JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.13

104.207.63.13 was found in our database!

This IP was reported 76 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.13

Whois 104.207.63.13

IP Abuse Reports for 104.207.63.13:

This IP address has been reported a total of 76 times from 17 distinct sources. 104.207.63.13 was first reported on June 8th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-11 23:51:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:51:03.022373 2026] [security2:error] [pid 4682:tid 4682] [client 104.207.63.13:29859] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arklahomaflooring.com"] [uri "/backup/.git/config"] [unique_id "aY0V56lITaqSndjW3jLN7wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 18:41:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 13:41:44.109752 2026] [security2:error] [pid 5360:tid 5417] [client 104.207.63.13:44831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apada.com"] [uri "/v2/.git/config"] [unique_id "aYt76Ax9KEwG7-4xi4z5bgAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:53:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:53:45.943722 2026] [security2:error] [pid 30055:tid 30055] [client 104.207.63.13:58199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kofcasamblea442.org"] [uri "/.env"] [unique_id "aYrH6VMt_mneMrEHlv-NKAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:44:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:44:28.086876 2026] [security2:error] [pid 9632:tid 9632] [client 104.207.63.13:46251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "klingandi.com"] [uri "/site/.git/config"] [unique_id "aYq3rGP4g3SbtDfW6TiP2gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:28:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:28:47.760744 2026] [security2:error] [pid 20836:tid 20836] [client 104.207.63.13:59695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ianmagarzo.com"] [uri "/api/.git/config"] [unique_id "aYql74i9g5bBA-T16mXvDQAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:12:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:12:45.840955 2026] [security2:error] [pid 24206:tid 24206] [client 104.207.63.13:42275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnen.org"] [uri "/.git/config"] [unique_id "aYqiLd2vPmX7hR4FxmRJkwAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:55:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:55:42.438108 2026] [security2:error] [pid 875:tid 875] [client 104.207.63.13:25419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-brochures.com"] [uri "/api/.git/config"] [unique_id "aYqeLoTQwD_kg8zWh8VEDQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:30:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:30:23.391451 2026] [security2:error] [pid 938:tid 938] [client 104.207.63.13:34615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karsini-services.com"] [uri "/dev/.git/config"] [unique_id "aYpR76vZAPORUyaTtzh35wAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-01 20:33:48 (7 months ago)	[redacted] 104.207.63.13 - - [01/Nov/2025:21:33:35 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "M ... show more [redacted] 104.207.63.13 - - [01/Nov/2025:21:33:35 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en) AppleWebKit/418.8 (KHTML, like Gecko) Safari/419.3" [redacted] 104.207.63.13 - - [01/Nov/2025:21:33:36 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 6.0; MYA-L03 Build/HUAWEIMYA-L03; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/69.0.3497.100 Mobile Safari/537.36 [FB_IAB/FB4A;FBAV/192.0.0.34.85;]" [redacted] 104.207.63.13 - - [01/Nov/2025:21:33:38 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)" [redacted] 104.207.63.13 - - [01/Nov/2025:21:33:39 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SAMSUNG SM-J120M Build/LMY47X) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/6.4 Chrome/56.0.2924.87 Mobile Safa ... show less	Hacking Web App Attack
🇫🇷 applemooz	2025-11-01 12:01:16 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇩🇪 Marc	2025-10-29 18:28:44 (7 months ago)		Brute-Force Web App Attack
🇩🇪 ps-center	2025-10-19 05:30:33 (7 months ago)	SS5-W: TCP-Scanner. Port: 22	Port Scan
Anonymous	2025-04-07 12:31:14 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 10:24:27 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 04:01:53 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 76 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.109

🇯🇵 207.56.225.202

🇧🇷 205.210.31.203

🇨🇦 85.217.149.65

🇺🇸 18.234.153.239

🇺🇸 3.90.249.218

🇩🇪 217.154.173.63

🇧🇷 205.210.31.195

🇧🇷 205.210.31.186

🇺🇸 172.253.213.22

🇺🇸 65.49.1.182

🇺🇸 64.62.197.167

🇧🇷 205.210.31.185

🇪🇸 188.240.192.154

🇨🇱 181.173.249.22

🇳🇱 86.94.90.154

🇺🇸 66.132.172.228

🇩🇪 45.131.71.129

🇺🇸 38.70.228.101

🇺🇸 209.141.44.113