JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.107

104.207.57.107 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.107

Whois 104.207.57.107

IP Abuse Reports for 104.207.57.107:

This IP address has been reported a total of 121 times from 14 distinct sources. 104.207.57.107 was first reported on June 20th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-03-09 11:33:13 (2 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-09 21:14:42 (3 months ago)	Form spam	Web Spam
🇦🇺 MAGIC	2025-12-07 00:05:54 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 11:08:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:08:47.033007 2025] [security2:error] [pid 5373:tid 5373] [client 104.207.57.107:36583] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.lifestylemedica.com"] [uri "/.git/HEAD"] [unique_id "aSbfvztaKHHv0PYCkwkcwwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-26 10:46:34 (6 months ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:56:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:56:12.923211 2025] [security2:error] [pid 13061:tid 13096] [client 104.207.57.107:17699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mateo-abogados.com"] [uri "/.env"] [unique_id "aSaWfMSbpAzTiaHKW529iAAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:59:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:59:24.280094 2025] [security2:error] [pid 27266:tid 27266] [client 104.207.57.107:28439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.hvacmechanalysis.com"] [uri "/.svn/wc.db"] [unique_id "aSZtDD53XzTqHnL8U7Y0MgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:34:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:34:04.574465 2025] [security2:error] [pid 18322:tid 18322] [client 104.207.57.107:41527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.pendergrassfamily.com"] [uri "/.git/HEAD"] [unique_id "aSUVnIRCBpgwfHgtURW6eQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:46:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:46:10.048431 2025] [security2:error] [pid 25007:tid 25007] [client 104.207.57.107:59753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.gandmaquatics.com"] [uri "/.git/HEAD"] [unique_id "aSQNQv70X9sIe65NPlPq5AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:11:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:11:10.800453 2025] [security2:error] [pid 1460:tid 1460] [client 104.207.57.107:23629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.michaelmoorefield.com"] [uri "/.svn/wc.db"] [unique_id "aSQFDllTJmTlp1qoV26PSgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:57:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:57:30.040980 2025] [security2:error] [pid 528:tid 528] [client 104.207.57.107:32475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.heathdiesel.com"] [uri "/.git/HEAD"] [unique_id "aSPzyriVxBvXyxTT4zSdMAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:52:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:51:54.142077 2025] [security2:error] [pid 23058:tid 23058] [client 104.207.57.107:25817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.rimworld.com"] [uri "/.env"] [unique_id "aSPkauTdpbbfdnqqgdBlFAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-23 07:40:02 (6 months ago)	\| SQL injection attempt.	Hacking SQL Injection Web App Attack
Anonymous	2025-11-12 14:06:43 (6 months ago)	Attempted brute force login to web vpn 36 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 36 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 Rip	2025-11-02 08:31:30 (7 months ago)	Authentication attack attempt. CMS Brute Force - Access Forbidden	Brute-Force Web App Attack

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a02:4780:3f:2251:0:795:c038:1

🇺🇸 2604:a880:400:d1:0:4:8bf7:9001

🇷🇺 217.149.191.246

🇨🇳 202.98.252.222

🇭🇺 185.196.55.82

🇧🇷 45.179.189.30

🇨🇭 37.156.44.25

🇨🇳 223.100.224.75

🇩🇪 178.104.42.207

🇩🇪 155.117.127.153

🇮🇳 128.185.194.190

🇺🇸 103.196.9.7

🇳🇱 85.11.167.128

🇺🇸 57.141.16.6

🇰🇿 37.208.46.130

🇨🇳 36.151.146.246

🇺🇸 23.95.186.167

🇨🇳 223.73.192.219

🇹🇼 220.132.89.220

🇹🇭 202.44.227.202