JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.216

104.207.57.216 was found in our database!

This IP was reported 152 times. Confidence of Abuse is 23%: ?

23%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.216

Whois 104.207.57.216

IP Abuse Reports for 104.207.57.216:

This IP address has been reported a total of 152 times from 28 distinct sources. 104.207.57.216 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-28 06:22:34 (3 weeks ago)	2026-05-28T08:22:33.489582+02:00 aion wordpress[287008]: Blocked authentication attempt for administ ... show more 2026-05-28T08:22:33.489582+02:00 aion wordpress[287008]: Blocked authentication attempt for administrator from 104.207.57.216 ... show less	Hacking Brute-Force
🇩🇪 netclix.gr	2026-05-27 12:00:52 (3 weeks ago)	(wordpress) Failed wordpress login from 104.207.57.216 (DE/Germany/-): (CF_ENABLE)	Brute-Force
🇬🇧 poundawebsiteltd	2026-05-26 05:24:37 (4 weeks ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.207.57.216 - - [26/May/2026:06:24:31 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.207.57.216 - - [26/May/2026:06:24:31 +0100] POST /wp-login.php HTTP/1.1 200 6875 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:119.0) Gecko/20100101 Firefox/119.0 show less	Web App Attack
🇲🇽 octageeks.com	2026-05-24 04:09:48 (4 weeks ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇺🇸 lostswordfish.com	2026-05-23 09:42:04 (1 month ago)	Wordfence waf block on secure	Web App Attack
🇩🇪 big-cloud.nl	2026-04-27 06:59:42 (1 month ago)	Try to access /xmlrpc.php?rsd	Web App Attack
🇮🇹 [email protected]	2026-04-18 06:30:55 (2 months ago)	[Sat Apr 18 08:30:55.476163 2026] [authz_core:error] [pid 560721:tid 560791] [remote 104.207.57.216: ... show more [Sat Apr 18 08:30:55.476163 2026] [authz_core:error] [pid 560721:tid 560791] [remote 104.207.57.216:57923] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2026-03-06 19:09:13 (3 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2026-02-23 14:39:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 09:39:22.498465 2026] [security2:error] [pid 7465:tid 7465] [client 104.207.57.216:16963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "militarybratsglobal.srtmanagementservices.com"] [uri "/.git/config"] [unique_id "aZxmmvIm1WKOUgajU1MgAwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 12:52:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 07:52:29.066078 2026] [security2:error] [pid 16410:tid 16410] [client 104.207.57.216:9927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yfuas.osmansirel.com"] [uri "/.git/config"] [unique_id "aZxNjWyg0sKtiNFnknbVuwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:34:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:34:27.259369 2026] [security2:error] [pid 19338:tid 19390] [client 104.207.57.216:24091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamecrazy.us"] [uri "/test/.git/config"] [unique_id "aYpE04WE2kxo01YgpUqeIQAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:48:28 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:48:18.974803 2026] [security2:error] [pid 621161:tid 621198] [client 104.207.57.216:47265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gafmboard.com"] [uri "/test/.git/config"] [unique_id "aYo6AqnHn1F_8LZLsZsz8wAAAJY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 18:37:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 13:37:39.193009 2026] [security2:error] [pid 8358:tid 8358] [client 104.207.57.216:16461] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuzzyecho.com"] [uri "/wp/.git/config"] [unique_id "aYopc61Zr_M55yk2syeLZQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 07:53:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 02:53:22.276675 2026] [security2:error] [pid 1824808:tid 1824808] [client 104.207.57.216:57371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fvsllc.com"] [uri "/api/.env"] [unique_id "aYmScg8qB3UXoYALLWeiOQAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 152 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 175.101.131.169

🇨🇳 118.196.116.160

🇺🇸 64.62.197.55

🇲🇲 37.111.41.245

🇮🇹 158.173.77.98

🇭🇰 152.32.212.226

🇨🇱 136.248.242.166

🇮🇳 49.205.121.222

🇨🇳 47.98.244.175

🇧🇷 45.205.1.244

🇨🇳 36.26.74.162

🇬🇧 35.203.210.221

🇬🇧 5.226.140.19

🇫🇷 2001:41d0:304:300::2397

🇰🇷 222.121.250.203

🇷🇺 212.3.155.8

🇸🇬 208.109.13.31

🇺🇸 199.189.224.30

🇬🇧 198.105.100.223

🇺🇸 198.1.93.192