgiZwMAntGd7awCEl6gwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:34:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:34:40.091289 2026] [security2:error] [pid 20107:tid 20107] [client 104.207.56.233:62169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "susanoneill.us"] [uri "/.git/config"] [unique_id "aZFa8HWK1gv01uMSm98yJQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:57:32 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:57:27.090329 2026] [security2:error] [pid 27717:tid 27717] [client 104.207.56.233:48739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stitchguild.com"] [uri "/.env.local"] [unique_id "aZFEJ4pJVEs76oKLXSOWWAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:28:28 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:28:23.573385 2026] [security2:error] [pid 967:tid 967] [client 104.207.56.233:54955] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "statisticsvignettes.com"] [uri "/.env.local"] [unique_id "aZE9V1blsxGH5rogyBdPYAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:01:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.233 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:01:08.721612 2026] [security2:error] [pid 20067:tid 20067] [client 104.207.56.233:44609] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ssl-grp.com"] [uri "/.env.save"] [unique_id "aZE29Gf5XfwQDQ2OIjhY-wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 51.15.149.97

🇳🇱 45.148.10.141

🇮🇳 20.235.157.149

🇫🇷 2a02:842a:a800:a501:a141:788b:7fb9:9888

🇺🇸 216.180.246.234

🇳🇱 185.224.128.136

🇸🇪 157.22.75.162

🇺🇸 153.80.156.215

🇺🇸 143.42.1.52

🇬🇧 143.14.92.73

🇳🇬 102.88.21.136

🇺🇸 43.153.57.122

🇦🇺 14.200.249.128

🇷🇴 2.57.121.25

🇷🇴 193.239.176.242

🇮🇳 182.78.69.178

🇩🇪 161.35.65.86

🇨🇳 111.121.59.9

🇧🇬 79.124.49.226

🇰🇷 49.247.37.22