JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.4

104.207.62.4 was found in our database!

This IP was reported 89 times. Confidence of Abuse is 30%: ?

30%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.4

Whois 104.207.62.4

IP Abuse Reports for 104.207.62.4:

This IP address has been reported a total of 89 times from 23 distinct sources. 104.207.62.4 was first reported on June 11th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-02 10:17:45 (1 week ago)	[da.kdns.gr] httpd-login-spray-site: sites=global; logs=/var/log/httpd/access_log; samples=site_wide ... show more [da.kdns.gr] httpd-login-spray-site: sites=global; logs=/var/log/httpd/access_log; samples=site_wide=true \| distinct_ips=12 \| /wp-login.php show less	Hacking Web App Attack
🇫🇷 ELYAZ	2026-05-31 09:24:26 (1 week ago)	(y4) Failed scan -byebye- from 104.207.62.4 (FR/France/-): (CF_ENABLE)	Hacking
🇩🇪 FeG Deutschland	2026-05-29 15:00:44 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇦🇺 HJ5Ss4Ju	2026-05-28 12:10:48 (1 week ago)	Blocked by Wordfence (SID 6)	Web App Attack
🇩🇪 Axel	2026-05-20 17:28:07 (2 weeks ago)	[2026-05-20 17:28:07 UTC] Honeypot WebLogic connection attempt \| AXFRA HONEYPOT	Web App Attack
Anonymous	2025-12-31 14:50:07 (5 months ago)	2025-12-31T16:50:06.973919+02:00 zanati wp(www.sahpa.co.za)[7898]: Blocked authentication attempt fo ... show more 2025-12-31T16:50:06.973919+02:00 zanati wp(www.sahpa.co.za)[7898]: Blocked authentication attempt for [email protected] from 104.207.62.4 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:50:38 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:50:33.655576 2025] [security2:error] [pid 20624:tid 20624] [client 104.207.62.4:20969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "homerbiz.com"] [uri "/.env"] [unique_id "aVIWqTJG5jygRi2T3dgtmAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:30:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:30:48.270994 2025] [security2:error] [pid 17121:tid 17129] [client 104.207.62.4:59815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wicca-love-spells.com"] [uri "/.svn/wc.db"] [unique_id "aVISCLW73w_xDGZnXivMRAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:55:01 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:54:52.215036 2025] [security2:error] [pid 14296:tid 14296] [client 104.207.62.4:20641] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynmather.com"] [uri "/.git/HEAD"] [unique_id "aVIJnFUB3nhIMn_Z1fZ9nwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:01:34 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:01:26.126744 2025] [security2:error] [pid 15682:tid 15682] [client 104.207.62.4:39419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rongrapes.com"] [uri "/.env"] [unique_id "aVH9FqegCUmvEUZOHocACgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇹 Malta	2025-12-18 17:34:18 (5 months ago)	104.207.62.4 - - [18/Dec/2025:18:34:18 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 104.207.62.4 - - [18/Dec/2025:18:34:18 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.6367.207 Safari/537.36" show less	VPN IP Hacking Web App Attack
🇳🇱 homeshowdomain.nl	2025-11-25 22:59:51 (6 months ago)	Auto-ban: >3000 req/min op 2025-11-25	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-25 06:07:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:07:35.734352 2025] [security2:error] [pid 2096:tid 2096] [client 104.207.62.4:16025] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "engineeringarts.com"] [uri "/.git/HEAD"] [unique_id "aSVHp2_0KxbBArPJcx7dGwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:44:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:43:38.332928 2025] [security2:error] [pid 13283:tid 13283] [client 104.207.62.4:34265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.statisticsbooks.com"] [uri "/.svn/wc.db"] [unique_id "aSVCCvu_3qnKRAwd390tZQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:56:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.4 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:56:34.444726 2025] [security2:error] [pid 759311:tid 759311] [client 104.207.62.4:59553] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.artsun.com"] [uri "/.git/HEAD"] [unique_id "aSUo8tYUHqXSMfmdxa6jbAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 89 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇪 206.0.167.223

🇨🇦 195.63.18.11

🇨🇦 172.69.130.148

🇺🇸 162.216.150.133

🇰🇷 106.246.224.218

🇺🇸 66.132.186.234

🇫🇷 62.133.62.207

🇳🇱 5.187.35.26

🇩🇪 4.182.219.135

🇨🇦 217.181.81.82

🇨🇳 202.46.62.44

🇩🇪 130.61.152.179

🇮🇹 91.80.174.162

🇨🇳 8.141.118.211

🇲🇾 47.254.242.200

🇳🇱 45.148.10.152

🇲🇽 186.96.145.241

🇺🇸 136.107.1.78

🇨🇳 121.43.75.36

🇨🇳 111.61.117.120