JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.77

104.207.57.77 was found in our database!

This IP was reported 148 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.77

Whois 104.207.57.77

IP Abuse Reports for 104.207.57.77:

This IP address has been reported a total of 148 times from 24 distinct sources. 104.207.57.77 was first reported on June 21st 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Detmach	2026-04-01 16:03:34 (2 months ago)	Security attack detected. Multiple failed attempts from 104.207.57.77. IP banned for 1440 minutes at ... show more Security attack detected. Multiple failed attempts from 104.207.57.77. IP banned for 1440 minutes at 1.04.2026 19:02:57. Failed attempts: 1 show less	Brute-Force
Anonymous	2026-02-11 09:01:00 (4 months ago)	SMS pumping	DDoS Attack VPN IP Bad Web Bot Web App Attack
Anonymous	2026-01-05 20:11:35 (5 months ago)	Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:24 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-21 12:49:24 (5 months ago)	Attempted brute force login to web vpn 216 time(s); last attempt for 2025.12.21 is noted in report t ... show more Attempted brute force login to web vpn 216 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 23:06:16 (5 months ago)	Attempted brute force login to web vpn 126 time(s); last attempt for 2025.12.19 is noted in report t ... show more Attempted brute force login to web vpn 126 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 12:37:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:37:47.703209 2025] [security2:error] [pid 20754:tid 20754] [client 104.207.57.77:34021] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.macisdead.edgeimprov.com"] [uri "/.env"] [unique_id "aSb0m9R5bc_rxRjal9DzEQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:26:06 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:26:03.184812 2025] [security2:error] [pid 3849:tid 3849] [client 104.207.57.77:38255] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|imageries.quickasawink.org\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "imageries.quickasawink.org"] [uri "/.svn/wc.db"] [unique_id "aSbVu_NGXSA7t2tqDKB_7wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-26 09:33:39 (6 months ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:14:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:14:42.828935 2025] [security2:error] [pid 30984:tid 30984] [client 104.207.57.77:18047] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.daterapebooks.com"] [uri "/.git/HEAD"] [unique_id "aSaa0vpa_sdHvWCzqaUf2gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:48:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:48:50.705374 2025] [security2:error] [pid 1873:tid 1873] [client 104.207.57.77:30213] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.madwave.chevronparkett.com"] [uri "/.git/HEAD"] [unique_id "aSaUwoecmaVrrUYITK5MRQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:15:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:15:39.681210 2025] [security2:error] [pid 17466:tid 17475] [client 104.207.57.77:27627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.julianositalianrestaurant.com"] [uri "/.env"] [unique_id "aSZUu5vX96wK2APxLO0tlwAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:42:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:42:48.308192 2025] [security2:error] [pid 8155:tid 8155] [client 104.207.57.77:47499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.hadleymarketing.com"] [uri "/.git/HEAD"] [unique_id "aSZNCPnJj4ATjP-goPUFkgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 00:19:02 (6 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:33:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.77 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:33:35.071833 2025] [security2:error] [pid 19752:tid 19752] [client 104.207.57.77:10049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.realestateinpalmbeachflorida.com"] [uri "/.svn/wc.db"] [unique_id "aSQmb7IIHr3DeXTaUqxDWgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 148 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇵 218.251.80.200

🇩🇪 217.60.245.42

🇦🇺 203.212.18.251

🇨🇦 199.21.149.124

🇹🇼 198.235.24.67

🇹🇼 198.235.24.60

🇺🇸 195.184.76.180

🇺🇿 188.113.196.136

🇸🇬 161.118.215.148

🇯🇵 158.101.147.12

🇳🇱 157.245.64.58

🇳🇱 91.92.40.239

🇵🇹 85.244.8.67

🇫🇷 85.217.140.30

🇫🇮 45.154.244.2

🇩🇪 45.135.141.23

🇺🇿 198.163.193.253

🇬🇧 193.32.209.229

🇹🇭 184.22.255.216

🇻🇳 180.93.43.225