JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.205

104.207.58.205 was found in our database!

This IP was reported 122 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.205

Whois 104.207.58.205

IP Abuse Reports for 104.207.58.205:

This IP address has been reported a total of 122 times from 15 distinct sources. 104.207.58.205 was first reported on May 13th 2024, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-05-31 01:06:41 (6 days ago)	Wordpress login attempts	Brute-Force
🇲🇹 Malta	2026-05-29 18:15:45 (1 week ago)	104.207.58.205 - - [29/May/2026:20:15:44 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 104.207.58.205 - - [29/May/2026:20:15:44 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇫🇮 Shaik Sai Meera	2025-11-25 19:15:26 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 04:25:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:25:36.375556 2025] [security2:error] [pid 1785:tid 1785] [client 104.207.58.205:57301] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.luxurymicrobikini.com"] [uri "/.env"] [unique_id "aSUvwCKLL4niIqwxZvPCFwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:07:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:07:10.158237 2025] [security2:error] [pid 15066:tid 15066] [client 104.207.58.205:35061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.artsy-style.com"] [uri "/.svn/wc.db"] [unique_id "aSUdXqe9W-6RSrfky4WpSgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:26:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:26:09.939749 2025] [security2:error] [pid 17933:tid 17933] [client 104.207.58.205:44155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.collectivedzgn.com"] [uri "/.svn/wc.db"] [unique_id "aST3oVX2RYnazgW_WULT9gAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:21:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:21:32.678531 2025] [security2:error] [pid 3910:tid 3910] [client 104.207.58.205:54221] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artglass-jerusalem.net"] [uri "/.env"] [unique_id "aSQHfJ46k_UXmfzpe_yl0AAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:02:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:02:05.026293 2025] [security2:error] [pid 22282:tid 22282] [client 104.207.58.205:52627] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.oxygenfarm.com"] [uri "/.svn/wc.db"] [unique_id "aSP03TXmwoTr1Z4Ieq8-4wAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:33:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.205 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:33:09.836514 2025] [security2:error] [pid 23722:tid 23722] [client 104.207.58.205:29181] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "1954topresent.com"] [uri "/.svn/wc.db"] [unique_id "aSPR9TBL9wcV0cgaR1WBagAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇹 neo72	2025-10-25 10:19:55 (7 months ago)	Wordpress Attack	Web App Attack
🇩🇪 ps-center	2025-10-18 12:31:41 (7 months ago)	MYH: Web Attack POST /wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2025-10-17 18:53:18 (7 months ago)	Failed Wordpress login	Hacking Brute-Force Web App Attack
Anonymous	2025-04-07 06:52:50 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 22:51:21 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 21:26:26 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 122 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.135

🇳🇱 138.124.67.103

🇺🇸 104.194.9.81

🇷🇴 92.118.39.236

🇺🇸 72.253.251.7

🇳🇱 45.148.10.121

🇷🇴 2.57.121.112

🇧🇷 2a02:4780:13:902:0:1d32:4d09:1

🇹🇷 212.87.199.64

🇭🇰 199.45.155.90

🇺🇸 192.3.64.210

🇺🇸 159.89.95.236

🇬🇧 134.122.96.10

🇮🇳 117.99.5.125

🇩🇪 82.165.184.35

🇰🇷 49.254.50.11

🇧🇩 45.120.115.150

🇬🇧 35.203.211.47

🇮🇳 14.96.106.175

🇺🇸 12.68.228.244