JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.221

104.207.62.221 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.221

Whois 104.207.62.221

IP Abuse Reports for 104.207.62.221:

This IP address has been reported a total of 143 times from 22 distinct sources. 104.207.62.221 was first reported on June 3rd 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-27 19:32:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:32:40.862356 2025] [security2:error] [pid 18667:tid 18667] [client 104.207.62.221:37715] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "axiomemail.net"] [uri "/.git/HEAD"] [unique_id "aSinWH-Xghwauovx29PAzQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:08:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:08:33.812826 2025] [security2:error] [pid 25088:tid 25088] [client 104.207.62.221:31703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.garrygwilt.com"] [uri "/.svn/wc.db"] [unique_id "aSaZYVhGYhk9h9mqVOTAgQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:00:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:00:09.633866 2025] [security2:error] [pid 3501479:tid 3501492] [client 104.207.62.221:9939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pilargarciamanzanares.com"] [uri "/.svn/wc.db"] [unique_id "aSZtOfe5trruJv2rMh-zlwAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-26 01:20:13 (6 months ago)	104.207.62.221 - - [26/Nov/2025:01:20:13 +0000] "GET /.env HTTP/1.1" 302 445 "-" "Mozilla/5.0 (Macin ... show more 104.207.62.221 - - [26/Nov/2025:01:20:13 +0000] "GET /.env HTTP/1.1" 302 445 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:05:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:05:07.554600 2025] [security2:error] [pid 30282:tid 30282] [client 104.207.62.221:17579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.oxygenfarm.com"] [uri "/.git/HEAD"] [unique_id "aSVVI7pfibcudZm0ZZRj_AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:03:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:03:10.555653 2025] [security2:error] [pid 28106:tid 28106] [client 104.207.62.221:58275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.puckerbuttbikini.com"] [uri "/.svn/wc.db"] [unique_id "aSU4jsykpP7wBXo3R1qUmQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:29:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:29:45.731281 2025] [security2:error] [pid 13757:tid 13817] [client 104.207.62.221:58551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.riversideturners.com"] [uri "/.git/HEAD"] [unique_id "aSUwub2j_Ew1xiyiewwYOwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-25 03:51:43 (6 months ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:48:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:48:43.592715 2025] [security2:error] [pid 682796:tid 682796] [client 104.207.62.221:59497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.badritual.art"] [uri "/.git/HEAD"] [unique_id "aSUZC99ACIAbIRTHijmergAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:07:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:06:57.808626 2025] [security2:error] [pid 27073:tid 27073] [client 104.207.62.221:28941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gemexpressions.com"] [uri "/.git/HEAD"] [unique_id "aSUBMURCUC_METPcSKi-SwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:21:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:21:41.457986 2025] [security2:error] [pid 10687:tid 10687] [client 104.207.62.221:40011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.stucohen.com"] [uri "/.env"] [unique_id "aST2laHZd7086MgPifeyzQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:02:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:02:04.409368 2025] [security2:error] [pid 21393:tid 21393] [client 104.207.62.221:18251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bywaterpress.com"] [uri "/.git/HEAD"] [unique_id "aSQfDB8qGbKBRnpN5_DFswAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-11-11 03:30:09 (7 months ago)	Form spam	Web Spam
🇧🇪 madeit	2025-11-04 15:40:21 (7 months ago)		Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.240

🇧🇷 177.91.53.14

🇺🇸 74.7.228.18

🇨🇦 72.143.219.30

🇺🇸 44.206.30.242

🇨🇳 106.75.77.231

🇳🇱 92.63.197.5

🇱🇻 81.30.98.62

🇬🇧 74.114.29.154

🇺🇸 71.30.29.112

🇳🇱 45.148.10.240

🇳🇱 45.148.10.157

🇳🇱 45.148.10.121

🇸🇬 45.78.198.199

🇺🇸 44.164.16.95

🇨🇳 36.4.179.71

🇳🇱 2a03:b0c0:2:f0:0:1:8cee:e001

🇧🇷 205.210.31.172

🇳🇱 195.178.110.102

🇮🇹 151.55.210.139