JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.108

104.207.57.108 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.108

Whois 104.207.57.108

IP Abuse Reports for 104.207.57.108:

This IP address has been reported a total of 132 times from 22 distinct sources. 104.207.57.108 was first reported on June 6th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 4server	2026-05-12 05:01:55 (1 month ago)	[TueMay1207:01:49.7436502026][security2:error][pid113620:tid113639][client104.207.57.108:0]ModSecuri ... show more [TueMay1207:01:49.7436502026][security2:error][pid113620:tid113639][client104.207.57.108:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Stringmatch\"/xmlrpc.php\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"367\"][id\"960024\"][msg\"XML-RPCdisabled\"][hostname\"edelhaut.ch\"][uri\"/xmlrpc.php\"][unique_id\"agK0PbufDC7EunoGxU4KuQAAABE\"] show less	Hacking Web App Attack
🇫🇷 masterguru	2026-04-26 17:44:01 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.57.108 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.57.108 (DE/Germany/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 solution.it	2026-04-25 19:54:43 (1 month ago)	[Sat Apr 25 21:54:42.114015 2026] [php7:error] [pid 2584206:tid 2584206] [client 104.207.57.108:3416 ... show more [Sat Apr 25 21:54:42.114015 2026] [php7:error] [pid 2584206:tid 2584206] [client 104.207.57.108:34163] script '/var/www/html/blog.solution.it/wp-login.php' not found or unable to stat show less	Web App Attack
🇮🇹 Rosh	2026-03-24 05:50:45 (2 months ago)	[03/24/26 06:50:45] Restricted access detected by web app	Web App Attack
Anonymous	2026-01-05 20:13:03 (5 months ago)	Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇧🇪 voormedia	2025-11-26 17:37:45 (6 months ago)	Accessed trap at '/.env'	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:29:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:29:48.587127 2025] [security2:error] [pid 2964:tid 2964] [client 104.207.57.108:9375] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "birdlovers.net"] [uri "/.env"] [unique_id "aSZ0LNZ3Gjd1fbDKwqUK4AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:21:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:21:18.840257 2025] [security2:error] [pid 12103:tid 12139] [client 104.207.57.108:21301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.wbwstudio.com"] [uri "/.git/HEAD"] [unique_id "aSQVfud3pxroRSWDTtqE7wAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:32:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.108 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.108 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:32:25.567740 2025] [security2:error] [pid 18619:tid 18619] [client 104.207.57.108:32171] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kittencream.com.mykelmilur.com"] [uri "/.svn/wc.db"] [unique_id "aSP7-VZjMwnVPWbqS0LWpQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-10 23:20:34 (8 months ago)	Attempted brute force login to web vpn 90 time(s); last attempt for 2025.10.10 is noted in report ti ... show more Attempted brute force login to web vpn 90 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-09 23:46:07 (8 months ago)	Attempted brute force login to web vpn 90 time(s); last attempt for 2025.10.09 is noted in report ti ... show more Attempted brute force login to web vpn 90 time(s); last attempt for 2025.10.09 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-08 19:53:48 (8 months ago)	Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.08 is noted in report ti ... show more Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-07 21:53:19 (8 months ago)	Attempted brute force login to web vpn 37 time(s); last attempt for 2025.10.07 is noted in report ti ... show more Attempted brute force login to web vpn 37 time(s); last attempt for 2025.10.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-07 00:17:05 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 21:51:18 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.248.197.77

🇨🇳 183.199.157.40

🇷🇺 31.207.246.97

🇺🇸 18.232.12.157

🇵🇾 190.128.201.18

🇳🇱 183.81.169.76

🇰🇷 175.126.37.156

🇺🇸 172.93.103.2

🇷🇺 158.160.209.126

🇩🇪 130.61.152.179

🇫🇷 92.205.57.72

🇬🇧 35.242.136.151

🇺🇸 35.230.172.54

🇧🇪 34.62.184.233

🇺🇸 20.172.240.136

🇨🇳 14.103.86.183

🇬🇧 198.244.226.254

🇬🇧 195.96.139.175

🇬🇧 193.163.125.119

🇬🇧 185.247.137.161