JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.67

104.207.58.67 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.67

Whois 104.207.58.67

IP Abuse Reports for 104.207.58.67:

This IP address has been reported a total of 138 times from 19 distinct sources. 104.207.58.67 was first reported on June 11th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-05-18 00:14:30 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 nowyouknow	2026-05-05 17:12:44 (1 month ago)	(From [email protected]) Dear Sir/Madam Submit crosbychiropracticcenter ... show more (From [email protected]) Dear Sir/Madam Submit crosbychiropracticcenter.com in GoogleSearchIndex to be visible in online search results! Submit crosbychiropracticcenter.com now: https://searchregister.info show less	Phishing Web Spam
🇪🇸 masterguru	2026-04-06 13:56:05 (1 month ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (5000900-122)	Web App Attack
🇺🇸 TPI-Abuse	2026-01-13 12:00:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 07:00:29.095105 2026] [security2:error] [pid 3555413:tid 3555561] [client 104.207.58.67:42433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "silvestricarpet.com"] [uri "/.git/HEAD"] [unique_id "aWYz3XGLHG7j8P1vEJLmcgAAAlY"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2025-11-28 09:02:25 (6 months ago)	(modsecurity) srv201 ModSecurity 104.207.58.67 (TH/Thailand/-): 5 in the last 3600 secs; Ports: ; D ... show more (modsecurity) srv201 ModSecurity 104.207.58.67 (TH/Thailand/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:45:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:45:40.917802 2025] [security2:error] [pid 16934:tid 16976] [client 104.207.58.67:53479] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.brahl.com"] [uri "/.git/HEAD"] [unique_id "aSbaVBKESCEx-WKRVnuHNQAAAYw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 07:07:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:07:41.883706 2025] [security2:error] [pid 18471:tid 18471] [client 104.207.58.67:44455] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.thedarkisle.com"] [uri "/.svn/wc.db"] [unique_id "aSanPQUhvthiyDU7z5jgwwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:08:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:08:02.979629 2025] [security2:error] [pid 19166:tid 19166] [client 104.207.58.67:15441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jcbergapparel.com"] [uri "/.svn/wc.db"] [unique_id "aSZS8iJbI9hCJ4fhd9YzXwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:47:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:47:43.621221 2025] [security2:error] [pid 25145:tid 25145] [client 104.207.58.67:16685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.waking.com"] [uri "/.svn/wc.db"] [unique_id "aSUYz84U7P5RTfA2uPL67QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:27:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:27:31.063057 2025] [security2:error] [pid 22335:tid 22335] [client 104.207.58.67:34515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jockoenterprises.com"] [uri "/.env"] [unique_id "aSQlA1cUEPoRMt5oWORNOwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:43:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:43:09.370409 2025] [security2:error] [pid 27440:tid 27491] [client 104.207.58.67:50463] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.andrewbelschner.com"] [uri "/.svn/wc.db"] [unique_id "aSQanYVnpR6hReuk6mpoSQAAAQc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-11 13:27:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 11 08:27:03.676415 2025] [security2:error] [pid 20130:tid 20130] [client 104.207.58.67:39011] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.innerstreammedia.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRM5p292WQuygLU9CGsGagAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-10 00:28:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 19:28:39.675839 2025] [security2:error] [pid 24250:tid 24250] [client 104.207.58.67:20433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.guavaroad.com"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRExt_Db7A8SS4tGWbZ-cwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-08 17:57:51 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.207.58.67 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 08 12:57:46.930241 2025] [security2:error] [pid 16920:tid 16920] [client 104.207.58.67:58159] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.xtcdesigns.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.xtcdesigns.com"] [uri "/s3cmd.ini"] [unique_id "aQ-Emt_u7W4PgkEMR1SrrQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2025-10-24 21:31:42 (7 months ago)	C1-W: TCP-Scanner. Port: 22	Port Scan

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.81

🇨🇳 183.198.98.13

🇺🇸 147.185.132.81

🇺🇸 72.10.32.138

🇻🇳 27.79.2.165

🇹🇭 203.170.150.178

🇩🇪 130.12.181.99

🇮🇳 124.253.92.163

🇺🇸 67.21.32.58

🇺🇸 34.24.131.86

🇩🇴 181.224.206.155

🇺🇸 147.185.132.152

🇩🇪 130.12.181.108

🇨🇳 120.85.114.214

🇮🇩 115.85.80.12

🇬🇭 102.223.92.101

🇫🇷 91.196.152.183

🇫🇷 91.196.152.177

🇦🇷 38.180.185.114

🇸🇪 9.223.176.221