JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.245

104.207.58.245 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.245

Whois 104.207.58.245

IP Abuse Reports for 104.207.58.245:

This IP address has been reported a total of 135 times from 19 distinct sources. 104.207.58.245 was first reported on June 5th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 03:48:36 (6 hours ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:12:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:12:42.485594 2025] [security2:error] [pid 3165:tid 3165] [client 104.207.58.245:56759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.36hoursonly.vittariadesign.com"] [uri "/.svn/wc.db"] [unique_id "aSQhik5hM8PldqrvXJXRvwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:43:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:43:38.658533 2025] [security2:error] [pid 3118:tid 3118] [client 104.207.58.245:22481] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.ahijado.org"] [uri "/.git/HEAD"] [unique_id "aSP-moZV2ENWOoR4mEPPJAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:45:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:45:08.449410 2025] [security2:error] [pid 8507:tid 8507] [client 104.207.58.245:58667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.twentytwocreative.net"] [uri "/.git/HEAD"] [unique_id "aSPw5IvoIJr7oNCtNP0Z3AAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:38:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:38:15.660258 2025] [security2:error] [pid 31249:tid 31249] [client 104.207.58.245:52807] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.j3pr.com"] [uri "/.git/HEAD"] [unique_id "aSPhN_XipuuJkSl37ZfIhgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:11:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:11:03.421600 2025] [security2:error] [pid 7824:tid 7824] [client 104.207.58.245:42367] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.dogdimension.com"] [uri "/.env"] [unique_id "aSPa15bSSwetLtF0A9RGKgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-17 22:44:09 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 17 17:44:01.835976 2025] [security2:error] [pid 30332:tid 30332] [client 104.207.58.245:52887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.notariaarauco.cl"] [uri "/.env"] [unique_id "aRulMaYONXjxP6GpjCVwvQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-01 22:18:39 (7 months ago)	[redacted] 104.207.58.245 - - [01/Nov/2025:23:18:26 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" " ... show more [redacted] 104.207.58.245 - - [01/Nov/2025:23:18:26 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15" [redacted] 104.207.58.245 - - [01/Nov/2025:23:18:27 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 7.1.1; Moto G Play) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.64 Mobile Safari/537.36" [redacted] 104.207.58.245 - - [01/Nov/2025:23:18:29 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (Linux; Android 5.1.1; SAMSUNG SM-J120M Build/LMY47X) AppleWebKit/537.36 (KHTML, like Gecko) SamsungBrowser/6.4 Chrome/56.0.2924.87 Mobile Safari/537.36" [redacted] 104.207.58.245 - - [01/Nov/2025:23:18:30 +0100] "POST /xmlrpc.php HTTP/2.0" 200 401 "-" "Mozilla/5.0 (iPad; CPU OS 9_3_5 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Mobile/13G36" joerg-shimon-s ... show less	Hacking Web App Attack
🇸🇪 vaia.cloud	2025-11-01 07:26:02 (7 months ago)	trying wp-login.php/xmlrpc.php 40 times in 1 minutes	Brute-Force Web App Attack
Anonymous	2025-10-30 14:06:02 (7 months ago)	WordPress Brute Force	Brute-Force
🇦🇺 AWW-Admin	2025-10-29 13:57:10 (7 months ago)	(wordpress) Failed wordpress login from 104.207.58.245 (TH/Thailand/-)	Brute-Force
Anonymous	2025-04-06 22:03:19 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 13:14:30 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 15:39:59 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 22:54:44 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2400:cb00:509:1000:ef7e:262a:35a1:dc17

🇫🇷 136.244.118.129

🇩🇪 85.214.180.225

🇸🇦 188.53.60.207

🇫🇮 178.20.210.208

🇻🇳 171.234.9.189

🇹🇼 111.70.34.159

🇳🇬 102.141.212.80

🇿🇦 102.33.32.103

🇺🇸 54.144.189.179

🇷🇴 141.98.83.240

🇺🇸 107.167.34.125

🇰🇪 102.210.148.92

🇩🇪 93.185.156.121

🇳🇱 91.92.40.49

🇫🇷 85.217.140.31

🇳🇱 45.148.10.240

🇷🇺 31.173.0.140

🇨🇳 27.8.172.202

🇵🇰 203.215.165.237