JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.215

104.207.63.215 was found in our database!

This IP was reported 133 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.215

Whois 104.207.63.215

IP Abuse Reports for 104.207.63.215:

This IP address has been reported a total of 133 times from 13 distinct sources. 104.207.63.215 was first reported on June 20th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-05-19 22:30:18 (2 weeks ago)	Known malicious PHP file or CMS probe	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:15 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-27 22:46:20 (6 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.63.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.63.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 17:46:16.142156 2025] [security2:error] [pid 7609:tid 7609] [client 104.207.63.215:44805] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|goalsnet.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "goalsnet.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aSjUuAi-OpCPIgiYWEfS0QAAABA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 21:34:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 16:34:14.339480 2025] [security2:error] [pid 27635:tid 27635] [client 104.207.63.215:34769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatcaverecords.com"] [uri "/.git/HEAD"] [unique_id "aSjD1rlgf9CBjfso915fSQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 stinpriza	2025-11-13 06:10:04 (6 months ago)	Web App Attack	Web App Attack
Anonymous	2025-09-30 15:14:58 (8 months ago)	2025-09-30T17:14:54.869000 localhost.localdomain sshd[215056]: pam_unix(sshd:auth): authentication f ... show more 2025-09-30T17:14:54.869000 localhost.localdomain sshd[215056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.207.63.215 2025-09-30T17:14:57.205341 localhost.localdomain sshd[215056]: Failed password for invalid user admin from 104.207.63.215 port 32045 ssh2 ... show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-04-08 19:09:31 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 104.207.63.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.63.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 08 15:09:26.827688 2025] [security2:error] [pid 17779:tid 17779] [client 104.207.63.215:20065] [client 104.207.63.215] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|joycebrown.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "joycebrown.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z_V0ZmwM8623IcWRxwzxYgAAAA0"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 00:42:30 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 20:02:16 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 08:20:08 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 13:58:28 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-04-04 12:00:51 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/1.1 (GET method) Timestamp: 2025-04-04T09:41:28Z UA: Mozilla/5.0 (Linux x86_64; rv:114.0) Gecko/20100101 Firefox/114.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-04-03 20:38:45 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-01 17:30:00 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.01 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.01 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-03-31 20:46:29 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.03.31 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.03.31 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 133 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.226

🇺🇸 172.253.217.26

🇸🇬 167.172.93.20

🇮🇳 116.68.103.73

🇺🇸 100.29.192.57

🇩🇪 88.198.25.181

🇮🇱 82.102.188.117

🇮🇳 52.140.76.154

🇸🇬 43.160.233.207

🇸🇬 43.156.201.48

🇩🇪 31.70.65.19

🇸🇻 190.86.135.210

🇨🇳 115.190.172.63

🇨🇳 112.225.37.197

🇳🇱 45.142.193.10

🇺🇸 2001:470:1:332::a2

🇨🇴 179.33.210.213

🇳🇱 176.65.139.56

🇩🇪 144.76.159.59

🇨🇳 117.187.127.143