JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.11

104.207.55.11 was found in our database!

This IP was reported 90 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.11

Whois 104.207.55.11

IP Abuse Reports for 104.207.55.11:

This IP address has been reported a total of 90 times from 19 distinct sources. 104.207.55.11 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-03 11:00:42 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.11 (DE/Germany/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.11 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-03-25 18:19:13 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.11 (DE/Germany/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.11 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-03-12 22:30:33 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇫🇷 tilellit.pro	2026-02-25 10:23:40 (3 months ago)	Fail2Ban banned 104.207.55.11 for security violations in jail wp-armour. Log: 2026/02/25 10:23:39 [e ... show more Fail2Ban banned 104.207.55.11 for security violations in jail wp-armour. Log: 2026/02/25 10:23:39 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.55.11 \| Target: wplogin" , client: 104.207.55.11, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇪🇸 10dencehispahard SL	2026-01-13 06:47:12 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-11-27 19:02:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:02:43.044998 2025] [security2:error] [pid 2313:tid 2313] [client 104.207.55.11:17179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adlabsnetworks.net"] [uri "/.git/HEAD"] [unique_id "aSigU9qbX8pSa3C2T4MR9QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:59:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:59:01.853247 2025] [security2:error] [pid 15512:tid 15512] [client 104.207.55.11:40945] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.madisonworkshopwest.com"] [uri "/.git/HEAD"] [unique_id "aSaXJVBDtoPIzIsd5TfnuwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:09:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:09:32.212862 2025] [security2:error] [pid 18589:tid 18589] [client 104.207.55.11:60273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bwmurphy.com"] [uri "/.env"] [unique_id "aSZvbHbGddF6GiPWA7zC6AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:21:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:21:46.198472 2025] [security2:error] [pid 23707:tid 23707] [client 104.207.55.11:38297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.1cdn.com"] [uri "/.svn/wc.db"] [unique_id "aSZkOtdlycI3bR-rdgZv-wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:21:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:21:36.134402 2025] [security2:error] [pid 1116:tid 1116] [client 104.207.55.11:17085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.plasterprose.com"] [uri "/.svn/wc.db"] [unique_id "aSZWIN93iCrPW93Z6VTDhgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:36:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:36:10.143042 2025] [security2:error] [pid 30780:tid 30780] [client 104.207.55.11:21137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.starktigers75.com"] [uri "/.svn/wc.db"] [unique_id "aSZLerC61I4P6-3OVNzHeAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:14:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:14:23.166365 2025] [security2:error] [pid 570:tid 570] [client 104.207.55.11:21475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.konstantiasofokleous.com"] [uri "/.svn/wc.db"] [unique_id "aSZGX-CGNRFso7cwvcl9-AAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:01:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:01:22.888982 2025] [security2:error] [pid 22106:tid 22106] [client 104.207.55.11:17361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.delicioushotspots.com"] [uri "/.env"] [unique_id "aSU4ItRGIYHd0NbjAvpe-AAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:30:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:30:37.875792 2025] [security2:error] [pid 19940:tid 19940] [client 104.207.55.11:10999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.kentsavagelaw.com"] [uri "/.svn/wc.db"] [unique_id "aSUGveod42SZj2lzEm2eqQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:12:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:12:02.353016 2025] [security2:error] [pid 17647:tid 17647] [client 104.207.55.11:27235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.flydarkestdays.extreme-atv.com"] [uri "/.svn/wc.db"] [unique_id "aSQhYqUFHP5XNtShLicErgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 90 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 223.185.131.185

🇩🇪 213.209.159.56

🇲🇽 189.167.50.45

🇲🇽 187.145.141.251

🇺🇸 184.105.139.92

🇮🇳 152.58.130.40

🇨🇳 101.126.66.30

🇫🇷 79.91.251.133

🇩🇪 37.138.235.26

🇬🇧 195.206.182.210

🇯🇵 156.227.232.198

🇰🇷 112.175.29.94

🇳🇱 45.148.10.157

🇺🇸 31.59.118.33

🇰🇷 13.124.94.36

🇷🇺 95.220.41.250

🇫🇷 51.75.200.91

🇺🇸 34.220.45.10

🇺🇸 20.80.72.203

🇧🇷 205.210.31.227