JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.205

104.207.55.205 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.205

Whois 104.207.55.205

IP Abuse Reports for 104.207.55.205:

This IP address has been reported a total of 143 times from 24 distinct sources. 104.207.55.205 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 tilellit.pro	2026-02-20 16:28:49 (3 months ago)	Fail2Ban banned 104.207.55.205 for security violations in jail wp-armour. Log: 2026/02/20 16:28:48 [ ... show more Fail2Ban banned 104.207.55.205 for security violations in jail wp-armour. Log: 2026/02/20 16:28:48 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.55.205 \| Target: wplogin" , client: 104.207.55.205, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 TPI-Abuse	2026-02-19 03:40:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:40:56.048108 2026] [security2:error] [pid 28845:tid 28845] [client 104.207.55.205:20305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "killeenbarrelsandtotes.com"] [uri "/api/.git/config"] [unique_id "aZaGSA14DJRyDI6gCn-YaQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:49:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:49:11.468815 2026] [security2:error] [pid 15927:tid 15927] [client 104.207.55.205:38775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karinproctor.com"] [uri "/.env.production"] [unique_id "aZZsF9lrnrENWzcOQcKQAAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 21:00:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 16:00:27.900945 2026] [security2:error] [pid 1307:tid 1307] [client 104.207.55.205:12773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tt-w.com"] [uri "/.env.local"] [unique_id "aZYoa8wANz2JTmcBEyg2FwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 19:57:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 14:57:09.080483 2026] [security2:error] [pid 1350842:tid 1350870] [client 104.207.55.205:42109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toughcatcompany.com"] [uri "/.env.production"] [unique_id "aZYZlYvfzV9iGRItqWB5GwAAAJg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:32:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:32:23.532461 2026] [security2:error] [pid 22132:tid 22132] [client 104.207.55.205:32147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thewanderingwoods.quest"] [uri "/backup/.git/config"] [unique_id "aZYFtzauD854MnHxfFktEwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:06:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:05:44.094990 2026] [security2:error] [pid 23157:tid 23157] [client 104.207.55.205:54731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watlab.com"] [uri "/api/.env"] [unique_id "aZWrGOvgQT_q3oSJqx8AfAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Baking333	2026-02-18 11:59:25 (3 months ago)	[redacted] 104.207.55.205 - - [18/Feb/2026:12:59:24 +0100] "GET /.env HTTP/1.1" 302 5268 0/36595 "-" ... show more [redacted] 104.207.55.205 - - [18/Feb/2026:12:59:24 +0100] "GET /.env HTTP/1.1" 302 5268 0/36595 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" [redacted] 104.207.55.205 - - [18/Feb/2026:12:59:24 +0100] "GET /.[redacted] HTTP/1.1" 302 5268 0/35147 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:39 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇪🇸 masterguru	2025-12-19 17:20:27 (5 months ago)	Illegal Content-Type header. Match of "rx ^ (920470-122)	Hacking
🇧🇪 madeit	2025-11-27 12:24:23 (6 months ago)		Web App Attack
🇺🇸 nowyouknow	2025-11-26 19:45:07 (6 months ago)	(From [email protected]) Are you searching for a job that can be done right away? If so, countles ... show more (From [email protected]) Are you searching for a job that can be done right away? If so, countless businesses are hiring website chat support agents - no experience is needed, as full training will be provided. Click here to complete your application if you are interested. -----> THEmoneyfromhome.com show less	Phishing Web Spam
🇺🇸 nowyouknow	2025-11-26 16:55:22 (6 months ago)	(From [email protected]) Are you searching for a job that can be done right away? If so, ... show more (From [email protected]) Are you searching for a job that can be done right away? If so, countless businesses are hiring website chat support agents - no experience is needed, as full training will be provided. Click here to complete your application if you are interested. -----> THEmoneyfromhome.com show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-24 09:17:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:16:54.478524 2025] [security2:error] [pid 13321:tid 13321] [client 104.207.55.205:9279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.beautifulnoise.com"] [uri "/.git/HEAD"] [unique_id "aSQihvadp7aB0behLSpjxgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:22:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:22:07.449621 2025] [security2:error] [pid 5199:tid 5199] [client 104.207.55.205:39817] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.loupgaroupress.freerein.info"] [uri "/.svn/wc.db"] [unique_id "aSP5j8lFMBWq5vHjpKhzoQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 113.173.69.229

🇰🇷 61.72.55.130

🇮🇪 52.213.12.220

🇬🇧 35.203.211.35

🇸🇦 5.111.123.59

🇨🇳 203.212.9.221

🇺🇸 172.70.126.57

🇨🇴 152.200.205.179

🇿🇦 102.64.34.147

🇺🇸 64.62.197.96

🇨🇳 210.14.142.89

🇩🇪 206.189.59.153

🇺🇸 206.0.68.175

🇩🇪 194.88.98.115

🇦🇪 132.243.121.237

🇳🇱 45.148.10.152

🇰🇷 1.245.74.10

🇰🇷 222.239.251.12

🇧🇪 198.235.24.217

🇺🇸 162.216.150.176