JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.228

104.207.62.228 was found in our database!

This IP was reported 128 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.228

Whois 104.207.62.228

IP Abuse Reports for 104.207.62.228:

This IP address has been reported a total of 128 times from 14 distinct sources. 104.207.62.228 was first reported on June 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-05-25 11:05:33 (2 weeks ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-09 10:26:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 05:26:13.104007 2025] [security2:error] [pid 24833:tid 24866] [client 104.207.62.228:59205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcismanila.com"] [uri "/.git/HEAD"] [unique_id "aTf5Rattdr3go2F-sy--4QAAAFc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 03:33:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:33:25.716851 2025] [security2:error] [pid 20030:tid 20030] [client 104.207.62.228:13359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yakski.com"] [uri "/.git/HEAD"] [unique_id "aTZHBV-E7LpWGxSClpudGAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:50:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:50:11.828641 2025] [security2:error] [pid 7612:tid 7612] [client 104.207.62.228:34131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cyber-matrix.org"] [uri "/.svn/wc.db"] [unique_id "aTV4A5lm_c2FTT4R-aVfngAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 12:13:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 07:13:02.956738 2025] [security2:error] [pid 4505:tid 4505] [client 104.207.62.228:29649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "axiselectric.net"] [uri "/.git/HEAD"] [unique_id "aTQdzrW52iHFgi8vjZWVBQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-06 01:30:01 (6 months ago)	www.humanmenu.hu:80 104.207.62.228 - - [06/Dec/2025:02:27:07 +0100] "GET /.git/HEAD HTTP/1.1" 302 54 ... show more www.humanmenu.hu:80 104.207.62.228 - - [06/Dec/2025:02:27:07 +0100] "GET /.git/HEAD HTTP/1.1" 302 547 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:34:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:34:25.098468 2025] [security2:error] [pid 3978:tid 3978] [client 104.207.62.228:21863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dianogah.com"] [uri "/.svn/wc.db"] [unique_id "aTK1MQ__e53RzgGX_qsU5QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:14:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:14:04.754979 2025] [security2:error] [pid 6688:tid 6688] [client 104.207.62.228:60187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grexicon.com"] [uri "/.git/HEAD"] [unique_id "aTKwbFStjZUWPWJpEN8wLQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 07:14:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 02:14:06.483722 2025] [security2:error] [pid 8634:tid 8634] [client 104.207.62.228:38925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jackpotclubcasinos.com"] [uri "/.git/HEAD"] [unique_id "aTKGPqHt089c8WfSm3aE6gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 06:24:36 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:24:33.173026 2025] [security2:error] [pid 2324:tid 2324] [client 104.207.62.228:49247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "achillespress.com"] [uri "/.git/HEAD"] [unique_id "aTJ6oV_53ZuajqlhEQFy9QAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 05:37:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 00:37:24.402097 2025] [security2:error] [pid 28128:tid 28128] [client 104.207.62.228:45325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "berklie.com"] [uri "/.env"] [unique_id "aTJvlBcksHQe8mJgDw4kIAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-08 16:13:42 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.62.228 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 08 12:13:37.179713 2025] [security2:error] [pid 17733:tid 17733] [client 104.207.62.228:13477] [client 104.207.62.228] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ohnosound.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ohnosound.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_VLMd5atsPM3Rm5VaMYYwAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 11:28:50 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 19:16:57 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 128 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 216.26.246.119

🇸🇬 101.47.27.73

🇵🇱 79.133.202.42

🇧🇪 35.195.138.45

🇩🇪 209.50.180.174

🇦🇷 179.43.115.6

🇺🇸 147.185.132.165

🇨🇳 121.229.9.110

🇺🇸 74.114.28.210

🇩🇪 69.5.169.83

🇰🇷 43.164.191.13

🇹🇼 35.194.141.75

🇺🇸 35.194.78.168

🇨🇦 4.239.243.30

🇨🇦 209.50.178.22

🇩🇪 209.38.224.239

🇺🇸 205.210.31.43

🇮🇹 83.224.146.128

🇨🇳 58.242.190.39

🇧🇪 35.189.218.90