JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.241

104.207.58.241 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.241

Whois 104.207.58.241

IP Abuse Reports for 104.207.58.241:

This IP address has been reported a total of 145 times from 20 distinct sources. 104.207.58.241 was first reported on June 12th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-05-15 00:16:52 (3 weeks ago)	ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.58.241 ... show more ThreatBook Intelligence: http_proxy,Gateway more details on https://threatbook.io/ip/104.207.58.241 2026-05-14 16:01:13 /api/0/organizations/ show less	Web App Attack
🇧🇷 hostseries	2025-12-24 05:52:12 (5 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇳🇱 GabrielJST	2025-12-22 01:52:36 (5 months ago)	Port Scan detected from 104.207.58.241 (TH/Thailand/-).	Port Scan
🇺🇸 TPI-Abuse	2025-11-26 12:10:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:10:09.855319 2025] [security2:error] [pid 27004:tid 27004] [client 104.207.58.241:57109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.wisdomworkforceoptimization.com"] [uri "/.git/HEAD"] [unique_id "aSbuITT_S758SBYahmqRQgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 11:25:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:25:28.360025 2025] [security2:error] [pid 2792516:tid 2792516] [client 104.207.58.241:39915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.franchiseconsultants.org"] [uri "/.git/HEAD"] [unique_id "aSbjqFoXKNvfbe6EHxyNmAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:01:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:01:05.947810 2025] [security2:error] [pid 13114:tid 13221] [client 104.207.58.241:30279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.wheezer.org"] [uri "/.git/HEAD"] [unique_id "aSaXoUBb733MoacrZ7_kNAAAAdY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:35:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:35:36.539256 2025] [security2:error] [pid 9287:tid 9287] [client 104.207.58.241:13463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portfolio.rnance.com"] [uri "/.git/HEAD"] [unique_id "aSaRqMf49cetTKyYqwRnUgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:09:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:09:25.456718 2025] [security2:error] [pid 20180:tid 20180] [client 104.207.58.241:15435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.tobyscott.com"] [uri "/.svn/wc.db"] [unique_id "aSZvZcbqNEhcCS3YG6NiXgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:11:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:11:14.388566 2025] [security2:error] [pid 26429:tid 26429] [client 104.207.58.241:49551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.artbycorinnedodge.com"] [uri "/.env"] [unique_id "aSZhwjA6gj9VgnNJZcU80AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:56:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:56:14.109485 2025] [security2:error] [pid 9895:tid 9895] [client 104.207.58.241:55323] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dildog.ingberinteriors.com"] [uri "/.git/HEAD"] [unique_id "aSZQLiB3cJkYNDEqxl23ZwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-25 12:53:53 (6 months ago)	(From [email protected]) Want to see how simple email sequences can create a steady stream of ... show more (From [email protected]) Want to see how simple email sequences can create a steady stream of income? Check https://rb.gy/uxe0l2 show less	Phishing Web Spam
🇦🇺 oncord	2025-11-25 11:48:56 (6 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-25 06:37:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:37:35.609982 2025] [security2:error] [pid 20752:tid 20752] [client 104.207.58.241:15499] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "evelia.com"] [uri "/.env"] [unique_id "aSVOr0yYu0Gla8pgZx-CAQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 i-turnradio.nl	2025-11-24 18:08:19 (6 months ago)	2025-11-24 @ 19:08:18 (CET) ~ Blocked for trying to access: /.aws/credentials	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:41:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.241 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:41:24.154569 2025] [security2:error] [pid 13202:tid 13202] [client 104.207.58.241:10013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.kentculotta.com"] [uri "/.env"] [unique_id "aSQaNKnHz3H5EYdJgurUfwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 190.92.199.123

🇺🇸 91.230.168.250

🇳🇱 34.32.236.247

🇩🇪 31.57.76.197

🇺🇸 17.132.66.137

🇨🇳 218.4.148.45

🇨🇭 209.99.190.113

🇧🇪 198.235.24.192

🇷🇺 178.178.222.62

🇲🇽 149.232.139.13

🇸🇬 119.8.186.139

🇧🇩 103.177.150.156

🇫🇮 103.101.88.82

🇺🇸 72.63.18.22

🇩🇪 43.228.157.203

🇩🇪 34.179.134.102

🇺🇸 34.61.139.41

🇺🇸 20.171.8.157

🇺🇸 17.132.66.131

🇨🇳 14.103.84.145