JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.86

104.207.56.86 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.86

Whois 104.207.56.86

IP Abuse Reports for 104.207.56.86:

This IP address has been reported a total of 151 times from 19 distinct sources. 104.207.56.86 was first reported on June 6th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 OceanTreasure	2026-02-13 13:15:50 (3 months ago)	tcp/443; Git configuration exposure attempt: "GET /new/.git/config" @ 2026-02-13T13:13:09Z [proxy]	Web App Attack
🇺🇸 mnsf	2026-02-13 13:05:38 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:15:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:15:06.538900 2026] [security2:error] [pid 1256:tid 1256] [client 104.207.56.86:31833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medusakenya.com"] [uri "/app/.git/config"] [unique_id "aY7PeqXc6e3ZWYWZWudlagAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:06:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:06:35.281339 2026] [security2:error] [pid 24119:tid 24119] [client 104.207.56.86:9235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mapleleaf-marketing.com"] [uri "/app/.env"] [unique_id "aY6VO50iNXli2HecWHmYPgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:58:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:58:36.404910 2026] [security2:error] [pid 10855:tid 10855] [client 104.207.56.86:63855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hygeiamedical.icu"] [uri "/.git/config"] [unique_id "aY4w7MBp0SMuP2GdsFm50wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 18:04:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 13:03:57.313444 2026] [security2:error] [pid 16633:tid 16633] [client 104.207.56.86:49705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "draindoctor.us"] [uri "/.env"] [unique_id "aY4WDWNvF6Q4T-TEbCBLuAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:10:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:10:10.939097 2026] [security2:error] [pid 5284:tid 5284] [client 104.207.56.86:61951] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cynthiabaxter.com"] [uri "/.env"] [unique_id "aY4Jct8z01kJhc5RvH6xcAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 Valhalla	2026-02-12 15:50:23 (3 months ago)	/.git/config	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 15:49:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:49:38.715057 2026] [security2:error] [pid 32735:tid 32735] [client 104.207.56.86:57307] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "demodextreatments.com"] [uri "/.git/config"] [unique_id "aY32ki5WcVIBM6cpJa6dkwAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 09:16:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 04:15:58.724027 2026] [security2:error] [pid 14285:tid 14285] [client 104.207.56.86:43435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gaeltv.com"] [uri "/site/.git/config"] [unique_id "aYxIzsjpXUvqKCTBTFhmwwAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:11 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-28 18:44:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 13:44:22.917538 2025] [security2:error] [pid 3286:tid 3286] [client 104.207.56.86:54353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aaattanasio.com"] [uri "/.git/config"] [unique_id "aSnthqLdK7O4-zw3dbmMHQAAADI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 17:49:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 12:49:04.182891 2025] [security2:error] [pid 3132629:tid 3132632] [client 104.207.56.86:60401] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "americanacademyofprojectmanagement.com"] [uri "/wp-config.php.old"] [unique_id "aSngkKf9qhiHRb7xF3MMUAAAAIE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-28 13:35:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.86 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Nov 28 08:35:10.138634 2025] [security2:error] [pid 15548:tid 15548] [client 104.207.56.86:20575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amazedbyu.com"] [uri "/.env.bak"] [unique_id "aSmlDhhdDb1rjdr2Vy2U7QAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.177.179.128

🇪🇹 196.189.236.216

🇩🇪 167.94.146.40

🇮🇩 157.85.211.30

🇩🇿 154.241.3.114

🇨🇳 117.191.83.250

🇵🇱 87.251.64.157

🇸🇬 47.82.52.218

🇺🇸 45.8.19.219

🇮🇳 36.255.66.70

🇨🇭 35.216.195.77

🇬🇧 35.203.211.215

🇮🇷 2.180.216.49

🇩🇪 213.209.159.56

🇳🇱 192.253.248.169

🇦🇷 186.38.26.5

🇮🇳 139.59.4.137

🇮🇳 49.43.243.190

🇩🇪 36.255.97.79

🇫🇮 5.183.255.18