JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.55

104.207.63.55 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.55

Whois 104.207.63.55

IP Abuse Reports for 104.207.63.55:

This IP address has been reported a total of 136 times from 20 distinct sources. 104.207.63.55 was first reported on June 29th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-05-23 04:39:30 (2 weeks ago)	Wordpress login attempts	Brute-Force
🇩🇪 Spiderpiggy	2026-05-22 20:15:59 (2 weeks ago)	Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoi ... show more Automatically reported via Blackhole honeypot on games4you.be. Attempted access to restricted endpoint: /wp-login.php show less	Brute-Force Bad Web Bot SSH
🇬🇧 relianoid.com	2026-04-01 14:42:31 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇦🇺 oncord	2026-03-06 19:12:39 (2 months ago)	Form spam	Web Spam
🇺🇸 oncord	2026-02-21 21:27:53 (3 months ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2026-02-20 21:11:16 (3 months ago)	IM360 WAF: Old style account creation and modification in Joomla! MV:registration	Web App Attack
🇦🇺 oncord	2026-02-15 01:40:58 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-09 09:24:23 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-02 12:07:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:07:05.497218 2025] [security2:error] [pid 6197:tid 6197] [client 104.207.63.55:29147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "astariamedia.com"] [uri "/.svn/wc.db"] [unique_id "aS7WaaNpUVaa3Qe-nG31pAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:27:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:27:49.890839 2025] [security2:error] [pid 29649:tid 29649] [client 104.207.63.55:44025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deanfountain.com"] [uri "/.env"] [unique_id "aS6jBcMR5iZbu6vbB3CnbQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 07:58:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:58:03.372141 2025] [security2:error] [pid 6111:tid 6111] [client 104.207.63.55:58081] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thegolfhole.com"] [uri "/.env"] [unique_id "aS6cC_xBX2cw7i5nPBpVMQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:52:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:52:01.704880 2025] [security2:error] [pid 13404:tid 13404] [client 104.207.63.55:18089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weddingnapkins.com"] [uri "/.git/HEAD"] [unique_id "aS5wcXs-cO529AEXSRa5OgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-11-25 07:00:39 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
Anonymous	2025-10-30 15:07:34 (7 months ago)	WordPress Brute Force	Brute-Force
🇧🇪 madeit	2025-10-30 07:43:06 (7 months ago)		Web App Attack

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 213.35.123.95

🇺🇸 173.239.213.17

🇺🇸 107.173.110.117

🇺🇸 70.91.135.181

🇬🇧 35.203.210.51

🇺🇸 2607:f8b0:400e:c17::126

🇰🇷 112.216.108.62

🇮🇩 103.190.214.241

🇺🇸 91.193.232.247

🇩🇪 45.130.203.69

🇨🇳 36.26.74.162

🇰🇷 221.159.21.88

🇬🇹 190.56.35.242

🇳🇱 178.62.217.82

🇹🇭 124.122.43.78

🇺🇸 107.174.104.9

🇺🇸 91.193.232.242

🇲🇦 81.192.46.29

🇺🇸 66.132.195.57

🇮🇱 46.121.168.112