JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.12

104.207.63.12 was found in our database!

This IP was reported 83 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.12

Whois 104.207.63.12

IP Abuse Reports for 104.207.63.12:

This IP address has been reported a total of 83 times from 17 distinct sources. 104.207.63.12 was first reported on June 4th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-02-15 13:05:31 (3 months ago)	WAF repeated trigger detected by Fail2Ban	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:36:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:36:38.088288 2026] [security2:error] [pid 26218:tid 26218] [client 104.207.63.12:47501] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partytimegame.com"] [uri "/backup/.git/config"] [unique_id "aZG91sCZCzjuQJATtm6p1wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:00:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:00:37.274856 2026] [security2:error] [pid 9860:tid 9860] [client 104.207.63.12:11631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pamelalambert.com"] [uri "/.env.production"] [unique_id "aZG1ZaXUeEoJJGKXl_gf2gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 sdos.es	2026-02-15 11:30:41 (3 months ago)	"Restricted File Access Attempt - Matched Data: /.git/ found within REQUEST_FILENAME: /site/.git/con ... show more "Restricted File Access Attempt - Matched Data: /.git/ found within REQUEST_FILENAME: /site/.git/config" show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:03:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:03:19.493792 2026] [security2:error] [pid 14595:tid 14595] [client 104.207.63.12:60007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "punctuminteractive.com"] [uri "/test/.git/config"] [unique_id "aZGn93qLGVw248w4eH8R7QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:56:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:56:37.724769 2026] [security2:error] [pid 973083:tid 973083] [client 104.207.63.12:55097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pscc.com"] [uri "/wp/.git/config"] [unique_id "aZFuJcN21CmzF4eIwbmIWwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 05:18:27 (3 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:17:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:17:47.642886 2026] [security2:error] [pid 26692:tid 26692] [client 104.207.63.12:21389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "primestatepainting.com"] [uri "/backup/.git/config"] [unique_id "aZFW-_mX0GXicGleWSNeWgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 04:05:44 (3 months ago)	Too many Status 40X (11) Scanning/Probing (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:38:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:38:49.556432 2026] [security2:error] [pid 12764:tid 12764] [client 104.207.63.12:37681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pornstarsdontdance.com"] [uri "/api/.env"] [unique_id "aZE_yfKP9qnHVOhiQtcFHwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:12:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:11:56.727299 2026] [security2:error] [pid 20717:tid 20717] [client 104.207.63.12:21217] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "njoyquilts.com"] [uri "/site/.git/config"] [unique_id "aZE5fF8LV1FTtkF5DDgV5gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 03:04:19 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:29:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:29:42.560002 2026] [security2:error] [pid 2171:tid 2298] [client 104.207.63.12:59899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nextlevelpsych.com"] [uri "/.git/config"] [unique_id "aZEvlhdun7oDywmMCK4Q6AAAARE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2026-02-15 01:38:52 (3 months ago)	C1: Web Attack GET /admin/.git/config	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:33:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.12 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:33:15.077026 2026] [security2:error] [pid 21847:tid 21847] [client 104.207.63.12:40477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pinehillwineworks.com"] [uri "/admin/.env"] [unique_id "aZEiWzRkzNlOWecNECpzZgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 83 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇺🇸 104.223.79.210

🇿🇦 102.64.33.98

🇰🇷 182.31.109.4

🇺🇸 172.69.17.54

🇺🇸 136.49.53.226

🇫🇷 92.103.134.183

🇺🇸 64.95.14.253

🇱🇹 45.227.254.170

🇬🇧 35.203.211.194

🇨🇳 223.79.60.69

🇮🇳 202.9.122.88

🇧🇷 179.176.210.17

🇺🇸 147.185.132.188

🇭🇰 103.210.21.242

🇧🇷 102.211.152.138

🇬🇧 87.236.176.201

🇳🇱 45.198.224.126

🇨🇳 2400:7fc0:82c0:802:ae9b:8822:509a:3e21

🇷🇺 178.185.136.57