JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.169

104.207.55.169 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 26%: ?

26%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.169

Whois 104.207.55.169

IP Abuse Reports for 104.207.55.169:

This IP address has been reported a total of 151 times from 23 distinct sources. 104.207.55.169 was first reported on June 11th 2024, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 04:10:43 (7 hours ago)	Web App Attack	Web App Attack
🇫🇷 Thaliruth	2026-06-14 07:25:28 (6 days ago)	104.207.55.169 - - [14/Jun/2026:09:25:27 +0200] "GET /backups/backup.sql HTTP/1.1" 404 4625 "-" "Moz ... show more 104.207.55.169 - - [14/Jun/2026:09:25:27 +0200] "GET /backups/backup.sql HTTP/1.1" 404 4625 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" ... show less	SQL Injection
🇩🇪 Bedios GmbH	2026-06-07 19:13:27 (1 week ago)	SQL backup theft attempt	Hacking
🇩🇪 Carsten	2026-06-07 19:07:25 (1 week ago)	GET [database.zip]	Port Scan
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇳🇱 debestelapp	2026-02-13 09:25:02 (4 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:04:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:03:57.769052 2026] [security2:error] [pid 15203:tid 15203] [client 104.207.55.169:50767] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ktnwassociatesinc.com"] [uri "/.env"] [unique_id "aY7M3buDWSrV6REabZcOpwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 06:05:59 (4 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:53:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:53:15.630540 2026] [security2:error] [pid 770:tid 770] [client 104.207.55.169:24607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konahawaiirealty.com"] [uri "/wp/.git/config"] [unique_id "aY68S-aDCrW763R1_cUXlAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-13 03:51:03 (4 months ago)	Blocking for trying to access an exploit file: /v2/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-13 02:40:07 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:40:00.383068 2026] [security2:error] [pid 15967:tid 15967] [client 104.207.55.169:19023] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kennythompson.com"] [uri "/.env.local"] [unique_id "aY6PAGoviP7nlsYWCGlfTQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:21:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:21:41.023257 2026] [security2:error] [pid 21945:tid 21978] [client 104.207.55.169:21587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keithfamily.net"] [uri "/.git/config"] [unique_id "aY6KtRtceAHuS2V-cx0TdwAAAJY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:38:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:38:24.113808 2026] [security2:error] [pid 4010:tid 4010] [client 104.207.55.169:41339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathleenhazlett.com"] [uri "/site/.git/config"] [unique_id "aY6AkBNvTflXYy1Qy_-89QAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2026-02-13 01:22:57 (4 months ago)	Probing websites for vulnerabilities	Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-12 23:01:18 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-12	Hacking Web App Attack SSH

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 144.172.103.8

🇺🇸 54.82.193.203

🇺🇸 52.180.137.77

🇭🇰 199.45.155.90

🇱🇹 188.214.133.193

🇺🇸 185.198.240.155

🇮🇷 178.131.130.115

🇬🇹 170.80.111.56

🇬🇧 167.99.197.34

🇺🇸 162.222.203.17

🇩🇪 151.242.129.208

🇩🇪 138.2.190.11

🇷🇴 92.118.39.224

🇳🇱 91.92.40.5

🇩🇪 69.5.169.209

🇪🇬 41.38.141.133

🇹🇷 31.40.196.37

🇺🇸 18.190.15.50

🇩🇪 2.26.51.2

🇩🇪 217.154.146.41