JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.8

104.207.55.8 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.8

Whois 104.207.55.8

IP Abuse Reports for 104.207.55.8:

This IP address has been reported a total of 82 times from 20 distinct sources. 104.207.55.8 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇹 Malta	2026-05-16 22:17:34 (1 month ago)	104.207.55.8 - - [17/May/2026:00:17:34 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 104.207.55.8 - - [17/May/2026:00:17:34 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" show less	Hacking Web App Attack VPN IP
🇱🇻 garmtech.com	2026-03-24 08:23:17 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇱🇻 garmtech.com	2026-03-14 23:50:52 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
Anonymous	2026-03-04 19:12:51 (3 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇵🇱 sefinek.net	2026-02-16 09:41:31 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (4 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇳🇱 homeshowdomain.nl	2026-01-02 23:01:20 (5 months ago)	Auto-ban: >3000 req/min op 2026-01-02	Hacking Web App Attack SSH
Anonymous	2025-12-28 16:30:57 (5 months ago)	"GET /.svn/wc.db HTTP/1.1"	Hacking Web App Attack
🇨🇦 SSH-Admin	2025-12-27 22:05:38 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 18:30:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 13:29:58.431870 2025] [security2:error] [pid 13739:tid 13739] [client 104.207.55.8:13755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "markaandrews.com"] [uri "/.env"] [unique_id "aS8wJuqut6uAgTNvA4ClJQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 09:57:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 04:57:51.711332 2025] [security2:error] [pid 16116:tid 16116] [client 104.207.55.8:50149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "santaclausphonecall.com"] [uri "/.env"] [unique_id "aS64H8T8iJVFgfbBKmV7lQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:37:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:37:05.420297 2025] [security2:error] [pid 26310:tid 26310] [client 104.207.55.8:50173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "suffolksystems.com"] [uri "/.git/HEAD"] [unique_id "aS6XIUFJdhbxTHVKVC5g_QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:10:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:10:28.602045 2025] [security2:error] [pid 19443:tid 19459] [client 104.207.55.8:31155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eadweb.com"] [uri "/.svn/wc.db"] [unique_id "aS6Q5DufS__gaNU5_bPXLAAAAQ4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:52:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:52:00.007395 2025] [security2:error] [pid 8192:tid 8209] [client 104.207.55.8:23979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyjahrig.com"] [uri "/.git/HEAD"] [unique_id "aS5-gM8t6SHkBRTkoEYkYAAAAI8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:12:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:12:20.443084 2025] [security2:error] [pid 28876:tid 28876] [client 104.207.55.8:38391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antiterrorismbooks.com"] [uri "/.git/HEAD"] [unique_id "aS51NJe-5kiuekFb0KNvRgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.56.213.133

🇭🇰 156.251.179.157

🇦🇪 145.241.123.102

🇨🇳 106.75.184.36

🇩🇪 77.110.107.31

🇷🇺 5.255.231.17

🇺🇸 216.180.246.238

🇧🇷 189.110.127.24

🇺🇸 174.138.87.36

🇨🇳 115.190.235.23

🇳🇱 93.123.109.105

🇱🇹 81.30.98.62

🇺🇸 47.251.187.196

🇺🇸 2001:470:1:fb5::258

🇻🇪 200.35.109.130

🇸🇬 185.150.0.49

🇹🇷 185.139.5.123

🇺🇸 162.216.149.110

🇳🇱 89.248.173.215

🇩🇪 85.90.246.159