JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.251

104.207.55.251 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 23%: ?

23%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.251

Whois 104.207.55.251

IP Abuse Reports for 104.207.55.251:

This IP address has been reported a total of 149 times from 20 distinct sources. 104.207.55.251 was first reported on June 7th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 lostswordfish.com	2026-06-01 18:02:05 (1 week ago)	Wordfence waf block on kcuar	Web App Attack
Anonymous	2026-05-31 11:11:48 (2 weeks ago)	[server.tmg.gr] httpd-login-spray-site: sites=tmg.gr.forms; logs=/var/log/httpd/domains/tmg.gr.forms ... show more [server.tmg.gr] httpd-login-spray-site: sites=tmg.gr.forms; logs=/var/log/httpd/domains/tmg.gr.forms.log; samples=site_wide=true \| distinct_ips=12 \| /wp-login.php show less	Hacking Web App Attack
🇩🇪 iNetWorker	2026-05-30 07:17:25 (2 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇫🇷 masterguru	2026-05-25 18:51:13 (2 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.251 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.251 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
Anonymous	2026-01-05 20:22:57 (5 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.05 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇫🇷 Jean Valjean	2026-01-04 17:38:26 (5 months ago)	Fail2ban Caboom : xmlrpc.php Abuse	SQL Injection Web App Attack
🇳🇱 wlt-blocker	2026-01-03 04:26:56 (5 months ago)	Unauthorized access to webpage admin	Web App Attack
🇫🇷 Security_Whaller	2025-12-30 06:21:32 (5 months ago)	Malicious activity detected on Honeypot.	Hacking Brute-Force Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-29 06:00:21 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇦🇺 MAGIC	2025-12-12 00:28:34 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-27 11:33:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 06:33:24.354603 2025] [security2:error] [pid 18363:tid 18363] [client 104.207.55.251:9149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.reyadecostarica.com"] [uri "/.env"] [unique_id "aSg3BBnRs8CfAdoWvivqTwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 19:09:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 14:09:50.555971 2025] [security2:error] [pid 27002:tid 27002] [client 104.207.55.251:50341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.earthtwoworkshop.com"] [uri "/.svn/wc.db"] [unique_id "aSdQfrolaXVIL6F7JLIXDwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:32:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:32:55.455808 2025] [security2:error] [pid 25837:tid 25865] [client 104.207.55.251:26923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.colinkyffinmusic.com"] [uri "/.git/HEAD"] [unique_id "aSdH14o8waOrYdA52G90vwAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:25:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:25:27.066073 2025] [security2:error] [pid 11579:tid 11579] [client 104.207.55.251:21849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "justiniggercom.indie100.com"] [uri "/.env"] [unique_id "aSVZ55uueZSZ5KZ9gyPpLwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:46:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:46:37.499059 2025] [security2:error] [pid 16842:tid 16842] [client 104.207.55.251:26751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.alpipac.org"] [uri "/.env"] [unique_id "aSVQzed_ZzjYNaa9TqkpVAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.249.79.136

🇷🇺 62.192.226.83

🇺🇸 45.33.109.18

🇩🇪 213.209.159.238

🇲🇽 187.249.130.51

🇷🇴 93.114.194.159

🇪🇸 92.176.173.32

🇭🇰 43.224.248.40

🇨🇳 223.78.252.254

🇬🇧 213.166.84.56

🇧🇷 200.155.66.2

🇬🇧 193.193.119.91

🇺🇸 152.32.234.184

🇮🇩 103.154.231.122

🇰🇷 43.164.132.164

🇹🇼 198.235.24.114

🇧🇩 103.76.45.233

🇫🇷 54.38.190.246

🇦🇺 34.40.217.205

🇦🇺 203.220.200.243