JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.249

104.207.55.249 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.249

Whois 104.207.55.249

IP Abuse Reports for 104.207.55.249:

This IP address has been reported a total of 156 times from 25 distinct sources. 104.207.55.249 was first reported on June 21st 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-12 05:12:49 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 01:12:45.487948 2026] [security2:error] [pid 20692:tid 20692] [client 104.207.55.249:47493] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|comitedelafamille.org\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "comitedelafamille.org"] [uri "/www.db"] [unique_id "abJLTTAcj4qmdqDmzlOExQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-05 20:29:43 (5 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.05 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇦🇺 MAGIC	2025-12-20 01:01:21 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-08 16:05:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 11:05:41.462686 2025] [security2:error] [pid 16031:tid 16037] [client 104.207.55.249:48873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sillytheatreproductions.com"] [uri "/.git/HEAD"] [unique_id "aTb3Vf5vqgeZMIzlpHZM5gAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 02:41:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 21:41:27.894260 2025] [security2:error] [pid 10858:tid 10858] [client 104.207.55.249:60773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "turedinmobiliaria.com"] [uri "/.svn/wc.db"] [unique_id "aTY610IsMI-rQR_NCPvPtgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:44:57 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:44:53.443100 2025] [security2:error] [pid 9755:tid 9755] [client 104.207.55.249:51055] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wsffjatc.org"] [uri "/.git/HEAD"] [unique_id "aTWg9a8qTEIPr8jFr15XZAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:47:40 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:47:31.276395 2025] [security2:error] [pid 16156:tid 16156] [client 104.207.55.249:23039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "csems.org"] [uri "/.git/HEAD"] [unique_id "aTV3Y9MWfdh-8kIFjsIHHgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:05:16 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:05:10.654631 2025] [security2:error] [pid 23329:tid 23329] [client 104.207.55.249:35141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abneyfoundation.org"] [uri "/.svn/wc.db"] [unique_id "aTVtdkRphPLSfUkNK1twtwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 13:13:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:13:45.912495 2025] [security2:error] [pid 6103:tid 6103] [client 104.207.55.249:53423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beckersystems.net"] [uri "/.git/HEAD"] [unique_id "aTQsCTRBwsrEDPCIaRMCpAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 07:47:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 02:47:42.672851 2025] [security2:error] [pid 12179:tid 12179] [client 104.207.55.249:51233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "crittergetterpestcontrol.com"] [uri "/.env"] [unique_id "aTKOHkHMMDD9u1Dr1dzQ0QAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 01:13:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 20:13:34.722704 2025] [security2:error] [pid 21322:tid 21322] [client 104.207.55.249:32801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blaslandsporthorses.com"] [uri "/.git/HEAD"] [unique_id "aTIxvrdjIb2ByJRSYnT79QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-04 23:41:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 18:41:08.974795 2025] [security2:error] [pid 14002:tid 14030] [client 104.207.55.249:32975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gingerharvey.com"] [uri "/.git/HEAD"] [unique_id "aTIcFMOoSO1Mwl5Ou6eeCQAAAVg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-04 16:04:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 11:04:11.503075 2025] [security2:error] [pid 15511:tid 15511] [client 104.207.55.249:9281] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "themadwriter.us"] [uri "/.env"] [unique_id "aTGw-z92XovSTtC4DYOGoAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-12-03 13:15:22 (6 months ago)	(From [email protected]) Hello, Greetings from United Electrical Contractors. ... show more (From [email protected]) Hello, Greetings from United Electrical Contractors. After reviewing your services, we are interested in sourcing materials/services from your organization for an upcoming project. I am reaching out to confirm your company’s current capacity, as we have a project scheduled to begin soon. Please provide a quotation for your services so we can continue with our planning. Additionally, kindly review the attached document and let us know if you have any questions or updates regarding feasibility or capabilities. We are ready to proceed once we receive your feedback. Regards, Mckee Sean show less	Phishing Web Spam
Anonymous	2025-11-26 22:00:04 (6 months ago)	suspicious request in access.log	Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇽🇰 178.175.101.178

🇧🇷 177.22.90.134

🇩🇪 141.11.250.227

🇹🇷 78.181.127.157

🇲🇽 186.96.145.241

🇺🇸 162.216.150.12

🇺🇸 147.185.132.231

🇮🇹 91.80.141.192

🇳🇱 89.21.67.174

🇵🇱 37.233.101.21

🇨🇳 223.242.134.122

🇮🇩 203.175.125.130

🇳🇱 89.21.67.155

🇺🇸 64.95.9.250

🇺🇸 52.224.109.126

🇳🇱 45.225.135.22

🇳🇱 5.175.192.17

🇬🇧 217.146.80.118

🇨🇭 185.149.93.64

🇨🇦 159.89.124.112