JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.213

104.207.62.213 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.213

Whois 104.207.62.213

IP Abuse Reports for 104.207.62.213:

This IP address has been reported a total of 135 times from 21 distinct sources. 104.207.62.213 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 Progetto1	2026-04-26 19:00:03 (1 month ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇱🇻 garmtech.com	2026-04-21 00:08:07 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-08.104.207.62.213.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-08.104.207.62.213.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-04-20 18:22:56 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-22.104.207.62.213.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 21-22.104.207.62.213.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-03-30 06:19:02 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇫🇷 masterguru	2026-03-26 12:18:07 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.62.213 (FR/France/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.62.213 (FR/France/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇺🇸 ne1for23	2026-01-03 01:44:06 (5 months ago)	104.207.62.213 - - [03/Jan/2026:01:42:43 +0000] "POST /xmlrpc.php HTTP/1.1" 403 555 "-" "Mozilla/5.0 ... show more 104.207.62.213 - - [03/Jan/2026:01:42:43 +0000] "POST /xmlrpc.php HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇵🇱 sefinek.net	2026-01-02 22:42:29 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 05:27:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:27:19.784215 2025] [security2:error] [pid 14806:tid 14806] [client 104.207.62.213:20615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.miraclepunchy.com"] [uri "/.env"] [unique_id "aSU-N0iifIBOHf3W1qm86wAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:23:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:23:51.869729 2025] [security2:error] [pid 22558:tid 22558] [client 104.207.62.213:49511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cofias.matronasoy.com"] [uri "/.svn/wc.db"] [unique_id "aSUvV4MbAUyq7DT3UVXjygAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:01:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:00:58.807220 2025] [security2:error] [pid 9569:tid 9569] [client 104.207.62.213:34701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.streamlinenz.com"] [uri "/.git/HEAD"] [unique_id "aSUp-qc27cfjOIzXYZHnsAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 bescared	2025-11-25 03:29:36 (6 months ago)	F2B - Malicious activity detected. URL Probing.	Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:36:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:35:52.120676 2025] [security2:error] [pid 31458:tid 31458] [client 104.207.62.213:24607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.doorofhopechurch.org"] [uri "/.svn/wc.db"] [unique_id "aSUWCGrdCCQDvbeXLq3UIQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:08:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:08:22.590926 2025] [security2:error] [pid 32735:tid 323] [client 104.207.62.213:60841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.wicca-love-spells.com"] [uri "/.git/HEAD"] [unique_id "aSUPluyRrmvyed2G3rXEzwAAAFQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:45:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:45:44.507645 2025] [security2:error] [pid 5802:tid 5802] [client 104.207.62.213:41731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.sparemediagroup.com"] [uri "/.git/HEAD"] [unique_id "aSQbOIj68hwX1rx-BC9ynQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 07:16:59 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 156.245.239.180

🇨🇳 125.77.73.145

🇮🇳 122.186.174.35

🇹🇼 198.235.24.127

🇳🇱 176.65.139.31

🇳🇱 152.42.148.252

🇺🇸 147.185.132.37

🇨🇳 123.145.0.243

🇱🇹 45.227.254.170

🇨🇳 42.236.219.41

🇮🇩 34.128.111.153

🇹🇼 34.81.225.206

🇨🇳 223.93.7.72

🇮🇹 4.232.80.255

🇫🇮 2a00:1450:4010:c1c::129

🇬🇧 195.224.120.186

🇬🇧 193.163.125.75

🇺🇸 134.122.21.135

🇬🇧 37.10.113.211

🇬🇧 35.203.210.21