JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.5

104.207.58.5 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.5

Whois 104.207.58.5

IP Abuse Reports for 104.207.58.5:

This IP address has been reported a total of 99 times from 21 distinct sources. 104.207.58.5 was first reported on June 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-18 22:00:52 (2 weeks ago)	Auto-ban: >3000 req/min op 2026-05-18	Web App Attack SSH Hacking
🇺🇸 TPI-Abuse	2026-02-19 05:50:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:50:17.274678 2026] [security2:error] [pid 22353:tid 22353] [client 104.207.58.5:23603] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kurikka.eu"] [uri "/backend/.env"] [unique_id "aZakmYPBRX7M3qYc7AXQwgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-19 05:05:15 (3 months ago)	Scanning/Probing (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:45:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:45:47.914913 2026] [security2:error] [pid 8302:tid 8302] [client 104.207.58.5:14921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "karendraughon.com"] [uri "/.env.save"] [unique_id "aZZrSyp2-q0gZ2d7XIq4fwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:26:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:26:43.254271 2026] [security2:error] [pid 23169:tid 23169] [client 104.207.58.5:23305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kampinenlaw.com"] [uri "/site/.git/config"] [unique_id "aZZm0_Rr7TCAsyPmCoDBSgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:32:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:32:44.297222 2026] [security2:error] [pid 24797:tid 24797] [client 104.207.58.5:44429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thewarmachineguns.com"] [uri "/site/.git/config"] [unique_id "aZYFzPvuuHl3LEmw9kFtIwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:04:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.5 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:04:33.230273 2026] [security2:error] [pid 1185890:tid 1185890] [client 104.207.58.5:16711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watermarks.info"] [uri "/.env.save"] [unique_id "aZWq0bzGtYhxRA6CsiUcEgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-18 11:55:43 (3 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 mnsf	2026-01-17 01:05:14 (4 months ago)	Request Overload (144)	Brute-Force Web App Attack
🇺🇸 fortypoundhead	2025-12-18 20:12:20 (5 months ago)	SQL Injection Attempt	SQL Injection Web App Attack
Anonymous	2025-10-26 18:58:46 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-25 01:29:01 (7 months ago)	wordpress-trap	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2025-10-22 08:15:41 (7 months ago)	WP Login Scan Activities	Web App Attack
Anonymous	2025-10-21 08:38:35 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-19 21:26:25 (7 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇶🇦 2600:1900:4260:40e::126

🇻🇳 2405:4802:9175:b70:e1ae:907e:708:bfd7

🇩🇪 213.209.159.226

🇬🇧 193.32.209.238

🇮🇳 182.95.223.142

🇸🇦 154.205.134.214

🇨🇳 122.96.28.60

🇺🇸 20.163.33.220

🇬🇧 185.247.137.56

🇺🇸 159.223.131.0

🇦🇫 149.54.62.210

🇫🇮 147.185.133.156

🇨🇳 116.207.114.203

🇺🇸 45.79.8.221

🇯🇵 43.130.248.11

🇨🇳 220.162.198.142

🇺🇸 209.222.98.2

🇧🇷 200.101.139.194

🇺🇸 192.155.81.124

🇨🇭 179.43.146.227