JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.136

104.207.55.136 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 18%: ?

18%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.136

Whois 104.207.55.136

IP Abuse Reports for 104.207.55.136:

This IP address has been reported a total of 132 times from 21 distinct sources. 104.207.55.136 was first reported on June 8th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-02 01:54:12 (4 days ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇫🇷 masterguru	2026-05-15 13:24:30 (3 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.136 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.136 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇬🇧 PeravixGroup	2026-05-09 04:03:47 (4 weeks ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇪🇸 10dencehispahard SL	2026-01-20 06:40:04 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇦🇺 MAGIC	2025-12-07 00:01:28 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇵🇱 IROK	2025-11-27 21:44:46 (6 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
🇫🇮 Shaik Sai Meera	2025-11-27 19:05:06 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
Anonymous	2025-11-26 22:25:01 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:55:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:54:58.243079 2025] [security2:error] [pid 2840:tid 2840] [client 104.207.55.136:21671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.independentmusicconference.com"] [uri "/.git/HEAD"] [unique_id "aSbqkkw7jL7ZXoVXIXLCiAAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 09:21:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:20:55.941323 2025] [security2:error] [pid 28054:tid 28054] [client 104.207.55.136:38333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.wardellbrown.com.sketchnotebook.com"] [uri "/.env"] [unique_id "aSbGd1ZvoaoSuOA685rGiwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:19:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:19:23.642207 2025] [security2:error] [pid 28650:tid 28650] [client 104.207.55.136:14271] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.victorvictor.biz"] [uri "/.git/HEAD"] [unique_id "aSZjq_Rx3d5P6P5aSfOsvAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:46:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:46:11.572083 2025] [security2:error] [pid 13297:tid 13297] [client 104.207.55.136:46805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.hotelkona.com"] [uri "/.git/HEAD"] [unique_id "aSZb4ymi9woLEO6MM_gRpAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-25 23:24:27 (6 months ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:03:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:02:58.941681 2025] [security2:error] [pid 23005:tid 23005] [client 104.207.55.136:17481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.graner.us"] [uri "/.git/HEAD"] [unique_id "aSQfQt-AJW27c-phwssaxgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇻🇳 171.231.196.85

🇺🇸 152.32.205.184

🇺🇸 142.111.152.108

🇺🇸 107.150.103.12

🇸🇬 103.134.154.36

🇫🇷 84.46.247.185

🇺🇸 216.24.212.50

🇬🇧 185.247.137.239

🇬🇧 185.247.137.73

🇺🇸 174.35.25.179

🇺🇸 172.253.86.16

🇻🇳 116.110.149.81

🇷🇺 93.95.138.44

🇳🇱 45.148.10.151

🇹🇷 45.143.99.27

🇵🇰 38.100.220.226

🇨🇳 27.25.70.87

🇰🇷 1.247.245.61

🇰🇷 211.178.247.182