JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 58.67.159.164

58.67.159.164 was found in our database!

This IP was reported 83 times. Confidence of Abuse is 82%: ?

82%

ISP	World Crossing Telecom(GuangZhou) Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136200
Domain Name	cnnic.cn
Country	🇨🇳 China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 58.67.159.164

Whois 58.67.159.164

IP Abuse Reports for 58.67.159.164:

This IP address has been reported a total of 83 times from 18 distinct sources. 58.67.159.164 was first reported on April 16th 2026, and the most recent report was 38 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-06 18:32:29 (38 minutes ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 14:32:23.460568 2026] [security2:error] [pid 13383:tid 13383] [client 58.67.159.164:40598] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|psychicangelreader.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psychicangelreader.com"] [uri "/index.php"] [unique_id "aiRnt2LcLjArMkEABm9UMwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 08:50:32 (10 hours ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 04:50:24.611431 2026] [security2:error] [pid 4545:tid 4545] [client 58.67.159.164:40182] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|bordalo-es.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bordalo-es.com"] [uri "/index.php"] [unique_id "aiPfUCiigITS6ojNq9lmsgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-04 18:29:15 (2 days ago)	(mod_security) mod_security triggered on hostname [redacted])	SQL Injection
🇵🇱 sefinek.net	2026-06-04 17:06:22 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /mqz.php \| UA: Empty string • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 dynamix	2026-06-04 15:16:17 (2 days ago)	Multiple WAF Violations	Web App Attack
🇺🇸 mnsf	2026-06-04 15:05:45 (2 days ago)	Too many Status 50X (21)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 14:57:15 (2 days ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 10:57:09.404201 2026] [security2:error] [pid 10210:tid 10210] [client 58.67.159.164:33542] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|leeu100.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leeu100.com"] [uri "/index.php"] [unique_id "aiGSRe7Q9vXKvfjeYWjOyQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Site.eu	2026-06-04 08:03:40 (2 days ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-04 05:09:19 (2 days ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 01:09:13.831899 2026] [security2:error] [pid 32509:tid 32509] [client 58.67.159.164:33694] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|californiastarsfarm.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "californiastarsfarm.com"] [uri "/index.php"] [unique_id "aiEIeYwHGbrX_cdumI_1NAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-02 12:45:20 (4 days ago)	Multiple WAF Violations	Web App Attack
🇳🇱 Site.eu	2026-06-02 04:18:00 (4 days ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 TPI-Abuse	2026-06-01 17:46:13 (5 days ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 13:46:05.789007 2026] [security2:error] [pid 16796:tid 16838] [client 58.67.159.164:52862] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|psychclinicforchange.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "psychclinicforchange.com"] [uri "/index.php"] [unique_id "ah3FXVzsgS2Rrq-IYK2ZqAAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 mikekarl	2026-06-01 13:56:26 (5 days ago)	Empty or bad user-agent.	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-01 09:40:18 (5 days ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 05:40:11.835001 2026] [security2:error] [pid 23804:tid 23804] [client 58.67.159.164:45800] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|brianbrock.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brianbrock.com"] [uri "/index.php"] [unique_id "ah1Te4-R05JU9IVWHx2a1wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 08:55:32 (5 days ago)	(mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 58.67.159.164 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 04:55:24.108537 2026] [security2:error] [pid 9275:tid 9275] [client 58.67.159.164:40888] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|brexitop.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?s=index/\\x5cthink\\x5capp/invokefunction&function=call_user_func_array&vars%5B0%5D=think\\x5c__include_file&vars%5B1%5D%5B%5D=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brexitop.com"] [uri "/index.php"] [unique_id "ah1I_FtEAL5qKpMX6ewTZgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 83 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.79

🇱🇹 194.165.16.161

🇺🇸 165.154.173.204

🇭🇰 152.32.132.230

🇧🇳 119.160.166.237

🇮🇳 103.254.246.37

🇮🇩 103.195.31.156

🇮🇳 103.54.101.216

🇱🇹 81.30.98.144

🇧🇬 79.124.62.230

🇦🇪 46.245.238.18

🇮🇱 2.55.84.20

🇨🇳 220.250.52.89

🇮🇶 185.158.23.150

🇷🇺 185.15.189.232

🇧🇷 179.184.242.48

🇰🇼 178.61.86.206

🇺🇸 162.216.150.161

🇨🇦 161.216.56.242

🇺🇸 147.185.132.250