JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.119

104.207.58.119 was found in our database!

This IP was reported 158 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.119

Whois 104.207.58.119

IP Abuse Reports for 104.207.58.119:

This IP address has been reported a total of 158 times from 25 distinct sources. 104.207.58.119 was first reported on June 6th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 ELYAZ	2026-06-10 04:42:34 (2 weeks ago)	(y4) Failed scan -byebye- from 104.207.58.119 (TH/Thailand/-): (CF_ENABLE)	Hacking
Anonymous	2026-06-09 19:16:22 (2 weeks ago)	Web attack blocked by Wordfence on limburgsekunstkring.nl (1 hit). Reported by CRMON.	Web App Attack
🇬🇧 openstrike.co.uk	2026-02-16 06:13:05 (4 months ago)	23 attacks on VC URLs, password grabbing URLs, env grabbing URLs: GET /new/.git/config HTTP/1.1 GET ... show more 23 attacks on VC URLs, password grabbing URLs, env grabbing URLs: GET /new/.git/config HTTP/1.1 GET /.aws/credentials HTTP/1.1 GET /config/.env HTTP/1.1 show less	Hacking
🇺🇸 mnsf	2026-02-16 03:05:22 (4 months ago)	Scanning/Probing (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:56:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:56:34.745181 2026] [security2:error] [pid 13784:tid 13784] [client 104.207.58.119:34735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serpentstudios.com"] [uri "/.git/config"] [unique_id "aZG0cs7ZerZzluj2VmxLMAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:33:04 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:33:00.373878 2026] [security2:error] [pid 1118653:tid 1118653] [client 104.207.58.119:44407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "p-co.com"] [uri "/config/.env"] [unique_id "aZGu7DNUlErS5Aq61ZV7mgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:59:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:59:08.355266 2026] [security2:error] [pid 11847:tid 11847] [client 104.207.58.119:32905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seethrume.com"] [uri "/admin/.env"] [unique_id "aZGm_PcIVRuBXFUKkNIW7QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:41:07 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:41:02.762228 2026] [security2:error] [pid 22104:tid 22122] [client 104.207.58.119:28129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oplconnect.com"] [uri "/new/.git/config"] [unique_id "aZFqfpdbqspsQW1awXBDPwAAAUs"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 05:58:47 (4 months ago)	Try to access /admin/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:27:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:27:44.422663 2026] [security2:error] [pid 9049:tid 9049] [client 104.207.58.119:11805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohiobabe.com"] [uri "/app/.env"] [unique_id "aZFZUHi6lgLSLVqkcxOGAQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:21:59 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:21:55.028248 2026] [security2:error] [pid 27983:tid 27983] [client 104.207.58.119:60417] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "san-marino-boat-registration.com"] [uri "/.env.staging"] [unique_id "aZFJ42hMFO1c6YJ8Swr0UQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:59:21 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:59:14.055751 2026] [security2:error] [pid 277752:tid 277752] [client 104.207.58.119:44923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nothotmail.org"] [uri "/.env.save"] [unique_id "aZFEktxwFma9jOl_h8kXKAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:15:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:15:26.139384 2026] [security2:error] [pid 13141:tid 13141] [client 104.207.58.119:22861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "politicallycorrecteconomics.com"] [uri "/frontend/.env"] [unique_id "aZE6TgQm39NDir2zkMjAwgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:45:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:45:43.871072 2026] [security2:error] [pid 18834:tid 18834] [client 104.207.58.119:62089] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nickersoncarpentry.com"] [uri "/.env.save"] [unique_id "aZEzV3dqZz7fSfUkAjww4wAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:20:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.119 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:20:27.927557 2026] [security2:error] [pid 184122:tid 184222] [client 104.207.58.119:23305] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newtrendmag.org"] [uri "/.env.production"] [unique_id "aZEtaxZxbpqQBAmMeBFrxAAAAgs"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 158 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 111.70.49.179

🇩🇪 31.17.32.64

🇮🇳 210.79.148.208

🇺🇸 208.109.189.255

🇩🇪 185.159.123.146

🇩🇪 167.94.146.43

🇦🇺 157.22.103.188

🇲🇾 49.125.203.166

🇳🇱 45.148.10.152

🇺🇸 44.212.107.92

🇺🇸 20.163.15.107

🇧🇷 187.12.48.70

🇩🇪 185.30.32.214

🇬🇧 165.220.169.113

🇫🇷 144.91.116.179

🇺🇸 66.132.195.78

🇺🇸 44.173.212.201

🇸🇳 41.82.50.218

🇺🇸 38.99.70.2

🇬🇧 35.203.211.123