JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.83

104.207.57.83 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.83

Whois 104.207.57.83

IP Abuse Reports for 104.207.57.83:

This IP address has been reported a total of 135 times from 19 distinct sources. 104.207.57.83 was first reported on June 6th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-01 18:16:04 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.57.83 (DE/Germany/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.57.83 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-03-31 12:14:19 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.57.83 (DE/Germany/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.57.83 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇵🇱 dcnet	2026-03-08 00:00:00 (3 months ago)	SSL VPN brute force credential stuffing on FortiGate 100F - unknown user login attempts	Hacking Brute-Force
Anonymous	2026-02-28 23:17:00 (3 months ago)	"GET /.aws/credentials HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:01:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:00:53.522652 2026] [security2:error] [pid 28609:tid 28609] [client 104.207.57.83:34701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kennedimoore.click"] [uri "/app/.env"] [unique_id "aZZ85e-cPgFMrgaAEZiUOgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:48:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:48:39.428730 2026] [security2:error] [pid 7675:tid 7675] [client 104.207.57.83:57275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karieva.com"] [uri "/v2/.git/config"] [unique_id "aZZr98wzLhWO2UczSgC4iwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:49:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:48:49.755760 2026] [security2:error] [pid 16801:tid 16801] [client 104.207.57.83:19337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thoughtage.com"] [uri "/wp/.git/config"] [unique_id "aZYJkfhLb184p6kCdc4WnwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 17:18:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 12:18:44.425298 2026] [security2:error] [pid 93325:tid 93325] [client 104.207.57.83:16333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ziccardiart.com"] [uri "/.env.staging"] [unique_id "aZX0dHHuASFf06Yd3vnjkgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-18 13:14:48 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.57.83 (DE/Germany/-)	SQL Injection
🇩🇪 filstal.org	2026-02-18 12:52:11 (3 months ago)	CrowdSec-Report: crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:09:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:09:07.154858 2026] [security2:error] [pid 12539:tid 12539] [client 104.207.57.83:42835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waynos.net"] [uri "/.env"] [unique_id "aZWr43nto_OYmXhVpF0EUQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:44:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:44:18.045608 2026] [security2:error] [pid 20936:tid 20936] [client 104.207.57.83:52787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wallpaperpro.com"] [uri "/app/.env"] [unique_id "aZWmEizAeKyC_K5s6BrhKQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-31 03:07:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 22:07:15.346737 2025] [security2:error] [pid 19761:tid 19761] [client 104.207.57.83:24967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ic1surplus.com"] [uri "/.svn/wc.db"] [unique_id "aVSTY_2lqRS0nnlM4wxD7QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-30 08:27:04 (5 months ago)	"GET /.svn/wc.db HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 07:01:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.83 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 02:01:38.658692 2025] [security2:error] [pid 6184:tid 6184] [client 104.207.57.83:26053] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "berksoft.com"] [uri "/.env"] [unique_id "aVInUn46rUriIvhdx3QZaAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 91.92.40.217

🇱🇹 77.90.185.243

🇳🇱 45.148.10.151

🇫🇷 37.66.144.68

🇨🇳 27.155.92.28

🇺🇸 20.14.78.253

🇮🇳 4.213.224.194

🇰🇷 222.236.155.146

🇺🇸 205.185.125.209

🇧🇴 181.115.171.28

🇮🇳 168.144.95.137

🇳🇱 93.123.72.183

🇫🇷 91.231.89.113

🇷🇺 85.95.166.40

🇷🇺 80.246.94.174

🇺🇸 66.132.172.97

🇧🇷 45.205.1.246

🇮🇩 43.133.148.170

🇭🇰 38.76.186.126

🇺🇸 216.180.246.175