JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.126

104.207.55.126 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.126

Whois 104.207.55.126

IP Abuse Reports for 104.207.55.126:

This IP address has been reported a total of 141 times from 20 distinct sources. 104.207.55.126 was first reported on June 18th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 myagent.site	2026-01-15 08:39:11 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-01-13 12:34:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 07:33:54.321462 2026] [security2:error] [pid 20639:tid 20639] [client 104.207.55.126:10345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artglass-jerusalem.net"] [uri "/.svn/wc.db"] [unique_id "aWY7sg40k9fwbE895VbvRgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-12 03:20:07 (5 months ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇫🇷 conseilgouz	2026-01-07 01:59:42 (5 months ago)	upe-12 : Block return, carriage return, ... characters=>/index.php?catid=8&id=75&id=%27& ... show more upe-12 : Block return, carriage return, ... characters=>/index.php?catid=8&id=75&id=%27&option=com_content&view=article(') show less	Hacking
🇮🇩 BPS-StatisticsIndonesia	2026-01-03 22:50:27 (5 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-19 09:21:47 (5 months ago)	WP Login Scan Activities	Web App Attack
🇺🇸 island-freaks.com	2025-12-17 16:45:26 (5 months ago)	Attack Type: WordPress Exploit Bot attempt on /wp-json/wp/v2/users \| DNS 104.207.55.126 \| Agent: Moz ... show more Attack Type: WordPress Exploit Bot attempt on /wp-json/wp/v2/users \| DNS 104.207.55.126 \| Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Port Scan Hacking Bad Web Bot Exploited Host Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-14 07:06:42 (6 months ago)	WP Login Scan Activities	Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 19:35:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 14:35:27.797937 2025] [security2:error] [pid 12115:tid 12115] [client 104.207.55.126:26291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scoretopicturenetwork.com"] [uri "/.git/HEAD"] [unique_id "aTcof1BXfhKgaZq6QhvaKAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 15:30:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 10:30:31.846002 2025] [security2:error] [pid 23012:tid 23012] [client 104.207.55.126:52739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avienhowell.com"] [uri "/.git/HEAD"] [unique_id "aTbvF7i8TA5J97ve0cr5gwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-12-07 22:47:53 (6 months ago)	WP Login Scan Activities	Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 22:33:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 17:33:18.518519 2025] [security2:error] [pid 5065:tid 5065] [client 104.207.55.126:12435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fireflypov.com"] [uri "/.git/HEAD"] [unique_id "aTYArgwrlRqBWMU7mpM4_AAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:45:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:45:13.545383 2025] [security2:error] [pid 8725:tid 8725] [client 104.207.55.126:21231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wpcoc.org"] [uri "/.svn/wc.db"] [unique_id "aTWhCX-T_Uk0luuSk-MN9wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:21:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:20:56.402519 2025] [security2:error] [pid 7704:tid 7704] [client 104.207.55.126:15309] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "glendaleheritage.org"] [uri "/.git/HEAD"] [unique_id "aTV_OPN7s4ux1HoASL6s8AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 16:14:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.126 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:14:01.928832 2025] [security2:error] [pid 23646:tid 23646] [client 104.207.55.126:35741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rabar.net"] [uri "/.git/HEAD"] [unique_id "aTRWSdoXOcak74zUGfcKyAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 195.26.18.82

🇮🇩 180.245.241.190

🇰🇷 110.14.190.217

🇩🇪 46.249.99.46

🇪🇬 41.128.181.199

🇰🇪 197.248.209.145

🇺🇸 136.55.160.10

🇺🇸 2400:cb00:15:1000:9fe5:a814:6de5:d5a5

🇨🇳 218.62.15.102

🇨🇴 185.42.21.94

🇺🇸 172.69.65.172

🇺🇸 154.197.57.219

🇹🇭 119.59.102.236

🇺🇿 95.46.211.142

🇫🇮 82.23.239.88

🇮🇳 66.116.205.19

🇺🇸 64.62.156.82

🇨🇳 58.54.108.202

🇭🇰 45.142.154.18

🇪🇸 78.30.13.71