JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.181

104.207.62.181 was found in our database!

This IP was reported 124 times. Confidence of Abuse is 25%: ?

25%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.181

Whois 104.207.62.181

IP Abuse Reports for 104.207.62.181:

This IP address has been reported a total of 124 times from 19 distinct sources. 104.207.62.181 was first reported on June 5th 2024, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 octageeks.com	2026-06-01 04:06:43 (6 days ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇫🇷 ELYAZ	2026-05-30 17:46:20 (1 week ago)	(y4) Failed scan -byebye- from 104.207.62.181 (FR/France/-): (CF_ENABLE)	Hacking
Anonymous	2026-05-29 02:08:59 (1 week ago)	[ssd5.kdns.gr] httpd-login-spray-site: sites=hparxo.gr; logs=/var/log/httpd/domains/hparxo.gr.log; s ... show more [ssd5.kdns.gr] httpd-login-spray-site: sites=hparxo.gr; logs=/var/log/httpd/domains/hparxo.gr.log; samples=site_wide=true \| distinct_ips=22 \| /wp-login.php show less	Hacking Web App Attack
🇫🇮 inlink.ltd	2026-05-25 10:31:42 (1 week ago)	Known malicious PHP file or CMS probe	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇫🇷 tilellit.pro	2026-01-20 01:57:04 (4 months ago)	Fail2Ban banned 104.207.62.181 for security violations in jail wp-armour. Log: 2026/01/20 01:57:04 [ ... show more Fail2Ban banned 104.207.62.181 for security violations in jail wp-armour. Log: 2026/01/20 01:57:04 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.62.181 \| Target: wplogin" , client: 104.207.62.181, server: [REDACTED], request: "POST /wp-login.php HTTP/2.0", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇺🇸 COMPLEX	2025-12-14 23:07:46 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-02 07:36:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.181 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 02:36:45.419957 2025] [security2:error] [pid 2016313:tid 2016313] [client 104.207.62.181:54261] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mdsshop.com"] [uri "/.git/HEAD"] [unique_id "aS6XDdesJn7slgHewSK0gwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:57:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.181 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.181 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:57:56.790944 2025] [security2:error] [pid 30224:tid 30224] [client 104.207.62.181:37443] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "halotoys.com"] [uri "/.env"] [unique_id "aS5_5A76CUnb7HT21JKOrAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 10:16:22 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 13:24:14 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 16:27:57 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 17:10:58 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 Rayulcifer	2025-04-04 15:41:15 (1 year ago)	104.207.62.181 - - [04/Apr/2025:10:41:14 -0500] "GET /handle/20.500.12404/15047 HTTP/1.1" 301 5369 " ... show more 104.207.62.181 - - [04/Apr/2025:10:41:14 -0500] "GET /handle/20.500.12404/15047 HTTP/1.1" 301 5369 "https://dx.doi.org/http%3A%2F%2Fhdl.handle.net%2F20.500.12404%2F15047" "Go-http-client/1.1" 104.207.62.181 - - [04/Apr/2025:10:41:14 -0500] "GET /items/7625f374-a247-4143-89ad-10a707bf5b69 HTTP/1.1" 200 83689 "https://tesis.pucp.edu.pe/handle/20.500.12404/15047" "Go-http-client/1.1" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
Anonymous	2025-04-03 07:20:44 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 124 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 151.243.11.245

🇺🇸 147.185.132.214

🇺🇸 142.93.251.117

🇨🇳 119.167.206.194

🇨🇳 117.40.114.61

🇭🇰 103.52.153.215

🇸🇦 46.184.42.42

🇳🇱 45.148.10.157

🇹🇿 41.59.236.82

🇰🇷 220.86.28.189

🇺🇸 200.10.43.23

🇨🇴 191.156.242.220

🇺🇸 174.138.40.20

🇺🇸 162.216.149.18

🇺🇸 147.182.178.21

🇮🇳 103.158.40.65

🇺🇸 64.62.197.62

🇺🇸 48.192.92.26

🇱🇹 45.227.254.170

🇨🇳 36.140.123.73