JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.240

104.207.63.240 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.240

Whois 104.207.63.240

IP Abuse Reports for 104.207.63.240:

This IP address has been reported a total of 134 times from 18 distinct sources. 104.207.63.240 was first reported on June 20th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-12 03:12:11 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 22:12:04.231036 2026] [security2:error] [pid 31210:tid 31210] [client 104.207.63.240:61915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artaria.us"] [uri "/frontend/.env"] [unique_id "aY1FBJ7aVK5Wokawbd8chAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 17:07:25 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 12:07:19.138855 2026] [security2:error] [pid 27989:tid 27989] [client 104.207.63.240:22809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anxo.net"] [uri "/frontend/.env"] [unique_id "aYtlx1l8UrXd2DhrdB9OcQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:49:08 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:49:02.895000 2026] [security2:error] [pid 30056:tid 30056] [client 104.207.63.240:60803] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koeckeritz.com"] [uri "/admin/.env"] [unique_id "aYrGzhdjT8S9cRFBwV4GsgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 jcbriar	2026-02-10 05:18:01 (4 months ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:17:04 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:16:56.626083 2026] [security2:error] [pid 23199:tid 23227] [client 104.207.63.240:23399] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iamalibrarian.com"] [uri "/.env.staging"] [unique_id "aYqjKH16UGkN-LIDmLrypwAAAIg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:05:22 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:05:16.517661 2026] [security2:error] [pid 1635518:tid 1635518] [client 104.207.63.240:37103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentuckyminiaturehorsebreeders.org"] [uri "/.env"] [unique_id "aYp2PAMIAT2wab4AfOzG4gAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:12:12 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:11:42.009489 2026] [security2:error] [pid 4978:tid 4978] [client 104.207.63.240:14613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hppagewideprinting.com"] [uri "/admin/.git/config"] [unique_id "aYpprqppWkVXVeYHhJaQCgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:34:39 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:34:33.970221 2026] [security2:error] [pid 18351:tid 18351] [client 104.207.63.240:29773] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "macro-astrology.com"] [uri "/v2/.git/config"] [unique_id "aYpg-Zvq901PX0ytK9SSkgAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:09:36 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:09:29.409697 2026] [security2:error] [pid 1113301:tid 1113301] [client 104.207.63.240:31013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katisfaction.nl"] [uri "/config/.env"] [unique_id "aYpbGYioouqZ1PRdAYRqiAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 21:12:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.240 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:12:36.478207 2026] [security2:error] [pid 21980:tid 21980] [client 104.207.63.240:50223] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horizontravelgroup.com"] [uri "/api/.env"] [unique_id "aYpNxNNUGQ5LeFQnnH-lQgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:50:35 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇨🇭 backslash	2026-01-05 01:15:05 (5 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:59:31 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 LTM	2025-10-12 06:20:01 (8 months ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
🇮🇱 Dolphi	2025-10-11 17:20:04 (8 months ago)	POST //xmlrpc.php	Brute-Force Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 61.243.105.14

🇬🇧 31.14.254.3

🇮🇩 103.187.165.26

🇨🇳 39.89.173.148

🇺🇸 3.144.186.137

🇹🇼 198.235.24.42

🇨🇳 171.114.227.203

🇵🇰 154.192.129.80

🇫🇮 80.223.192.131

🇰🇷 61.85.201.22

🇬🇧 35.203.210.164

🇳🇱 20.61.127.57

🇧🇷 179.216.16.184

🇻🇳 171.231.193.186

🇧🇷 168.194.18.236

🇮🇳 103.180.213.153

🇰🇷 43.202.163.207

🇯🇵 34.180.122.231

🇳🇱 185.99.99.95

🇮🇩 182.253.48.18