JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.118

104.207.55.118 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.118

Whois 104.207.55.118

IP Abuse Reports for 104.207.55.118:

This IP address has been reported a total of 153 times from 20 distinct sources. 104.207.55.118 was first reported on June 8th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-29 14:00:21 (2 weeks ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-00.104.207.55.118.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 17-00.104.207.55.118.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-03-05 08:30:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 05 03:30:12.424781 2026] [security2:error] [pid 5953:tid 6047] [client 104.207.55.118:23107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.howardhallis.com"] [uri "/.git/objects/94/3a85e5a8e9c5eaeb1912f5151673f4774ffa01"] [unique_id "aak_FO9_LUubsM0EwzyTGwAAAdc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:27 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-15 12:32:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:32:27.441866 2026] [security2:error] [pid 4842:tid 4842] [client 104.207.55.118:37115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partnersforaccess.net"] [uri "/.env.staging"] [unique_id "aZG825UDuBQQio6_EaZ-rQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 INTEQ	2026-02-15 11:47:56 (3 months ago)	Web attack from 104.207.55.118	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:21:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:20:59.334183 2026] [security2:error] [pid 15328:tid 15328] [client 104.207.55.118:31601] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sellitwithsteve.com"] [uri "/new/.git/config"] [unique_id "aZGsG7n6Mo_MV2vtCgXhsQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:59:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:59:46.197224 2026] [security2:error] [pid 8763:tid 8763] [client 104.207.55.118:30327] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seethrume.com"] [uri "/.git/config"] [unique_id "aZGnIjUekV9UUNr8iapYgwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 07:00:57 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 02:00:48.273954 2026] [security2:error] [pid 918949:tid 918949] [client 104.207.55.118:46015] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "organismeffects.com"] [uri "/frontend/.env"] [unique_id "aZFvIKqc72yiITwq2cJBDwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 DocNetzwerk	2026-02-15 06:43:23 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.55.118 (DE/Germany/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 06:42:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:42:42.481439 2026] [security2:error] [pid 16528:tid 16528] [client 104.207.55.118:48587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "opticasprisma.com"] [uri "/.env.staging"] [unique_id "aZFq4qKDEFexOVTW0Lc7CAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:05:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:05:32.619208 2026] [security2:error] [pid 1440:tid 1440] [client 104.207.55.118:10789] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schonar.com"] [uri "/.env.save"] [unique_id "aZFiLFmeZJKUffHyzNswkwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 05:22:51 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:38:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:38:23.907770 2026] [security2:error] [pid 22675:tid 22675] [client 104.207.55.118:17289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nwesolutions.com"] [uri "/.env.staging"] [unique_id "aZFNv48ef8NUdKAdEDBrzgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:22:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:22:28.352270 2026] [security2:error] [pid 30178:tid 30178] [client 104.207.55.118:20579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "san-marino-boat-registration.com"] [uri "/config/.env"] [unique_id "aZFKBGIl7xyyicb8U3KHHAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:04:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:04:37.761632 2026] [security2:error] [pid 18071:tid 18071] [client 104.207.55.118:34657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pourier.net"] [uri "/test/.git/config"] [unique_id "aZFF1T2rVVmdO8TZgYVCAAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 135.13.28.35

🇸🇬 103.187.147.214

🇦🇺 223.27.18.80

🇺🇸 205.210.31.37

🇺🇸 135.129.128.247

🇨🇳 112.11.245.84

🇳🇱 91.92.40.6

🇧🇬 78.128.114.58

🇺🇸 71.6.134.204

🇦🇺 34.151.182.165

🇺🇸 34.127.165.81

🇻🇳 14.172.233.22

🇺🇸 2607:f8b0:4004:c07::128

🇳🇱 195.178.110.188

🇻🇳 171.244.142.205

🇺🇸 162.243.147.237

🇺🇸 162.216.150.243

🇺🇸 162.216.149.53

🇺🇸 34.174.233.179

🇲🇰 31.11.75.114