JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.234

104.207.57.234 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.234

Whois 104.207.57.234

IP Abuse Reports for 104.207.57.234:

This IP address has been reported a total of 136 times from 17 distinct sources. 104.207.57.234 was first reported on June 6th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-18 04:23:51 (5 days ago)	Wordpress malicious attack:[octaflood]	Web App Attack
🇬🇧 noise.agency	2026-03-12 17:04:49 (3 months ago)	(wordpress) Failed wordpress login from 104.207.57.234 (DE/Germany/-)	Brute-Force
🇸🇪 SkyDancer	2026-02-12 07:31:26 (4 months ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-10 23:41:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 18:41:45.642721 2026] [security2:error] [pid 4978:tid 4978] [client 104.207.57.234:32875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "appsdips.com"] [uri "/app/.env"] [unique_id "aYvCObkJVboYe4D6Kpxr0wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:03:12 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:02:55.670518 2026] [security2:error] [pid 15312:tid 15312] [client 104.207.57.234:51183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idledog.com"] [uri "/v2/.git/config"] [unique_id "aYq7_5TrAggYgjUYRejHVQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:57:11 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:57:04.083364 2026] [security2:error] [pid 21374:tid 21374] [client 104.207.57.234:64685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ic1surplus.com"] [uri "/v2/.git/config"] [unique_id "aYqskG-8zozhGjhFScNIEgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:47:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:47:38.782150 2026] [security2:error] [pid 2616081:tid 2616081] [client 104.207.57.234:13955] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keysenterprise.com"] [uri "/admin/.git/config"] [unique_id "aYqAKnNujYqOt7C2txXFewAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ne1for23	2026-02-09 23:14:24 (4 months ago)	Attempting to probe for sensitive information accidently exposed via git config. 104.207.57.234 - - ... show more Attempting to probe for sensitive information accidently exposed via git config. 104.207.57.234 - - [09/Feb/2026:23:13:44 +0000] "GET /v2/.git/config HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Hacking
🇳🇱 homeshowdomain.nl	2026-02-09 22:59:34 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇩🇪 Carsten	2026-02-09 22:35:51 (4 months ago)	GET [frontend/.env]	Port Scan
🇺🇸 myagent.site	2026-02-09 20:19:39 (4 months ago)	Blocking for trying to access an exploit file: /wp/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-09 20:17:07 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:16:57.961536 2026] [security2:error] [pid 22695:tid 22695] [client 104.207.57.234:33905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hometoamerica.com"] [uri "/app/.env"] [unique_id "aYpAuSvhaeY7aDrCkCz6OgAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-20 01:13:30 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 10:05:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:05:04.212676 2025] [security2:error] [pid 17676:tid 17676] [client 104.207.57.234:60123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.dodgersboosterclub.com"] [uri "/.svn/wc.db"] [unique_id "aSbQ0KTfz8APQfHGT72MggAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:53:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:52:53.485362 2025] [security2:error] [pid 13111:tid 13150] [client 104.207.57.234:54077] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.theworldinstituteofslowness.com"] [uri "/.git/HEAD"] [unique_id "aSZ5lSv-PRieONCNNDIFnAAAAUU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.73.27.245

🇨🇳 223.73.18.204

🇺🇸 147.185.132.118

🇭🇰 121.202.198.98

🇷🇺 95.105.52.153

🇫🇷 91.231.89.212

🇺🇸 23.21.250.48

🇺🇸 13.219.221.228

🇺🇸 216.73.217.175

🇦🇺 203.185.198.246

🇺🇸 173.255.210.89

🇻🇳 152.32.163.183

🇺🇸 136.117.75.57

🇺🇸 68.71.245.206

🇨🇳 60.188.58.133

🇸🇮 31.57.184.232

🇺🇸 16.148.32.197

🇨🇳 218.207.25.249

🇹🇼 198.235.24.114

🇺🇸 162.216.150.192