JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.246

104.207.57.246 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.246

Whois 104.207.57.246

IP Abuse Reports for 104.207.57.246:

This IP address has been reported a total of 141 times from 20 distinct sources. 104.207.57.246 was first reported on June 20th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇳🇱 Mangelot Hosting	2026-01-07 05:01:26 (5 months ago)	(db_admin_scan) srv103 DB admin scan 104.207.57.246 (DE/Germany/-): 1 in the last 3600 secs; Ports: ... show more (db_admin_scan) srv103 DB admin scan 104.207.57.246 (DE/Germany/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:56:08 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:56:01.477063 2025] [security2:error] [pid 3654:tid 3654] [client 104.207.57.246:30413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "star-discgolf.com"] [uri "/.git/HEAD"] [unique_id "aVIX8eimMkRk4K7wpCWMrAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:39:22 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:39:17.741226 2025] [security2:error] [pid 31726:tid 31726] [client 104.207.57.246:22503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brownbarn.com"] [uri "/.svn/wc.db"] [unique_id "aVIUBQgm7wSowY3zx6zohQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:42:45 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:42:42.187546 2025] [security2:error] [pid 13050:tid 13050] [client 104.207.57.246:34147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dbfitwell.com"] [uri "/.git/HEAD"] [unique_id "aVIGwnEdGh8IxTB6iN-cHgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-12-29 04:16:17 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.57.246 (DE/Germany/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.57.246 (DE/Germany/-): 1 in the last 3600 secs show less	Web App Attack
🇪🇸 librebit	2025-12-28 23:32:18 (5 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2025-12-27 21:31:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 16:31:39.739174 2025] [security2:error] [pid 20001:tid 20001] [client 104.207.57.246:28969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keithbowles.com"] [uri "/.git/HEAD"] [unique_id "aVBQOyb6kcJiOaPYJ8vaaAAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 21:09:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 16:09:38.430970 2025] [security2:error] [pid 12547:tid 12547] [client 104.207.57.246:40353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "manaplas.com"] [uri "/.git/HEAD"] [unique_id "aVBLEgDkL2oms3FVpTOhhgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-24 07:30:16 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇦🇺 MAGIC	2025-12-24 05:05:50 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇴 adalbertoreyes.org	2025-12-03 16:04:46 (6 months ago)	CategoryPortScan	Port Scan
🇺🇸 TPI-Abuse	2025-12-02 21:58:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:58:41.365307 2025] [security2:error] [pid 24870:tid 24870] [client 104.207.57.246:48153] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarahingber.com"] [uri "/.git/HEAD"] [unique_id "aS9hEcHOWBZR4lnQv7_BYQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:43:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:43:51.496266 2025] [security2:error] [pid 21054:tid 21054] [client 104.207.57.246:57811] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "imprintednapkins.com"] [uri "/.svn/wc.db"] [unique_id "aS58l7oSYQ2VkmK4CmNCuAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:05:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.246 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:05:16.652723 2025] [security2:error] [pid 3599211:tid 3599225] [client 104.207.57.246:50533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.newyorkplasticsurgery.us"] [uri "/.env"] [unique_id "aSaYnCWBb6LubLi-gSEVzgAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.180.185.18

🇺🇸 205.210.31.78

🇺🇸 205.210.31.46

🇭🇰 152.32.170.55

🇭🇰 152.32.169.7

🇺🇸 147.185.132.214

🇺🇸 135.237.126.219

🇨🇳 116.142.73.114

🇺🇸 100.29.192.57

🇫🇷 91.231.89.146

🇫🇷 91.231.89.2

🇦🇺 34.129.47.3

🇺🇸 34.106.61.7

🇯🇵 8.216.16.62

🇭🇰 223.18.181.69

🇺🇸 207.90.244.19

🇵🇪 200.107.163.195

🇵🇪 200.106.49.149

🇦🇷 200.89.159.59

🇺🇸 162.216.150.104