JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.63.88

104.207.63.88 was found in our database!

This IP was reported 131 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.63.88

Whois 104.207.63.88

IP Abuse Reports for 104.207.63.88:

This IP address has been reported a total of 131 times from 17 distinct sources. 104.207.63.88 was first reported on June 11th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-23 06:53:35 (2 weeks ago)	wordpress authentication brute force	Brute-Force Web App Attack
🇬🇧 Apache	2026-04-25 14:10:12 (1 month ago)	(mod_security) mod_security (id:210410) triggered by 104.207.63.88 (FR/France/-): 5 in the last 300 ... show more (mod_security) mod_security (id:210410) triggered by 104.207.63.88 (FR/France/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:53 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-27 22:29:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 17:29:24.071648 2025] [security2:error] [pid 11202:tid 11202] [client 104.207.63.88:38737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "innolympics.com"] [uri "/.svn/wc.db"] [unique_id "aSjQxGcsfWsOPV8u2JtajwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 21:46:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 16:45:58.671338 2025] [security2:error] [pid 510:tid 510] [client 104.207.63.88:31217] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingangelinvestors.com"] [uri "/.git/HEAD"] [unique_id "aSjGlv_jWYoqukwR375wCAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇸 Smel	2025-11-26 11:18:36 (6 months ago)	Unauthorized Probe/Connection, Hack -	Port Scan Hacking
🇺🇸 TPI-Abuse	2025-11-26 10:30:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:30:52.796433 2025] [security2:error] [pid 7137:tid 7137] [client 104.207.63.88:49335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.epicjellyfish.com"] [uri "/.git/HEAD"] [unique_id "aSbW3Ol4EXG4Aj2XTFLzNgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 ingroscart.it	2025-11-26 04:32:26 (6 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.63.88 (FR/France/-)	SQL Injection
🇺🇸 TPI-Abuse	2025-11-26 01:21:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:21:33.588410 2025] [security2:error] [pid 27260:tid 27260] [client 104.207.63.88:9999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.thomaschemicals.com"] [uri "/.svn/wc.db"] [unique_id "aSZWHafe4UfwFeGqNWV0nQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:03:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:03:48.394751 2025] [security2:error] [pid 6012:tid 6012] [client 104.207.63.88:22529] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.atlanticcitypartybuses.com"] [uri "/.env"] [unique_id "aSZR9BaKTO4zIWJXtItHjQAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:41:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:41:00.888121 2025] [security2:error] [pid 15835:tid 15835] [client 104.207.63.88:49093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.kingmansvc.com"] [uri "/.svn/wc.db"] [unique_id "aSZMnITaXgXuekC3u2SjtwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇹 NotACaptcha	2025-11-25 23:23:17 (6 months ago)	webserver:80 [26/Nov/2025] "GET /.aws/credentials HTTP/1.1" 404 397 "-" "Mozilla/5.0 (Windows NT 10 ... show more webserver:80 [26/Nov/2025] "GET /.aws/credentials HTTP/1.1" 404 397 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:121.0) Gecko/20100101 Firefox/121.0" show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:13:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:13:49.859700 2025] [security2:error] [pid 1816811:tid 1816966] [client 104.207.63.88:36459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.certifiedprojectmanager.net"] [uri "/.git/HEAD"] [unique_id "aSU7De3xOpFSh0Wflct5UwAAAFA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:03:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:03:38.150075 2025] [security2:error] [pid 21707:tid 21707] [client 104.207.63.88:18497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.visage-nico.com"] [uri "/.svn/wc.db"] [unique_id "aSUAav-6TE6zK_vl4KL-EwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:18:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.63.88 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:18:37.839997 2025] [security2:error] [pid 22321:tid 22321] [client 104.207.63.88:45221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.jewelrybuyers.net"] [uri "/.svn/wc.db"] [unique_id "aSQi7al5JpVjKBgk-R7YLgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 131 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇰 220.247.224.226

🇧🇷 205.210.31.217

🇮🇩 114.10.44.5

🇨🇳 113.206.181.204

🇭🇰 45.142.154.87

🇲🇾 219.92.8.252

🇰🇪 197.248.159.62

🇨🇳 183.151.70.9

🇺🇸 162.216.150.218

🇺🇸 147.185.132.119

🇭🇰 114.111.53.214

🇬🇪 91.207.180.130

🇺🇸 43.135.139.165

🇪🇬 41.39.70.124

🇺🇸 34.186.234.1

🇮🇳 4.213.160.153

🇰🇷 221.164.237.124

🇺🇸 205.210.31.44

🇲🇩 176.123.2.115

🇳🇱 165.22.198.48