JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.93

104.207.56.93 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.93

Whois 104.207.56.93

IP Abuse Reports for 104.207.56.93:

This IP address has been reported a total of 133 times from 15 distinct sources. 104.207.56.93 was first reported on June 11th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-30 00:05:30 (1 week ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-05.104.207.56.93.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-05.104.207.56.93.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇳🇱 jjnxpct	2026-04-22 03:48:53 (1 month ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /contact/contactformulier (Rule ID: 932230) - Remote Command Execution: Unix Command Injection (2-3 chars) show less	Web App Attack SQL Injection
🇦🇺 oncord	2026-04-11 16:21:28 (1 month ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-13 13:21:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:21:23.478732 2026] [security2:error] [pid 2313:tid 2313] [client 104.207.56.93:23589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "miles2go.net"] [uri "/backup/.git/config"] [unique_id "aY8lU8CovKBTI5aLfFvZmgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:43:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:42:58.823948 2026] [security2:error] [pid 31416:tid 31416] [client 104.207.56.93:31301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mesaparaseis.com"] [uri "/frontend/.env"] [unique_id "aY7kEg8DxZbd2-rZvQ39HgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:11:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:11:20.819424 2026] [security2:error] [pid 3561:tid 3561] [client 104.207.56.93:41129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medpact.net"] [uri "/.env.save"] [unique_id "aY7OmFuskDEuJaldtfvDrwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:13:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:13:10.461812 2026] [security2:error] [pid 21899:tid 21944] [client 104.207.56.93:53093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maroontribe.com"] [uri "/v2/.git/config"] [unique_id "aY6k1lbOvFBDCmI4tvlOuQAAAU4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:56:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:56:04.407716 2026] [security2:error] [pid 13013:tid 13013] [client 104.207.56.93:59395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mantality.com"] [uri "/.env.staging"] [unique_id "aY6SxAtCYHbNtdFrL_2FogAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 15:50:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 10:50:22.315416 2026] [security2:error] [pid 14017:tid 14017] [client 104.207.56.93:32985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dennisdsmith.com"] [uri "/.git/config"] [unique_id "aY32vmwoQ7-yWHMPliJjXQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 01:51:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 20:51:15.338651 2026] [security2:error] [pid 24755:tid 24755] [client 104.207.56.93:18045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fusteriafontane.com"] [uri "/backend/.env"] [unique_id "aYvgk28rEd7o8Sz89I2l5gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 18:09:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 13:08:56.687832 2026] [security2:error] [pid 611:tid 611] [client 104.207.56.93:60331] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuentevictoria.com"] [uri "/app/.env"] [unique_id "aYt0OPasmTdOueG6-ra20gAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-04 18:29:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 13:29:30.507185 2025] [security2:error] [pid 7060:tid 7060] [client 104.207.56.93:50211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trasimeno.ws"] [uri "/.svn/wc.db"] [unique_id "aTHTCjmD-Oqq0OYEh-dlNAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 04:19:28 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 22:45:35 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-04-05 16:31:34 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 104.207.56.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 05 12:31:31.147949 2025] [security2:error] [pid 20617:tid 20619] [client 104.207.56.93:12879] [client 104.207.56.93] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|absurdotron.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "absurdotron.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_Fa4z1CGOTx--NQh4_sHgAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.241

🇬🇧 195.206.182.210

🇬🇧 193.176.29.23

🇬🇧 193.176.29.17

🇳🇱 185.242.226.19

🇫🇷 86.65.168.139

🇺🇸 65.49.20.96

🇬🇧 31.14.254.75

🇸🇬 13.250.22.217

🇺🇸 2a13:9500:16b:bdc0::1

🇻🇳 222.252.198.236

🇬🇧 213.166.84.53

🇬🇧 195.140.214.19

🇲🇽 186.96.145.241

🇬🇧 185.216.145.185

🇺🇸 185.169.108.71

🇵🇪 161.132.38.88

🇺🇸 149.115.157.94

🇫🇷 85.217.140.36

🇺🇸 72.47.208.105