JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.62.58

104.207.62.58 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.62.58

Whois 104.207.62.58

IP Abuse Reports for 104.207.62.58:

This IP address has been reported a total of 125 times from 15 distinct sources. 104.207.62.58 was first reported on June 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-23 06:53:39 (2 weeks ago)	wordpress authentication brute force	Brute-Force Web App Attack
🇬🇧 Apache	2026-04-08 22:26:27 (1 month ago)	(mod_security) mod_security (id:210410) triggered by 104.207.62.58 (FR/France/-): 5 in the last 300 ... show more (mod_security) mod_security (id:210410) triggered by 104.207.62.58 (FR/France/-): 5 in the last 300 secs show less	Brute-Force Web App Attack
🇧🇪 cmbplf	2026-03-29 18:58:40 (2 months ago)	5.614 requests with url.path */xmlrpc.php	Brute-Force Bad Web Bot
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (3 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇨🇦 SSH-Admin	2025-12-27 13:45:08 (5 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 11:34:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 06:34:06.994954 2025] [security2:error] [pid 16233:tid 16233] [client 104.207.62.58:55061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerbypage.com"] [uri "/.git/HEAD"] [unique_id "aTlarj_yYuVtczew7-qfvAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-08 00:10:07 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-07 13:42:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:42:51.394485 2025] [security2:error] [pid 15988:tid 15988] [client 104.207.62.58:34941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jazziiafoundation.org"] [uri "/.git/HEAD"] [unique_id "aTWEWz0OAcPeD5Vr0vNpVAAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-12-07 04:54:22 (5 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 13:13:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 08:13:47.787342 2025] [security2:error] [pid 5248:tid 5248] [client 104.207.62.58:12695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gadgeteer.net"] [uri "/.svn/wc.db"] [unique_id "aTQsC8VLhlb95AhiZgwM4AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-12-06 01:55:07 (6 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.62.58 (FR/France/-): 1 in t ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.62.58 (FR/France/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:34:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:34:17.301973 2025] [security2:error] [pid 10657:tid 10657] [client 104.207.62.58:35087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naturalhomebuilders.com"] [uri "/.svn/wc.db"] [unique_id "aTLDObPYxf5_pGtL1FVqlAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:20:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:20:25.511419 2025] [security2:error] [pid 3193:tid 3193] [client 104.207.62.58:20769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paul4taxes.com"] [uri "/.git/HEAD"] [unique_id "aTKx6Yd0kF3m64H4l3eIygAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:47:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:47:04.806694 2025] [security2:error] [pid 1954:tid 1973] [client 104.207.62.58:42591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "windowtailors.com"] [uri "/.git/HEAD"] [unique_id "aTJHqPR1xlfgKkp0nutMmAAAAE8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:16:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.62.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:16:09.206178 2025] [security2:error] [pid 14610:tid 14610] [client 104.207.62.58:14239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.millergrain.com"] [uri "/.env"] [unique_id "aSP4KZeUJCO3XGYXSJgVTgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 163.7.6.41

🇯🇵 160.251.197.41

🇬🇧 35.203.211.38

🇦🇪 20.203.42.204

🇱🇹 81.30.98.49

🇺🇸 72.18.83.212

🇭🇰 152.32.171.213

🇺🇸 147.185.132.227

🇻🇳 116.110.159.36

🇺🇸 113.20.0.58

🇺🇸 100.29.192.117

🇳🇱 45.87.249.200

🇺🇸 18.218.59.105

🇻🇪 190.153.101.153

🇩🇪 167.94.146.43

🇭🇰 144.48.241.162

🇨🇳 111.9.22.102

🇩🇪 89.106.74.106

🇳🇱 45.148.10.183

🇬🇧 35.203.211.108