JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.54.35

104.207.54.35 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.54.35

Whois 104.207.54.35

IP Abuse Reports for 104.207.54.35:

This IP address has been reported a total of 144 times from 21 distinct sources. 104.207.54.35 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-05-10 13:33:22 (1 month ago)	Try to access /xmlrpc.php	Web App Attack
🇮🇹 [email protected]	2026-04-17 01:46:35 (2 months ago)	[Fri Apr 17 03:43:08.132560 2026] [authz_core:error] [pid 289056:tid 289119] [remote 104.207.54.35:3 ... show more [Fri Apr 17 03:43:08.132560 2026] [authz_core:error] [pid 289056:tid 289119] [remote 104.207.54.35:30639] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php [Fri Apr 17 03:44:53.288472 2026] [authz_core:error] [pid 289054:tid 289146] [remote 104.207.54.35:62871] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php [Fri Apr 17 03:46:34.904534 2026] [authz_core:error] [pid 289056:tid 289152] [remote 104.207.54.35:12695] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇮🇹 VINA	2026-04-13 05:10:43 (2 months ago)	Banned by SPAMHAUS ASN-DROP list (ASN: 200373)	DDoS Attack Hacking Bad Web Bot Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:43 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-27 21:17:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 16:17:06.086595 2025] [security2:error] [pid 25547:tid 25547] [client 104.207.54.35:16669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "edmundtadros.com"] [uri "/.svn/wc.db"] [unique_id "aSi_0qoyYwQZp_gscYDRpwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:07:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:07:41.893706 2025] [security2:error] [pid 28922:tid 28922] [client 104.207.54.35:10807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.electricmeatgrinder.com"] [uri "/.svn/wc.db"] [unique_id "aSanPRpPzJQAUXaafssAgQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:34:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:34:47.361148 2025] [security2:error] [pid 22990:tid 22990] [client 104.207.54.35:17247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.perkjazz.com"] [uri "/.svn/wc.db"] [unique_id "aSafh38Lb9c_J6zfK7cD2gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:08:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:08:13.695340 2025] [security2:error] [pid 8656:tid 8656] [client 104.207.54.35:35785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lipingdata.com"] [uri "/.svn/wc.db"] [unique_id "aSaZTZVrFkkrhpv5NFSnGgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:39:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:39:00.966187 2025] [security2:error] [pid 11913:tid 11913] [client 104.207.54.35:12801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.stpetersplayers.co.uk"] [uri "/.env"] [unique_id "aSZaNINjBxDEogdFM6tHuAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:02:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:02:35.966304 2025] [security2:error] [pid 15419:tid 15419] [client 104.207.54.35:51965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.eliteelectricalservices.us"] [uri "/.svn/wc.db"] [unique_id "aSZRq_Cmw8JoFCDpIQRm9gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:34:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:34:18.806143 2025] [security2:error] [pid 32588:tid 32588] [client 104.207.54.35:30327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.78cardsofthetarot-tarotmancy-tarot-cards-and-tarot-readings.com"] [uri "/.git/HEAD"] [unique_id "aSQmmp5jwLehIoXN3XmEygAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:22:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.35 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:22:31.175958 2025] [security2:error] [pid 13292:tid 13292] [client 104.207.54.35:21753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cameronwv.mmldesign.com"] [uri "/.git/HEAD"] [unique_id "aSQHt1XTKun-qL70cRHYdQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-22 05:31:38 (7 months ago)	WP Admin Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-21 08:34:15 (7 months ago)	WP Admin Scan Activities	Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 141.98.83.240

🇺🇸 135.119.104.245

🇰🇷 112.133.105.205

🇮🇹 82.51.158.253

🇬🇧 54.38.147.179

🇺🇸 195.184.76.136

🇺🇸 162.216.149.131

🇨🇳 120.26.46.187

🇺🇸 104.37.185.2

🇳🇱 91.92.40.237

🇬🇧 83.104.125.159

🇧🇷 43.164.196.114

🇺🇸 34.145.141.127

🇧🇪 34.38.29.2

🇳🇱 34.32.217.126

🇺🇸 216.82.20.115

🇩🇪 165.22.82.165

🇺🇸 162.216.150.210

🇮🇳 113.193.187.154

🇩🇪 109.91.4.177