JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.56.247

104.207.56.247 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 27%: ?

27%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.56.247

Whois 104.207.56.247

IP Abuse Reports for 104.207.56.247:

This IP address has been reported a total of 143 times from 23 distinct sources. 104.207.56.247 was first reported on June 6th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-06-18 02:47:30 (1 week ago)	IM360 WAF: Prohibited WordPress username login/registration	Web App Attack
Anonymous	2026-06-17 07:20:12 (1 week ago)	Web attack blocked by Wordfence on kernoverlegsibbe-ijzeren.nl (2 hits). Reported by CRMON.	Web App Attack
🇺🇸 nyt	2026-06-16 23:48:48 (1 week ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇨🇭 backslash	2026-05-23 05:06:04 (1 month ago)		Bad Web Bot
🇳🇱 Site.eu	2026-05-06 05:16:02 (1 month ago)	Excessive 404/403 errors	Brute-Force
🇳🇱 Mangelot Hosting	2026-05-06 03:24:11 (1 month ago)	(modsecurity) srv102 ModSecurity 104.207.56.247 (DE/Germany/-): 10 in the last 3600 secs; Ports: ; ... show more (modsecurity) srv102 ModSecurity 104.207.56.247 (DE/Germany/-): 10 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
Anonymous	2026-03-03 08:41:56 (3 months ago)	"GET /.git/HEAD HTTP/1.1"	Hacking Web App Attack
🇮🇩 Burayot	2026-02-23 23:43:18 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.56.247 (DE/Germany/-): 2 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.56.247 (DE/Germany/-): 2 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 06:47:44 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 01:47:40.416501 2026] [security2:error] [pid 13156:tid 13156] [client 104.207.56.247:13597] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bobfaw.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bobfaw.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZqmjJuMZma_fNSnzTjzkwAAAB8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 01:19:01 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 20:18:57.291260 2026] [security2:error] [pid 26668:tid 26668] [client 104.207.56.247:40059] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|wexfordcap.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "wexfordcap.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZpZgdLLzlM641bAtts97gAAAAU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-21 14:02:02 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 21 09:01:57.494020 2026] [security2:error] [pid 28310:tid 28310] [client 104.207.56.247:19749] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|biff0.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "biff0.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZm61b8kG2v2SkQR3CtxuAAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-11 11:19:23 (5 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 18:52:50 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 13:52:47.327277 2025] [security2:error] [pid 4360:tid 4360] [client 104.207.56.247:47149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.allcostaricarentals.com"] [uri "/.git/HEAD"] [unique_id "aVQff6V0B5Ey6eu6_vAgSgAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 12:20:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 07:20:24.891479 2025] [security2:error] [pid 73162:tid 73167] [client 104.207.56.247:32909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.rawsynergy.com"] [uri "/.git/HEAD"] [unique_id "aVPDiMpDYGSNMRhYTbZV2gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 09:20:08 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.56.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:20:03.242578 2025] [security2:error] [pid 1927:tid 1927] [client 104.207.56.247:15393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "santasfavorites.com"] [uri "/.git/HEAD"] [unique_id "aVJHw0VAM2f0Dt__9LHuBQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.216

🇧🇪 198.235.24.212

🇮🇳 182.66.213.59

🇺🇸 176.110.218.19

🇺🇸 162.216.150.108

🇨🇳 111.162.156.62

🇨🇳 111.113.89.247

🇳🇱 91.92.40.52

🇺🇸 65.49.20.123

🇳🇱 45.148.10.147

🇭🇰 43.155.40.91

🇨🇳 42.227.178.122

🇭🇰 199.45.155.82

🇹🇼 198.235.24.115

🇺🇸 174.35.25.179

🇺🇸 147.185.132.73

🇨🇳 144.123.77.149

🇨🇳 111.113.89.106

🇨🇳 110.87.174.72

🇮🇳 103.206.97.147