JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.2

104.207.62.2 was found in our database!

This IP was reported 78 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.2

Whois 104.207.62.2

IP Abuse Reports for 104.207.62.2:

This IP address has been reported a total of 78 times from 16 distinct sources. 104.207.62.2 was first reported on June 7th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-05-02 04:16:17 (1 month ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:47:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:47:21.077027 2026] [security2:error] [pid 18321:tid 18321] [client 104.207.62.2:24987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lakependoreillemobility.com"] [uri "/.env.local"] [unique_id "aY7lGRg9A9ovr_CsnmiFSAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-02-13 06:26:43 (3 months ago)	(modsecurity) srv201 ModSecurity 104.207.62.2 (FR/France/-): 5 in the last 3600 secs; Ports: ; Dire ... show more (modsecurity) srv201 ModSecurity 104.207.62.2 (FR/France/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:22:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:22:22.162959 2026] [security2:error] [pid 2601171:tid 2601171] [client 104.207.62.2:21599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirbysheetmetalworks.com"] [uri "/api/.env"] [unique_id "aY6m_gLd5DZt4A8i2O2l5wAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 03:05:51 (3 months ago)	Too many Status 40X (12) Scanning/Probing (13)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:37:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:37:35.237550 2026] [security2:error] [pid 2430:tid 2430] [client 104.207.62.2:56905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathiepontinen.com"] [uri "/admin/.git/config"] [unique_id "aY6AX0ouR3yjBvgDxWLh0AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:13:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:13:42.478618 2026] [security2:error] [pid 15202:tid 15202] [client 104.207.62.2:41113] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karenjoyce.com"] [uri "/site/.git/config"] [unique_id "aY56xjjMh5Xf3R1c1lwtfgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:11:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:11:21.926587 2026] [security2:error] [pid 1660125:tid 1660125] [client 104.207.62.2:31241] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bayinsights.com"] [uri "/.env"] [unique_id "aY4JuUqNvPl_AupoFwtAdgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-12 17:08:24 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2026-02-12 16:13:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:13:06.585794 2026] [security2:error] [pid 15197:tid 15216] [client 104.207.62.2:22181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthonydalessandro.com"] [uri "/.env"] [unique_id "aY38EmWHwoTF575m6ahfegAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 03:57:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 22:57:10.127888 2026] [security2:error] [pid 16668:tid 16668] [client 104.207.62.2:13667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cornerstonecharitablescholarshiptrust.org"] [uri "/.env.save"] [unique_id "aYv-FnlfqdXxltCHXJj4JQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:57:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:57:01.327693 2026] [security2:error] [pid 16938:tid 16938] [client 104.207.62.2:19763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bradleybarefoot.com"] [uri "/app/.env"] [unique_id "aYvT3WEwdkpv02reGhxGMAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 23:39:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 18:39:41.997691 2026] [security2:error] [pid 16671:tid 16671] [client 104.207.62.2:52233] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coolray.net"] [uri "/.env.local"] [unique_id "aYvBvZr-3XWxIwZN1EQNyQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 22:50:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 17:50:35.399548 2026] [security2:error] [pid 2104:tid 2104] [client 104.207.62.2:33885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cookingwithjule.com"] [uri "/v2/.git/config"] [unique_id "aYu2OzL3On0HRxbPXFV47gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 20:41:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 15:41:27.176311 2026] [security2:error] [pid 16887:tid 16887] [client 104.207.62.2:60731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ebric.com"] [uri "/.env"] [unique_id "aYuX9xPN7Pbm_nrJKGQq4wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 78 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇳 196.229.136.128

🇺🇸 194.195.208.70

🇨🇴 190.108.77.124

🇩🇪 155.117.127.214

🇪🇹 196.189.155.89

🇺🇸 162.216.149.216

🇮🇹 151.44.130.102

🇫🇮 147.185.133.162

🇵🇰 103.166.103.173

🇪🇸 88.20.32.211

🇺🇸 45.79.214.237

🇬🇧 5.181.124.7

🇨🇦 209.209.8.82

🇳🇱 192.42.116.21

🇲🇽 186.96.145.241

🇱🇹 185.169.4.194

🇧🇷 179.83.134.101

🇨🇱 179.60.76.225

🇺🇸 172.58.127.166

🇧🇩 103.179.198.19