JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.55.89

104.207.55.89 was found in our database!

This IP was reported 128 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.55.89

Whois 104.207.55.89

IP Abuse Reports for 104.207.55.89:

This IP address has been reported a total of 128 times from 15 distinct sources. 104.207.55.89 was first reported on June 6th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-06 21:59:04 (3 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-05. show less	Web App Attack SSH Hacking
🇫🇷 masterguru	2026-03-30 05:31:44 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.89 (DE/Germany/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.55.89 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇪🇸 librebit	2026-03-14 06:30:54 (2 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-02-24 10:35:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.89 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 05:34:53.284355 2026] [security2:error] [pid 3966:tid 3966] [client 104.207.55.89:28875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "test.grabnerconsulting.com"] [uri "/.git/config"] [unique_id "aZ1-zcZpXojpG8lXp4Iz4AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 17:10:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.55.89 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.55.89 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 12:10:08.239116 2026] [security2:error] [pid 22150:tid 22150] [client 104.207.55.89:29673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "comfortcartel.bilund.com"] [uri "/.git/config"] [unique_id "aZyJ8NaVlzSx8Kq4-mSaqQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-03 13:44:20 (5 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.03 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-12 13:47:55 (6 months ago)	Attempted brute force login to web vpn 54 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 54 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-04-07 15:00:29 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/1.1 (GET method) Timestamp: 2025-04-07T14:01:32Z UA: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-04-06 19:45:12 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 21:32:57 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 21:17:03 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-04-04 06:00:15 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/1.1 (GET method) Timestamp: 2025-04-04T05:41:48Z UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Xbox; Xbox One) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edge/44.18363.8131 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-04-03 15:28:49 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TheMadBeaker	2025-04-03 01:18:13 (1 year ago)	Fail2Ban Ban Triggered Wordpress Attack Attempt	Brute-Force Web App Attack
Anonymous	2025-04-02 19:46:33 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.02 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.02 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 128 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇱 192.109.220.211

🇮🇩 182.8.211.27

🇷🇴 2.57.121.25

🇨🇳 120.238.23.168

🇨🇳 113.0.152.164

🇺🇸 104.152.52.125

🇺🇸 104.28.214.122

🇮🇩 103.160.37.151

🇮🇳 103.87.105.191

🇨🇦 85.217.149.56

🇹🇷 85.105.46.199

🇮🇹 79.12.1.240

🇩🇪 69.5.169.242

🇮🇶 65.20.135.97

🇳🇱 45.148.10.157

🇺🇸 43.162.112.238

🇬🇧 35.203.210.219

🇧🇷 34.95.170.81

🇸🇬 198.38.91.141

🇨🇱 186.105.3.222