JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.161

104.207.56.161 was found in our database!

This IP was reported 127 times. Confidence of Abuse is 17%: ?

17%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.161

Whois 104.207.56.161

IP Abuse Reports for 104.207.56.161:

This IP address has been reported a total of 127 times from 13 distinct sources. 104.207.56.161 was first reported on June 7th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-05 05:01:10 (2 weeks ago)	Try to access /xmlrpc.php?rsd	Web App Attack
🇮🇹 [email protected]	2026-05-10 23:24:11 (1 month ago)	[Mon May 11 01:23:58.219471 2026] [authz_core:error] [pid 4068238:tid 4068254] [remote 104.207.56.16 ... show more [Mon May 11 01:23:58.219471 2026] [authz_core:error] [pid 4068238:tid 4068254] [remote 104.207.56.161:50025] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php show less	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-10 04:54:20 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-05-05 08:58:35 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-05-01 10:05:02 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-04-26 17:43:03 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇫🇷 masterguru	2026-04-25 10:16:40 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.56.161 (DE/Germany/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇮🇹 [email protected]	2026-04-21 07:26:54 (1 month ago)	[Tue Apr 21 09:26:54.324286 2026] [authz_core:error] [pid 1336962:tid 1337018] [remote 104.207.56.16 ... show more [Tue Apr 21 09:26:54.324286 2026] [authz_core:error] [pid 1336962:tid 1337018] [remote 104.207.56.161:51409] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-04-21 02:42:50 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-42.104.207.56.161.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-42.104.207.56.161.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-14 23:59:29 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-59.104.207.56.161.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 02-59.104.207.56.161.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇩🇪 ps-center	2025-10-27 11:48:29 (7 months ago)	MYH-W: TCP-Scanner. Port: 22	Port Scan
Anonymous	2025-04-07 09:57:00 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 17:21:13 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 23:55:15 (1 year ago)	Attempted brute force login to web vpn 10 time(s); last attempt for 2025.04.05 is noted in report ti ... show more Attempted brute force login to web vpn 10 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 09:34:44 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 127 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.73.160.225

🇺🇸 172.68.71.13

🇦🇷 186.122.177.140

🇺🇸 74.87.117.149

🇩🇪 212.227.31.187

🇲🇦 160.174.129.232

🇫🇮 147.185.133.194

🇮🇳 117.250.107.180

🇺🇸 66.45.144.201

🇮🇳 49.204.74.149

🇺🇸 20.14.78.253

🇺🇸 18.218.151.81

🇺🇸 216.25.89.142

🇰🇷 211.46.177.174

🇳🇱 195.178.110.26

🇺🇸 158.51.96.38

🇫🇷 85.217.140.29

🇺🇸 72.195.114.182

🇺🇸 65.49.1.175

🇺🇸 20.12.41.6