JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.110

104.207.63.110 was found in our database!

This IP was reported 119 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.110

Whois 104.207.63.110

IP Abuse Reports for 104.207.63.110:

This IP address has been reported a total of 119 times from 10 distinct sources. 104.207.63.110 was first reported on June 8th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-04 19:50:02 (5 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:42:02 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:41:53.404896 2025] [security2:error] [pid 25670:tid 25670] [client 104.207.63.110:37531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "makegoodsausage.com"] [uri "/.env"] [unique_id "aVIGkeE6eFsYJSqc7qRQLAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (6 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
🇺🇸 TPI-Abuse	2025-11-26 09:02:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:02:41.335899 2025] [security2:error] [pid 9097:tid 9097] [client 104.207.63.110:56579] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.danasedge.net"] [uri "/.svn/wc.db"] [unique_id "aSbCMRiJfplyYwSWDxU4IAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:01:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:00:58.072274 2025] [security2:error] [pid 2454508:tid 2454508] [client 104.207.63.110:32887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.depcare.com"] [uri "/.env"] [unique_id "aSaXmjaG2RPimix8vPF-8gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:32:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:32:52.497904 2025] [security2:error] [pid 1982:tid 1982] [client 104.207.63.110:43967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.carolineburkedesigns.com"] [uri "/.env"] [unique_id "aSZm1LiA03vawlfGK7xJiQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:48:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:48:23.272153 2025] [security2:error] [pid 4149:tid 4149] [client 104.207.63.110:52349] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dartylife.com"] [uri "/.env"] [unique_id "aSUY98tCRIsHzo-gZvSQ_gAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:33:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:33:44.441803 2025] [security2:error] [pid 16350:tid 16350] [client 104.207.63.110:27697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.genesis-one.com"] [uri "/.svn/wc.db"] [unique_id "aSQmeCZVQihZgyU7ScKZvgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:57:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:57:15.650086 2025] [security2:error] [pid 17622:tid 17622] [client 104.207.63.110:58581] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.janner.us"] [uri "/.git/HEAD"] [unique_id "aSPlq01WTwxxYubCAtiXzwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:11:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:11:09.298025 2025] [security2:error] [pid 19040:tid 19040] [client 104.207.63.110:32383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.suretrap.com"] [uri "/.svn/wc.db"] [unique_id "aSPa3TyOoeYsomlMCULHCAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 02:26:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 21:26:46.045977 2025] [security2:error] [pid 1547:tid 1547] [client 104.207.63.110:14979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hk.handyrehab.com"] [uri "/.env"] [unique_id "aSPCZlYxZ2JWHWPjhPv2xQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-10-13 00:50:44 (8 months ago)	(From [email protected]) Hello there, We have a limited opportunity for your website nor ... show more (From [email protected]) Hello there, We have a limited opportunity for your website northshorechiropractic.com : https://www.youtube.com/watch?v=GY1x2NWs9EA?northshorechiropractic.com Not enjoying maintaining countless intelligent platforms? With EveryAI you unlock one dashboard that delivers many advanced AI engines without monthly fees. Launch online projects, generate descriptions, make logos, generate cinematic videos, animated presenters… and keep 100% of your profit under a commercial license. Interested in earning more, doing less, and managing outcomes your way? It begins now. Watch how it works: https://www.youtube.com/watch?v=GY1x2NWs9EA?northshorechiropractic.com show less	Phishing Web Spam
🇺🇸 oncord	2025-10-09 13:22:01 (8 months ago)	Form spam	Web Spam
Anonymous	2025-04-07 00:33:36 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 13:58:35 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 119 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.135

🇦🇪 151.253.89.13

🇫🇮 147.185.133.238

🇬🇧 118.193.64.15

🇫🇷 91.231.89.231

🇺🇸 66.132.172.32

🇺🇸 48.217.64.148

🇳🇱 45.148.10.152

🇻🇳 42.114.135.158

🇺🇸 2607:f8b0:4006:812::200e

🇨🇴 186.179.100.17

🇦🇷 186.148.224.183

🇷🇴 143.20.185.242

🇨🇳 122.231.161.37

🇫🇷 91.231.89.227

🇺🇸 91.230.168.186

🇺🇸 91.230.168.142

🇺🇸 91.230.168.61

🇮🇳 58.146.101.29

🇫🇷 45.81.243.62