JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.54.116

104.207.54.116 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.54.116

Whois 104.207.54.116

IP Abuse Reports for 104.207.54.116:

This IP address has been reported a total of 138 times from 18 distinct sources. 104.207.54.116 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-03-02 20:32:38 (3 months ago)	Fail2Ban banned 104.207.54.116 for security violations in jail wp-armour. Log: 2026/03/02 20:32:37 [ ... show more Fail2Ban banned 104.207.54.116 for security violations in jail wp-armour. Log: 2026/03/02 20:32:37 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.54.116 \| Target: wplogin" , client: 104.207.54.116, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-02-13 05:52:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:52:33.637976 2026] [security2:error] [pid 7436:tid 7436] [client 104.207.54.116:27829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konahawaii.com"] [uri "/app/.env"] [unique_id "aY68IU82ana8ORWy5_dsMwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:58:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:58:38.492497 2026] [security2:error] [pid 22599:tid 22599] [client 104.207.54.116:53439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kletzer.com"] [uri "/backend/.env"] [unique_id "aY6vfguz3FCK0ht4WI1hdgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:19:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:19:03.210208 2026] [security2:error] [pid 11165:tid 11165] [client 104.207.54.116:40317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anniversarynapkinspersonalized.com"] [uri "/.git/config"] [unique_id "aY6mN8_awfaK43MEq4AVuAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:39:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:39:12.664352 2026] [security2:error] [pid 14964:tid 14964] [client 104.207.54.116:15761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kidswithcamerasmovie.com"] [uri "/admin/.git/config"] [unique_id "aY6c4McQxmz28DJ66NIsagAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:21:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:21:51.196846 2026] [security2:error] [pid 21945:tid 21973] [client 104.207.54.116:59565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keithfamily.net"] [uri "/admin/.git/config"] [unique_id "aY6KvxtceAHuS2V-cx0TlgAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:26:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:25:54.699314 2026] [security2:error] [pid 1064876:tid 1064876] [client 104.207.54.116:16247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karturo.com"] [uri "/backup/.git/config"] [unique_id "aY59oiirCk4QMRlHIsdGWwAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:16:39 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:16:34.115411 2026] [security2:error] [pid 29785:tid 29785] [client 104.207.54.116:22851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apfarrell.com"] [uri "/.env"] [unique_id "aY384hS8jE3e4d9GqqLgUQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-11 22:59:47 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-11	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 21:37:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:37:27.954933 2026] [security2:error] [pid 8779:tid 8779] [client 104.207.54.116:52073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "conventioncenter2dot0.org"] [uri "/config/.env"] [unique_id "aYulF1tomxoj_V4Ht9mrHgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 21:05:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:05:18.590319 2026] [security2:error] [pid 13187:tid 13187] [client 104.207.54.116:32773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "contrarianadvisors.com"] [uri "/new/.git/config"] [unique_id "aYudjlASuwfsI08g0HnsOwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 20:43:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 15:43:49.882492 2026] [security2:error] [pid 11631:tid 11631] [client 104.207.54.116:47135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ebreylaw.com"] [uri "/api/.git/config"] [unique_id "aYuYhRzYzGDl15t8K--UeAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:20:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:20:04.591545 2026] [security2:error] [pid 17871:tid 17871] [client 104.207.54.116:11525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "getpic.com"] [uri "/new/.git/config"] [unique_id "aYrABBukLd_SyfiHfL4D4AAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:53:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:53:28.166761 2026] [security2:error] [pid 21378:tid 21378] [client 104.207.54.116:59181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "geofreightint.com"] [uri "/site/.git/config"] [unique_id "aYqdqLAJ3XYf2JzCFeL2HgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-03 13:44:08 (5 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.03 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.181

🇺🇸 164.90.156.35

🇫🇷 91.231.89.53

🇺🇸 66.146.49.154

🇺🇦 31.42.184.185

🇺🇸 24.112.172.74

🇹🇼 198.235.24.51

🇺🇸 91.230.168.209

🇳🇱 81.19.216.93

🇺🇸 64.62.156.24

🇫🇮 37.27.197.191

🇺🇸 20.64.105.0

🇷🇴 2.57.122.177

🇳🇱 176.65.139.181

🇺🇸 155.2.215.21

🇹🇭 150.95.82.21

🇨🇳 115.190.83.181

🇨🇳 103.96.140.181

🇺🇸 64.62.197.113

🇺🇸 217.77.11.99