JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.211

104.207.55.211 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.211

Whois 104.207.55.211

IP Abuse Reports for 104.207.55.211:

This IP address has been reported a total of 141 times from 16 distinct sources. 104.207.55.211 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-05-30 12:17:57 (3 weeks ago)	(y4) Failed scan -byebye- from 104.207.55.211 (DE/Germany/-): (CF_ENABLE)	Hacking
🇩🇪 iNetWorker	2026-05-25 22:42:19 (3 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇬🇧 Steve	2026-02-17 17:04:03 (4 months ago)	Forum Spam	Web Spam
Anonymous	2025-12-21 13:15:17 (6 months ago)	Attempted brute force login to web vpn 216 time(s); last attempt for 2025.12.21 is noted in report t ... show more Attempted brute force login to web vpn 216 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 23:57:59 (6 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.12.19 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 COMPLEX	2025-12-14 23:07:46 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (POST method) Endpoint: / show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 20:51:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 15:51:32.319900 2025] [security2:error] [pid 14407:tid 14407] [client 104.207.55.211:59527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.concentricsteel.com"] [uri "/.svn/wc.db"] [unique_id "aSdoVPcp6solElQt_86X3gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 OceanTreasure	2025-11-26 13:00:03 (6 months ago)	tcp/80; /.env* dotfile probe (R21): "GET /.env" @ 2025-11-26T12:55:36Z	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:09:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:09:05.970083 2025] [security2:error] [pid 3940:tid 3940] [client 104.207.55.211:51025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ultratecnologia.com"] [uri "/.env"] [unique_id "aSVWETMlhoWRzdqiNkeMOAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:38:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:38:37.054308 2025] [security2:error] [pid 22103:tid 22103] [client 104.207.55.211:54509] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.pamelaweisberg.com"] [uri "/.git/HEAD"] [unique_id "aSVO7QJYUQC4fXhqSqid-QAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:23:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:23:36.085204 2025] [security2:error] [pid 13818:tid 13818] [client 104.207.55.211:10075] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.mikeneame.com"] [uri "/.env"] [unique_id "aSVLaMnImIlMh1ffv4lqowAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:52:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:52:27.043618 2025] [security2:error] [pid 30941:tid 30941] [client 104.207.55.211:10585] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.pinhole.us"] [uri "/.env"] [unique_id "aSVEG3NTi3bcX8eioTl8KgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:19:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:19:14.665113 2025] [security2:error] [pid 14016:tid 14016] [client 104.207.55.211:36345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.graficasbis.com"] [uri "/.env"] [unique_id "aSU8UutR39-VlzA_Kucl3AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:52:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:51:52.058430 2025] [security2:error] [pid 19752:tid 19752] [client 104.207.55.211:32793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.123clearmyticket.com"] [uri "/.env"] [unique_id "aSU16KNh6F0xQqJEwron0QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:24:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.211 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:24:41.715605 2025] [security2:error] [pid 26648:tid 26648] [client 104.207.55.211:51113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.dixiegeek.com"] [uri "/.svn/wc.db"] [unique_id "aSUviZ2unQqVrvAv1Q0tuQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.197.85.69

🇺🇸 167.99.225.143

🇸🇬 159.65.2.17

🇨🇳 116.62.167.172

🇵🇱 83.97.117.181

🇪🇸 45.92.87.165

🇺🇸 44.167.65.157

🇰🇷 222.98.122.37

🇹🇭 203.154.158.195

🇨🇳 182.43.128.171

🇳🇱 176.65.149.194

🇸🇬 172.217.43.158

🇭🇰 165.154.41.56

🇺🇸 165.154.36.89

🇨🇳 112.14.82.234

🇺🇸 85.208.96.198

🇮🇷 78.110.121.13

🇺🇸 44.56.19.127

🇬🇧 35.203.211.152

🇷🇸 24.135.74.36