JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.1

104.207.58.1 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.1

Whois 104.207.58.1

IP Abuse Reports for 104.207.58.1:

This IP address has been reported a total of 70 times from 15 distinct sources. 104.207.58.1 was first reported on June 7th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 MatStef132	2026-05-19 20:55:42 (2 weeks ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-19 20:21:31 (2 weeks ago)	MatShield L7: blocked on chat.justchat.icu (ua-quarantined)	Bad Web Bot
🇳🇱 MatStef132	2026-05-16 13:11:53 (2 weeks ago)	MatShield L7: blocked on justchat.icu (chrome-ua-hint-missing)	DDoS Attack
🇮🇩 Burayot	2026-05-15 01:59:01 (3 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.58.1 (TH/Thailand/-): 2 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.58.1 (TH/Thailand/-): 2 in the last 3600 secs show less	Web App Attack
🇫🇷 MatStef132	2026-05-14 21:32:38 (3 weeks ago)	[mathost.eu] ua-q	DDoS Attack Bad Web Bot Web App Attack
🇪🇸 el-brujo	2026-04-28 15:44:20 (1 month ago)	Cloudflare WAF: Request Path: /123456 Request Query: ?_ga=OBH5Xh8snfReg Host: elhacker.net userAgent ... show more Cloudflare WAF: Request Path: /123456 Request Query: ?_ga=OBH5Xh8snfReg Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Action: block Source: ratelimit ASN Description: 3xK Tech GmbH Country: DE Method: GET Timestamp: 2026-04-28T15:44:20Z ruleId: 11a71ad4659e48b29b5173e3bcc61b4a. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 nowyouknow	2026-01-04 07:23:10 (5 months ago)	(From [email protected]) Hi, it’s Jayrn. If your site already uses — or is preparing to use — ... show more (From [email protected]) Hi, it’s Jayrn. If your site already uses — or is preparing to use — affiliate links, this will be relevant. One issue I see constantly is that monetization is treated as something you “add later,” instead of something that’s designed into the site from the beginning. That usually leads to: random placement of links unclear visitor intent unpredictable income It works, but never consistently. I put together a short explanation of why this happens and what changes once monetization is structured properly: https://marketersmentor.com/recurring-income-system.php?refer=cavallarochiro.com You’ll know quickly whether this applies to your situation. Jayrn PS: And one quick note so you’re not wondering why you’re hearing from me: I only reach out to website owners because they’re the ones actively building something online. I’m not blasting random emails. I’m simply sharing a resource that has been helping a lot of people create predictable online inco show less	Phishing Web Spam
🇦🇺 oncord	2025-12-29 16:14:23 (5 months ago)	Form spam	Web Spam
🇳🇱 homeshowdomain.nl	2025-11-26 23:01:48 (6 months ago)	Auto-ban: >3000 req/min op 2025-11-26	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2025-11-26 05:50:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:50:28.122194 2025] [security2:error] [pid 26497:tid 26497] [client 104.207.58.1:12275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kinareemagazine.com"] [uri "/.env"] [unique_id "aSaVJAECDzSMWKQNkSEHZAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:32:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:32:25.540700 2025] [security2:error] [pid 9748:tid 9748] [client 104.207.58.1:18399] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jspd.com"] [uri "/.git/HEAD"] [unique_id "aSZYqU2zsapRyykD6Zgj8wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:30:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:29:53.701004 2025] [security2:error] [pid 25960:tid 25960] [client 104.207.58.1:27453] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.recollected.net"] [uri "/.git/HEAD"] [unique_id "aST4gWxrhDnR19OzPxkyrwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-24 20:00:03 (6 months ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:39:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:38:54.517148 2025] [security2:error] [pid 29966:tid 29966] [client 104.207.58.1:48941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.beautyradio.com"] [uri "/.env"] [unique_id "aSQnrmrTTaC_vYmALqj2mgAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:12:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:12:04.611837 2025] [security2:error] [pid 12725:tid 12725] [client 104.207.58.1:40107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.gapanda.com"] [uri "/.svn/wc.db"] [unique_id "aSQhZN-0QKOHhFAE93z-rQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.122

🇧🇴 181.188.172.6

🇮🇳 128.185.201.142

🇹🇭 122.154.58.9

🇮🇩 103.31.39.72

🇺🇿 89.146.64.138

🇺🇸 3.128.91.165

🇰🇿 212.154.234.9

🇰🇷 203.123.219.137

🇺🇸 159.198.65.46

🇨🇦 85.217.149.62

🇦🇹 77.119.204.53

🇳🇱 77.83.39.154

🇺🇸 18.191.175.127

🇩🇪 213.209.159.158

🇬🇧 193.163.125.114

🇧🇷 192.145.210.18

🇧🇷 187.58.241.90

🇺🇸 162.216.150.12

🇭🇰 154.221.23.112