JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.3

104.207.55.3 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.3

Whois 104.207.55.3

IP Abuse Reports for 104.207.55.3:

This IP address has been reported a total of 99 times from 25 distinct sources. 104.207.55.3 was first reported on June 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 iNetWorker	2026-05-21 17:45:36 (2 weeks ago)	trolling for resource vulnerabilities	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇫🇷 COMAITE	2026-03-23 11:23:46 (2 months ago)	SQL injection attempt from 104.207.55.3.	Web App Attack
🇺🇸 mnsf	2026-02-16 02:05:53 (3 months ago)	Scanning/Probing (11)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-02-15 12:49:20 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:06:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:06:27.754971 2026] [security2:error] [pid 1218510:tid 1218510] [client 104.207.55.3:58285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "techspertnet.com"] [uri "/config/.env"] [unique_id "aZG2w35cosi7oETGFTEeGwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:41:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:40:59.498680 2026] [security2:error] [pid 15211:tid 15211] [client 104.207.55.3:12277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomaschemical.net"] [uri "/.env"] [unique_id "aZGwyxKg4zxYoY1gPgUljAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:17:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:17:03.730876 2026] [security2:error] [pid 24367:tid 24367] [client 104.207.55.3:47729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "syvox.net"] [uri "/.env.local"] [unique_id "aZFk36kElrKfJpPnJ8iMWwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:57:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:57:34.666137 2026] [security2:error] [pid 1107:tid 1107] [client 104.207.55.3:33851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sullico.com"] [uri "/.env"] [unique_id "aZFSPhGVdrH5dc2ZT_hf1QAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 04:31:32 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 04:19:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:19:19.766551 2026] [security2:error] [pid 2082:tid 2082] [client 104.207.55.3:47393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "straypointers.com"] [uri "/admin/.env"] [unique_id "aZFJR7qng3NM0qC_jV7NZwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2026-02-15 03:00:11 (3 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇸🇪 konseptit	2026-02-15 02:51:04 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.55.3 (DE/Germany/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 02:37:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:37:00.341352 2026] [security2:error] [pid 26082:tid 26088] [client 104.207.55.3:10347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n30ew.com"] [uri "/backend/.env"] [unique_id "aZExTDiehrIyn1xXA2smZQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 01:05:55 (3 months ago)	Scanning/Probing (24)	Brute-Force Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2600:3c01::2000:9dff:fece:2f1d

🇺🇸 147.185.132.53

🇨🇳 115.190.171.196

🇺🇸 2607:f8b0:4002:c03::12d

🇺🇸 2604:a880:400:d1:0:4:6c71:7001

🇺🇸 208.84.100.188

🇺🇸 205.210.31.101

🇺🇬 196.0.3.188

🇩🇪 167.94.146.61

🇺🇸 162.216.150.87

🇺🇸 162.216.149.87

🇺🇸 159.223.131.0

🇩🇪 134.209.247.126

🇺🇸 107.172.204.15

🇭🇰 103.243.26.174

🇷🇴 80.94.92.182

🇺🇸 66.132.186.224

🇺🇸 47.89.247.91

🇱🇹 45.227.254.170

🇮🇩 43.129.44.66