JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.134

104.207.63.134 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.134

Whois 104.207.63.134

IP Abuse Reports for 104.207.63.134:

This IP address has been reported a total of 137 times from 16 distinct sources. 104.207.63.134 was first reported on June 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-18 22:01:19 (2 weeks ago)	Auto-ban: >3000 req/min op 2026-05-18	Web App Attack SSH Hacking
Anonymous	2026-03-27 07:14:59 (2 months ago)	WordPress Bruteforce on Authentication page	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
Anonymous	2025-12-10 15:40:51 (5 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-11-25 06:38:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:38:40.314142 2025] [security2:error] [pid 19393:tid 19393] [client 104.207.63.134:45359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "amazedbyu.com.dcmillerjr.com"] [uri "/.env"] [unique_id "aSVO8A7tg9w_xogZ-_se8gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:41:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:41:04.451390 2025] [security2:error] [pid 9087:tid 9087] [client 104.207.63.134:32691] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.firstampersand.com"] [uri "/.svn/wc.db"] [unique_id "aSUzYPtgXSJ_ozG5Bm_dNgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:06:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:05:56.001231 2025] [security2:error] [pid 31728:tid 31728] [client 104.207.63.134:52037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.automationworkflow.com"] [uri "/.env"] [unique_id "aSUrJBt7cBpj8uvo3tnuMAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:11:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:11:30.252038 2025] [security2:error] [pid 15101:tid 15120] [client 104.207.63.134:17323] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.greatbigspots.com"] [uri "/.env"] [unique_id "aSUeYqNKS2jdjfTVKRdd0wAAARA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:54:48 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:54:44.559963 2025] [security2:error] [pid 14821:tid 14821] [client 104.207.63.134:11491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidnevueconcerts.com"] [uri "/.git/HEAD"] [unique_id "aSUadK-xtt7kqLzu5XIXeQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-29 15:35:17 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-10-16 20:31:27 (7 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-10-11 07:34:28 (7 months ago)	Attempted brute force login to web vpn 54 time(s); last attempt for 2025.10.11 is noted in report ti ... show more Attempted brute force login to web vpn 54 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 18:05:19 (7 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-09 22:36:02 (7 months ago)	Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.09 is noted in report ti ... show more Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.09 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-08 23:33:54 (7 months ago)	Attempted brute force login to web vpn 162 time(s); last attempt for 2025.10.08 is noted in report t ... show more Attempted brute force login to web vpn 162 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 152.32.134.182

🇰🇷 112.164.209.49

🇨🇳 111.29.38.32

🇷🇴 45.93.128.30

🇮🇹 206.232.40.209

🇲🇴 182.93.50.90

🇺🇸 162.216.149.103

🇮🇳 152.59.153.76

🇸🇬 129.226.95.93

🇺🇸 71.6.236.138

🇺🇸 64.62.197.63

🇳🇱 45.198.224.5

🇺🇸 3.142.96.34

🇺🇸 205.210.31.77

🇺🇸 205.210.31.75

🇮🇳 202.141.65.5

🇳🇱 192.42.116.112

🇲🇾 182.62.16.25

🇫🇮 150.241.89.255

🇫🇷 135.125.2.121