JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.54.5

104.207.54.5 was found in our database!

This IP was reported 72 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.54.5

Whois 104.207.54.5

IP Abuse Reports for 104.207.54.5:

This IP address has been reported a total of 72 times from 12 distinct sources. 104.207.54.5 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-03-29 17:30:11 (2 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇪🇸 librebit	2026-02-07 00:26:36 (4 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇺🇸 TPI-Abuse	2025-11-26 12:10:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:10:10.327575 2025] [security2:error] [pid 10693:tid 10693] [client 104.207.54.5:52211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.cassandramarisalon.com"] [uri "/.env"] [unique_id "aSbuImWS1SXx-i2811e20AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:07:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:07:33.916806 2025] [security2:error] [pid 29719:tid 29719] [client 104.207.54.5:31813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.michaelsabbey.org"] [uri "/.git/HEAD"] [unique_id "aSanNRPCRp8lRohDcV7PPgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:14:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:14:49.547774 2025] [security2:error] [pid 3343204:tid 3343224] [client 104.207.54.5:32801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "taxelon.com.maxelon.com"] [uri "/.env"] [unique_id "aSZGebRcUqZZgnn61k3-ogAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:28:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:28:41.118046 2025] [security2:error] [pid 28535:tid 28535] [client 104.207.54.5:11317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.intra.es"] [uri "/.env"] [unique_id "aSU-iejQTQIeKin5RKsqWAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:51:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:51:00.886885 2025] [security2:error] [pid 27438:tid 27575] [client 104.207.54.5:54289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.nederbragt.net"] [uri "/.git/HEAD"] [unique_id "aSQqhG60hxJlTAkLJ2BMwAAAAJE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:14:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.54.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:14:44.465860 2025] [security2:error] [pid 5793:tid 5793] [client 104.207.54.5:53139] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bisbyphotography.com"] [uri "/.git/HEAD"] [unique_id "aSQiBNLzUwQzKu19Eit8LgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Ad Ministrator	2025-10-18 05:53:20 (7 months ago)	RdpGuard detected brute-force attempt on RD-WEB	Brute-Force
Anonymous	2025-04-05 15:54:09 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 12:47:28 (1 year ago)	Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 21:42:49 (1 year ago)	Attempted brute force login to web vpn 11 time(s); last attempt for 2025.04.03 is noted in report ti ... show more Attempted brute force login to web vpn 11 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-02 10:54:55 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.02 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.02 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-01 18:57:51 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.01 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.01 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 72 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 202.142.67.222

🇩🇪 194.88.98.113

🇧🇪 188.93.112.20

🇦🇷 186.148.224.83

🇳🇱 172.235.173.150

🇻🇳 113.166.228.53

🇷🇴 92.118.39.62

🇫🇷 51.77.158.34

🇫🇷 51.15.149.97

🇸🇬 43.134.124.166

🇵🇭 222.127.226.53

🇨🇳 220.161.52.149

🇨🇳 180.76.234.93

🇺🇸 172.253.91.153

🇺🇸 162.216.149.74

🇻🇳 103.154.62.14

🇮🇩 103.110.34.131

🇺🇦 91.234.139.176

🇧🇬 91.191.209.198

🇲🇾 47.250.172.71