JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.130

104.207.63.130 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.130

Whois 104.207.63.130

IP Abuse Reports for 104.207.63.130:

This IP address has been reported a total of 125 times from 16 distinct sources. 104.207.63.130 was first reported on June 11th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-10 07:18:06 (3 weeks ago)		Bad Web Bot
🇮🇩 BPS-StatisticsIndonesia	2026-01-10 16:43:37 (4 months ago)	WP Login Scan Activities	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-11-26 00:32:57 (6 months ago)	WP Login Scan Activities	Web App Attack
🇺🇸 nowyouknow	2025-11-25 00:54:53 (6 months ago)	(From [email protected]) Hello skyparkchiro.com Owner. If your website is getting traffic bu ... show more (From [email protected]) Hello skyparkchiro.com Owner. If your website is getting traffic but not leads, the problem isn’t your ads—it’s conversion. We partner with businesses like yours convert clicks into customers by: • Optimizing landing pages and homepages • Adding trust signals and clear calls-to-action • Removing friction for mobile users • Helping you show up where customers search • Showing you what works and what doesn’t We turn existing traffic into real revenue fast. We’ve built a thriving community of 100,000+ business owners who’ve strengthened their online presence, and USA Wire recently highlighted our expertise in helping small businesses experience measurable growth. Interested in a no-cost SEO check-up and strategy roadmap? We’ll outline the steps to boost visibility and conversions. P.S. If your conversion rate is under 2%, you’re leaving money on the table. Cheers, show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-24 08:29:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:29:37.569509 2025] [security2:error] [pid 17459:tid 17459] [client 104.207.63.130:46833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.partyblockwedding.com"] [uri "/.git/HEAD"] [unique_id "aSQXcTS4SehTGcJOPAUaZAAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:15:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:15:08.103382 2025] [security2:error] [pid 1582:tid 1582] [client 104.207.63.130:18141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nextngnr.com"] [uri "/.git/HEAD"] [unique_id "aSPp3LEpg8AwKpIk4P-2JgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:59:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:59:28.346312 2025] [security2:error] [pid 19262:tid 19262] [client 104.207.63.130:25171] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.thorndikestudio.com"] [uri "/.svn/wc.db"] [unique_id "aSPmMIvqBa2OpMQhTm5qgAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:32:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:32:38.200461 2025] [security2:error] [pid 4630:tid 4633] [client 104.207.63.130:35939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.lasertagandgames.com"] [uri "/.svn/wc.db"] [unique_id "aSPf5qcxawx_aukreZu2_gAAAUE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:17:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:17:10.358544 2025] [security2:error] [pid 15149:tid 15149] [client 104.207.63.130:48367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.snowfection.com"] [uri "/.git/HEAD"] [unique_id "aSPcRsKcrYphb9xVEf-OgAAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:46:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:45:57.666100 2025] [security2:error] [pid 19764:tid 19764] [client 104.207.63.130:54315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "2nd60group.com"] [uri "/.env"] [unique_id "aSPU9R6GgEadgqzOBsIfDgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2025-11-21 10:00:02 (6 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-17 14:43:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 17 09:42:58.551830 2025] [security2:error] [pid 25460:tid 25460] [client 104.207.63.130:17337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.amyisms.com"] [uri "/.env"] [unique_id "aRs0cmOzchvJsqnTj5PA3QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-16 21:47:29 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 104.207.63.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 16 16:47:22.511015 2025] [security2:error] [pid 32320:tid 32320] [client 104.207.63.130:21469] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kirbysmw.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kirbysmw.com"] [uri "/s3cmd.ini"] [unique_id "aRpGameVJHqKtfcojsGt2QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-11-11 23:42:30 (6 months ago)	WP Login Scan Activities	Web App Attack
🇩🇪 BestFans.com	2025-11-06 20:51:06 (6 months ago)	Credential brute-force attacks on webpage logins	Brute-Force

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 173.194.170.121

🇭🇰 165.154.60.76

🇨🇳 223.199.162.61

🇨🇳 220.202.112.18

🇮🇩 202.51.214.99

🇨🇳 180.95.238.174

🇮🇩 157.15.67.253

🇨🇳 139.170.73.183

🇳🇱 89.21.67.167

🇳🇱 45.198.224.138

🇻🇪 38.61.171.93

🇺🇸 20.169.106.201

🇮🇳 4.213.224.194

🇨🇭 179.43.163.234

🇺🇸 162.216.150.32

🇺🇸 162.144.121.110

🇭🇰 152.32.128.204

🇹🇼 104.199.176.250

🇳🇱 45.148.10.151

🇬🇧 31.77.156.62