JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.23

104.207.58.23 was found in our database!

This IP was reported 72 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.23

Whois 104.207.58.23

IP Abuse Reports for 104.207.58.23:

This IP address has been reported a total of 72 times from 10 distinct sources. 104.207.58.23 was first reported on June 22nd 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-03-24 13:26:54 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-26.104.207.58.23.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-26.104.207.58.23.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇵🇱 sefinek.net	2026-02-01 18:43:46 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from DE. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-31 00:58:40 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-11-26 05:52:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:52:19.292618 2025] [security2:error] [pid 2650:tid 2669] [client 104.207.58.23:47099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.malia97.com"] [uri "/.env"] [unique_id "aSaVk6cpXMNW-93ob63M_gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:31:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:31:02.628313 2025] [security2:error] [pid 29824:tid 29824] [client 104.207.58.23:30811] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.chrismcc.com"] [uri "/.git/HEAD"] [unique_id "aSQl1l6hok64-Ao9Zn0u9gAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:54:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:54:43.658670 2025] [security2:error] [pid 21790:tid 21790] [client 104.207.58.23:17357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.eboredom.net"] [uri "/.env"] [unique_id "aSQdU60IqHDO7wuQ6xocdwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:32:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:31:43.317536 2025] [security2:error] [pid 22966:tid 22966] [client 104.207.58.23:15915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.alecmcatee.com"] [uri "/.env"] [unique_id "aSQJ33WjO_CcOyeamPfc5wAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:41:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:41:17.489362 2025] [security2:error] [pid 4084:tid 4084] [client 104.207.58.23:30117] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.happybookermusic.com"] [uri "/.svn/wc.db"] [unique_id "aSPv_cCjRgsjpsfBVhAhvwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-19 17:59:16 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.19 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-18 08:12:41 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.18 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-17 20:19:23 (7 months ago)	Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.17 is noted in report ti ... show more Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-07 12:51:04 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 23:56:36 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-04-05 22:47:02 (1 year ago)	(mod_security) mod_security (id:210740) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210740) triggered by 104.207.58.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 05 18:46:57.853942 2025] [security2:error] [pid 27339:tid 27339] [client 104.207.58.23:37705] [client 104.207.58.23] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|stationrestaurant.ca\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "stationrestaurant.ca"] [uri "/"] [unique_id "Z_Gy4QEHqcMlVTMaVp_0_QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-05 17:53:59 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 72 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 212.30.36.139

🇩🇪 212.30.36.105

🇻🇳 116.110.0.137

🇩🇪 212.30.36.125

🇩🇪 212.30.36.124

🇮🇳 128.185.197.178

🇰🇷 118.36.234.156

🇵🇰 72.255.33.233

🇫🇷 62.133.62.83

🇬🇧 35.203.210.76

🇺🇸 2607:f8b0:400e:c0c::122

🇪🇨 177.53.212.99

🇫🇷 149.202.60.80

🇩🇪 68.183.77.0

🇩🇪 64.89.163.163

🇱🇹 45.84.205.131

🇯🇵 43.167.239.66

🇹🇳 41.224.62.206

🇨🇳 27.213.131.10

🇩🇪 195.248.243.247