JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.115

104.207.55.115 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.115

Whois 104.207.55.115

IP Abuse Reports for 104.207.55.115:

This IP address has been reported a total of 132 times from 17 distinct sources. 104.207.55.115 was first reported on June 4th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hazzard	2026-05-16 08:16:45 (3 weeks ago)	(wordpress) Failed wordpress login from 104.207.55.115 (DE/Germany/State of Berlin/Berlin/-/[redacte ... show more (wordpress) Failed wordpress login from 104.207.55.115 (DE/Germany/State of Berlin/Berlin/-/[redacted]): (CF_ENABLE) show less	Brute-Force
Anonymous	2026-01-05 20:34:37 (5 months ago)	Attempted brute force login to web vpn 19 time(s); last attempt for 2026.01.05 is noted in report ti ... show more Attempted brute force login to web vpn 19 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 IROK	2026-01-01 17:01:11 (5 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
Anonymous	2025-12-30 08:27:00 (5 months ago)	"GET /.svn/wc.db HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 09:11:40 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:11:32.630647 2025] [security2:error] [pid 2764245:tid 2764292] [client 104.207.55.115:20097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "totalbodycare753.com"] [uri "/.env"] [unique_id "aVJFxCEP6xcy_FVJSfEI4wAAARM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:25:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:25:10.983150 2025] [security2:error] [pid 4998:tid 4998] [client 104.207.55.115:10967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "juliajimmy.com"] [uri "/.env"] [unique_id "aVI65jbAG_cvsY4EWi2WsQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:07:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:07:08.337038 2025] [security2:error] [pid 750:tid 750] [client 104.207.55.115:55409] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "innovacionesnimba.com"] [uri "/.env"] [unique_id "aVI2rJleSqffL3rLCnjZuAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-07 00:05:50 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇧🇪 madeit	2025-11-27 12:18:58 (6 months ago)		Web App Attack
Anonymous	2025-11-26 22:41:07 (6 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.26 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.26 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 07:27:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:27:23.967428 2025] [security2:error] [pid 22928:tid 22928] [client 104.207.55.115:25371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.mspish.com"] [uri "/.env"] [unique_id "aSVaWyv0rITvqeEdSWxVrQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:57:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:56:53.758131 2025] [security2:error] [pid 2698:tid 2698] [client 104.207.55.115:53985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.thewanderinghermit.com"] [uri "/.git/HEAD"] [unique_id "aSVTNWDHWzNYUuJ9tknUDgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:56:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:56:10.900580 2025] [security2:error] [pid 20498:tid 20498] [client 104.207.55.115:40557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davisound.com"] [uri "/.env"] [unique_id "aSUaypekiClgEbxQRM3YLAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:21:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:21:16.633752 2025] [security2:error] [pid 6460:tid 6460] [client 104.207.55.115:17551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cuetzpalin.org"] [uri "/.git/HEAD"] [unique_id "aSUSnI6MoNI6OrY6Mzq38QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-10 20:50:45 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.55.115 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 10 16:50:41.558757 2025] [security2:error] [pid 3235:tid 3235] [client 104.207.55.115:14475] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gotdt.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gotdt.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aOlxoTiQS8-gSnsnPBpFrQAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 202.112.47.54

🇺🇸 20.65.154.175

🇺🇸 2607:f8b0:4001:c20::125

🇺🇸 209.90.232.71

🇨🇱 179.57.170.71

🇰🇷 140.245.67.111

🇮🇳 103.69.9.16

🇳🇱 45.148.10.183

🇳🇱 45.142.193.12

🇦🇺 35.197.181.173

🇺🇸 216.25.89.102

🇨🇳 202.110.62.74

🇧🇷 190.15.108.201

🇷🇺 185.147.81.52

🇧🇷 179.64.45.59

🇺🇸 135.129.119.3

🇬🇧 104.218.165.211

🇷🇴 92.118.39.236

🇨🇭 37.156.44.25

🇺🇸 20.38.32.246