JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.137

104.207.63.137 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.137

Whois 104.207.63.137

IP Abuse Reports for 104.207.63.137:

This IP address has been reported a total of 143 times from 19 distinct sources. 104.207.63.137 was first reported on June 7th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇳🇱 i-turnradio.nl	2026-02-20 13:59:43 (4 months ago)	2026-02-20 14:59:43 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇩🇪 big-cloud.nl	2026-02-13 13:55:42 (4 months ago)	Try to access /api/.env	Web App Attack
🇫🇷 dynamix	2026-02-13 12:40:24 (4 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:14:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:14:16.130503 2026] [security2:error] [pid 26407:tid 26407] [client 104.207.63.137:13503] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medusakenya.com"] [uri "/app/.env"] [unique_id "aY7PSHS4alR3g5U9P9Ar8gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:09:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:09:30.116926 2026] [security2:error] [pid 11900:tid 11900] [client 104.207.63.137:50905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mcdesigner.com"] [uri "/app/.env"] [unique_id "aY7AGt9ysfVDaLA9_qv4SQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 05:33:01 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:32:55.455169 2026] [security2:error] [pid 1370898:tid 1370898] [client 104.207.63.137:21653] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maverickhousellc.com"] [uri "/api/.git/config"] [unique_id "aY63h5pMYM3hqyCcPeKomAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-13 04:31:07 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-13 04:15:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:15:41.827753 2026] [security2:error] [pid 187755:tid 187755] [client 104.207.63.137:56143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marriedtv.com"] [uri "/api/.git/config"] [unique_id "aY6lbbJSK0KxBN_wdzLIngAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:15:12 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:15:08.425439 2026] [security2:error] [pid 21653:tid 21653] [client 104.207.63.137:9505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marcastecnologia.com"] [uri "/frontend/.env"] [unique_id "aY6XPJSkbYA77pahhjlBZwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 18:02:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 13:02:45.535837 2026] [security2:error] [pid 12297:tid 12297] [client 104.207.63.137:25073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dpproductionhk.com"] [uri "/.env"] [unique_id "aY4VxYon_dxCgySr6OjsMQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:43:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:43:18.517812 2026] [security2:error] [pid 1624:tid 1624] [client 104.207.63.137:51363] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "diepeveen.com"] [uri "/.env"] [unique_id "aY4RNumCbtkuMt0w5WMAngAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:23:55 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:23:52.034096 2026] [security2:error] [pid 7668:tid 7668] [client 104.207.63.137:63799] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dcmillerjr.com"] [uri "/.env"] [unique_id "aY4MqD4xC8GWdy0r8-pLhgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 07:59:05 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 02:58:59.468143 2026] [security2:error] [pid 24439:tid 24439] [client 104.207.63.137:45217] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gcsmith.com"] [uri "/backend/.env"] [unique_id "aY2IQ00pngW2OikhFlExjgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:23:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:23:33.420645 2026] [security2:error] [pid 22922:tid 22922] [client 104.207.63.137:13163] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garyoneal.com"] [uri "/api/.env"] [unique_id "aY0PdZIZgaeNcPv2ZHP1lwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇹 62.60.130.251

🇵🇰 202.70.139.163

🇬🇹 190.104.115.190

🇧🇬 185.253.160.7

🇸🇬 165.154.205.128

🇺🇸 136.144.35.228

🇨🇳 114.217.10.60

🇨🇳 103.193.189.177

🇺🇸 65.49.1.239

🇭🇰 36.255.220.145

🇺🇸 15.204.187.247

🇲🇦 197.144.73.98

🇦🇷 186.22.225.182

🇩🇪 167.94.146.68

🇺🇸 84.37.39.42

🇺🇸 75.64.142.99

🇮🇶 62.201.212.54

🇳🇱 2a0b:64c0:1::31c

🇧🇴 181.188.140.101

🇺🇸 168.196.239.230