JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.107

104.207.62.107 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.107

Whois 104.207.62.107

IP Abuse Reports for 104.207.62.107:

This IP address has been reported a total of 143 times from 17 distinct sources. 104.207.62.107 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-05-21 22:34:55 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇫🇷 masterguru	2026-03-31 11:27:54 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.62.107 (FR/France/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.62.107 (FR/France/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇮🇳 dineshskt4all	2026-01-29 07:08:30 (4 months ago)	104.207.62.107 - - [29/Jan/2026:07:08:27 +0000] "POST /login/?login_only=1 HTTP/1.0" 404 7014 "-" "p ... show more 104.207.62.107 - - [29/Jan/2026:07:08:27 +0000] "POST /login/?login_only=1 HTTP/1.0" 404 7014 "-" "python-requests/2.32.4" ... show less	IoT Targeted
🇺🇸 TPI-Abuse	2025-12-29 10:03:20 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 05:03:14.155405 2025] [security2:error] [pid 31941:tid 31941] [client 104.207.62.107:22603] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gervais-family.com"] [uri "/.env"] [unique_id "aVJR4mdl_SyM-_hNwChQKQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:48:59 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:48:51.516501 2025] [security2:error] [pid 15188:tid 15188] [client 104.207.62.107:45739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chrisamedee.com"] [uri "/.svn/wc.db"] [unique_id "aVIkU7OWCl20oQAI6Tza-AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:54:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:54:45.601887 2025] [security2:error] [pid 11931:tid 11931] [client 104.207.62.107:22991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sprektech.com"] [uri "/.env"] [unique_id "aVIXpXuVTH1wn-eILInzrwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-12-07 00:19:54 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-26 12:11:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:10:58.656858 2025] [security2:error] [pid 12499:tid 12499] [client 104.207.62.107:35285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.angelsofrhodeisland.com"] [uri "/.env"] [unique_id "aSbuUpLliV7rE-XehAxEVwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:09:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:09:28.930602 2025] [security2:error] [pid 19190:tid 19190] [client 104.207.62.107:46357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.harveyyachtsales.com"] [uri "/.env"] [unique_id "aSZFOBG7RMSev3nb4vu5ygAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:12:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:12:02.161448 2025] [security2:error] [pid 8682:tid 8682] [client 104.207.62.107:29005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.altcoinwarz.com"] [uri "/.env"] [unique_id "aSUQcjdknzP5YXtnoGAmygAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:58:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:57:53.822664 2025] [security2:error] [pid 1640:tid 1640] [client 104.207.62.107:22751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tier1athletics.liddlesports.com"] [uri "/.env"] [unique_id "aSQsIYl9Q97YxXTKQ8KsxgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-24 00:23:12 (6 months ago)	Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing ... show more Attempted access to sensitive endpoint (/.git/HEAD) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 00:19:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 19:17:12.872311 2025] [security2:error] [pid 26736:tid 26736] [client 104.207.62.107:33873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.nauticalchristmascards.com"] [uri "/.svn/wc.db"] [unique_id "aSOkCOEffYzE45CA-QuoEQAAAHk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 11:41:33 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 15:11:22 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.46.255.86

🇵🇪 190.119.63.98

🇨🇳 113.125.165.132

🇩🇪 95.163.152.160

🇮🇪 63.35.163.93

🇺🇸 45.148.126.124

🇺🇸 45.91.81.111

🇮🇪 34.244.186.98

🇺🇸 8.228.16.104

🇳🇱 193.176.31.222

🇫🇮 147.185.133.254

🇮🇪 108.130.236.206

🇳🇱 93.174.93.12

🇳🇱 89.21.67.138

🇺🇸 66.132.186.216

🇮🇪 54.195.156.99

🇸🇬 43.160.246.215

🇨🇳 27.16.236.249

🇧🇬 5.188.206.34

🇮🇪 2a05:d018:10df:d402:75d8:3e52:a118:1509