JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.73

104.207.58.73 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.73

Whois 104.207.58.73

IP Abuse Reports for 104.207.58.73:

This IP address has been reported a total of 151 times from 18 distinct sources. 104.207.58.73 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-18 00:49:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 17 19:49:04.562469 2026] [security2:error] [pid 7079:tid 7079] [client 104.207.58.73:17169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paulburns.com"] [uri "/site/.git/config"] [unique_id "aZUMgHCw_VDOjHmyUIgGgwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 20:19:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 15:19:21.529630 2026] [security2:error] [pid 11307:tid 11307] [client 104.207.58.73:22289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "archmediaptyltd.com"] [uri "/config/.env"] [unique_id "aYzkSY0xrlDkFHaEOm-zvAAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-10 23:35:02 (3 months ago)	suspicious request in access.log	Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:00:31 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇩🇪 big-cloud.nl	2026-02-10 22:28:55 (3 months ago)	Try to access /admin/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:25:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:24:59.636157 2026] [security2:error] [pid 1667305:tid 1667305] [client 104.207.58.73:38565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "knowbuddy.org"] [uri "/backend/.env"] [unique_id "aYrBK0ZvbkfAQru2GXxUHgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:39:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:39:51.587718 2026] [security2:error] [pid 3775:tid 3775] [client 104.207.58.73:40157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idahostem.org"] [uri "/admin/.git/config"] [unique_id "aYq2l9LkmmjfOtWt0Z-SAgAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:16:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:16:06.274977 2026] [security2:error] [pid 1671:tid 1671] [client 104.207.58.73:62779] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magicflon.com"] [uri "/api/.env"] [unique_id "aYqxBh2Ham8cjtVA45wR7AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:25:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:25:19.992993 2026] [security2:error] [pid 17689:tid 17689] [client 104.207.58.73:40625] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "khaoula.com"] [uri "/.env.production"] [unique_id "aYqI_xK0zufL1f4qCgKNVgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-10 00:36:04 (3 months ago)	Blocking for trying to access an exploit file: /v2/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-10 00:05:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:05:36.235443 2026] [security2:error] [pid 1635517:tid 1635517] [client 104.207.58.73:26523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentuckyminiaturehorsebreeders.org"] [uri "/.env.save"] [unique_id "aYp2UN7bMks5VQv_wI06gQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:47:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.73 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:47:30.816923 2026] [security2:error] [pid 9939:tid 9939] [client 104.207.58.73:24875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "houstontenemosunproblema.com"] [uri "/.env.save"] [unique_id "aYpkAoR0wtR8Rv98kDjCogAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-01-31 05:07:11 (4 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇮🇹 VHosting	2026-01-30 02:30:11 (4 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:47:04 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 103.126.86.195

🇩🇪 69.5.169.191

🇦🇹 185.69.245.174

🇷🇺 178.178.222.55

🇺🇸 147.185.132.19

🇺🇸 147.185.132.18

🇰🇷 121.154.247.33

🇨🇳 119.96.193.72

🇧🇩 103.16.226.176

🇭🇰 45.78.22.106

🇺🇸 204.220.180.62

🇨🇳 183.221.0.223

🇨🇴 181.61.251.4

🇺🇸 165.154.173.20

🇮🇳 103.54.101.248

🇭🇰 101.36.106.78

🇺🇸 100.29.192.34

🇺🇸 72.211.142.41

🇸🇬 52.187.36.104

🇳🇱 45.148.10.141