JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.51.62

104.207.51.62 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.51.62

Whois 104.207.51.62

IP Abuse Reports for 104.207.51.62:

This IP address has been reported a total of 130 times from 13 distinct sources. 104.207.51.62 was first reported on June 14th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-05-25 10:42:07 (2 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.51.62 (GB/United Kingdom/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.51.62 (GB/United Kingdom/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇫🇷 ingroscart.it	2026-01-13 23:24:00 (5 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.51.62 (GB/United Kingdom/-)	SQL Injection
🇺🇸 TPI-Abuse	2025-11-26 12:02:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:02:28.296100 2025] [security2:error] [pid 15425:tid 15425] [client 104.207.51.62:54339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kiddocommunication.com"] [uri "/.git/HEAD"] [unique_id "aSbsVOvRiUMHYF2pNGTsngAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:19:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:19:39.807906 2025] [security2:error] [pid 2190:tid 2190] [client 104.207.51.62:17929] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.daveskountrykatering.com"] [uri "/.svn/wc.db"] [unique_id "aSbiS0NnF2l3INnocgPsegAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:04:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:03:50.679816 2025] [security2:error] [pid 13110:tid 13132] [client 104.207.51.62:30929] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.northtexaslive.com"] [uri "/.git/HEAD"] [unique_id "aSaYRhrugngzcnJ5Mqp3bwAAAQ4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:05:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:05:24.764036 2025] [security2:error] [pid 31161:tid 31161] [client 104.207.51.62:55449] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "enespiral.net"] [uri "/.svn/wc.db"] [unique_id "aSVHJBQffdPRXrSU4m5rhwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:33:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:33:15.617062 2025] [security2:error] [pid 14883:tid 14883] [client 104.207.51.62:25557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dewsales.com"] [uri "/.env"] [unique_id "aSUje1DsuRGH9tBatwaZEQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:34:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:34:48.180480 2025] [security2:error] [pid 18189:tid 18189] [client 104.207.51.62:38815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.volunteergems.com"] [uri "/.env"] [unique_id "aSQmuEoyaOx5FheY3XfS6wAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:45:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:45:07.897961 2025] [security2:error] [pid 15383:tid 15383] [client 104.207.51.62:15001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.arteseros.com"] [uri "/.env"] [unique_id "aSQNA3R4Xka1K28DwFBumQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:12:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:12:35.204473 2025] [security2:error] [pid 4282:tid 4282] [client 104.207.51.62:51215] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.yosalvationyo.org"] [uri "/.svn/wc.db"] [unique_id "aSPpQwes7etJtG0ygKsKXQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:59:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.51.62 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:59:20.166342 2025] [security2:error] [pid 15562:tid 15562] [client 104.207.51.62:45107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.wintercypher.com"] [uri "/.svn/wc.db"] [unique_id "aSPYGLtib_7JaLdK2CE62gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-16 16:26:12 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-10-14 00:10:53 (8 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 oncord	2025-10-08 06:22:15 (8 months ago)	Form spam	Web Spam

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇩🇪 207.154.250.9

🇧🇷 177.92.162.242

🇭🇰 103.149.26.43

🇨🇦 85.217.149.68

🇲🇽 187.191.48.5

🇺🇸 152.32.205.7

🇦🇷 138.117.16.146

🇪🇬 105.197.170.216

🇺🇸 104.194.10.16

🇮🇳 103.164.246.157

🇺🇸 99.140.59.87

🇮🇪 52.208.24.184

🇳🇱 45.148.10.157

🇳🇱 45.142.193.8

🇨🇳 36.251.157.254

🇫🇮 35.228.53.143

🇺🇸 3.142.170.60

🇻🇳 171.231.196.215

🇮🇷 164.215.183.232