JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.129

104.207.56.129 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.129

Whois 104.207.56.129

IP Abuse Reports for 104.207.56.129:

This IP address has been reported a total of 134 times from 23 distinct sources. 104.207.56.129 was first reported on June 4th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-04 19:08:02 (3 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-28 07:01:23 (1 week ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇷🇴 INTEQ	2026-02-07 17:13:09 (4 months ago)	Web attack from 104.207.56.129	Web App Attack
Anonymous	2026-01-02 16:24:46 (5 months ago)	Attempted brute force login to web vpn 36 time(s); last attempt for 2026.01.02 is noted in report ti ... show more Attempted brute force login to web vpn 36 time(s); last attempt for 2026.01.02 is noted in report timestamp show less	Hacking Brute-Force
🇭🇺 bcsaba	2025-12-30 20:04:49 (5 months ago)	Joomla spam 104.207.56.129 - - [30/Dec/2025:21:04:48 +0100] "GET /index.php?option=com_easyblog&view ... show more Joomla spam 104.207.56.129 - - [30/Dec/2025:21:04:48 +0100] "GET /index.php?option=com_easyblog&view=dashboard&layout=write HTTP/1.1" 404 789 "https://REDACTED" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" show less	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:44 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇵🇱 sefinek.net	2025-12-22 19:59:04 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇧🇪 madeit	2025-11-27 12:24:48 (6 months ago)		Web App Attack
🇦🇺 weblite	2025-11-06 10:33:44 (7 months ago)	WP_XMLRPC_ABUSE WP_LOGIN_FAIL	Brute-Force Web App Attack
🇺🇸 Rip	2025-11-02 06:55:20 (7 months ago)	Spoofed, Forged or malicious User-Agent detected.	Brute-Force Web App Attack
Anonymous	2025-11-01 21:03:46 (7 months ago)	[redacted] 104.207.56.129 - - [01/Nov/2025:22:03:25 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" " ... show more [redacted] 104.207.56.129 - - [01/Nov/2025:22:03:25 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_4_11; en) AppleWebKit/525.27.1 (KHTML, like Gecko) Version/3.2.1 Safari/525.27.1" [redacted] 104.207.56.129 - - [01/Nov/2025:22:03:27 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_4) AppleWebKit/601.5.17 (KHTML, like Gecko) Version/9.1 Safari/601.5.17" [redacted] 104.207.56.129 - - [01/Nov/2025:22:03:29 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X 10_4_11; en) AppleWebKit/525.27.1 (KHTML, like Gecko) Version/3.2.1 Safari/525.27.1" [redacted] 104.207.56.129 - - [01/Nov/2025:22:03:37 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (iPad; CPU OS 9_0_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13A404 Safari/601.1" [redacted] 104.207.5 ... show less	Hacking Web App Attack
🇩🇪 Marc	2025-10-29 18:12:23 (7 months ago)		Brute-Force Web App Attack
Anonymous	2025-10-10 16:49:27 (7 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-09 22:27:52 (7 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.09 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.09 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-08 23:40:16 (7 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.08 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 163.7.9.84

🇮🇷 185.226.119.178

🇸🇪 171.25.158.68

🇺🇸 162.216.149.45

🇺🇸 147.185.132.52

🇳🇱 91.199.236.33

🇮🇳 66.116.224.143

🇭🇰 45.142.154.15

🇺🇸 34.66.224.20

🇺🇸 20.169.49.231

🇯🇵 8.216.17.247

🇷🇴 2.57.122.177

🇺🇸 147.185.132.100

🇨🇳 120.48.175.69

🇨🇳 120.48.154.88

🇰🇷 110.46.49.3

🇭🇰 103.230.240.59

🇮🇩 69.5.7.218

🇫🇷 51.255.131.231

🇳🇱 50.7.127.99