JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.212

104.207.58.212 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.212

Whois 104.207.58.212

IP Abuse Reports for 104.207.58.212:

This IP address has been reported a total of 129 times from 16 distinct sources. 104.207.58.212 was first reported on July 3rd 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 jjnxpct	2026-02-16 04:54:52 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.git/config (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .git/ found within REQUEST_FILENAME: /.git/config] show less	Hacking Web App Attack
🇺🇸 mnsf	2026-02-16 02:06:08 (3 months ago)	Too many Status 40X (12) Scanning/Probing (18)	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-15 23:00:00 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-15 06:39:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:39:48.644968 2026] [security2:error] [pid 22106:tid 22186] [client 104.207.58.212:62461] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oplconnect.com"] [uri "/app/.env"] [unique_id "aZFqNMhSZQInS4HdHIcSDgAAAZM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:46:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:46:14.994532 2026] [security2:error] [pid 27806:tid 27806] [client 104.207.58.212:56909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prodigypartners.com"] [uri "/.env"] [unique_id "aZFdpvBciFlyA-taZi7IpQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:28:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:28:30.032613 2026] [security2:error] [pid 30973:tid 30973] [client 104.207.58.212:37611] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sawmat.com"] [uri "/v2/.git/config"] [unique_id "aZFZfoEmEai_teqLH2_ODwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:06:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:06:29.227824 2026] [security2:error] [pid 31034:tid 31034] [client 104.207.58.212:17793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ocmtx.org"] [uri "/frontend/.env"] [unique_id "aZFUVUmRT7ls1OBTYDqzaAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 03:58:48 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:56:42 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:56:31.499679 2026] [security2:error] [pid 2831:tid 2831] [client 104.207.58.212:14757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "notariapenco.cl"] [uri "/.env"] [unique_id "aZFD70qcQzxw-10l1bEGFwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:04:13 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:04:09.154422 2026] [security2:error] [pid 19582:tid 19582] [client 104.207.58.212:52829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "niseigroup.com"] [uri "/.env.save"] [unique_id "aZE3qWleUzS3WxHmWAv0JQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:42:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:42:29.025261 2026] [security2:error] [pid 4694:tid 4694] [client 104.207.58.212:49267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "russellforcongress.com"] [uri "/api/.git/config"] [unique_id "aZEylZ8Im6x3HhK0vjTXHAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:46:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:46:32.854684 2026] [security2:error] [pid 19686:tid 19686] [client 104.207.58.212:49545] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "piperwaite.com"] [uri "/.env.save"] [unique_id "aZEleARAvxj8upuob9ijzgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 XICTRON	2026-02-15 01:45:12 (3 months ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇬🇧 consul.to	2026-02-15 01:12:12 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:08:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:08:39.989357 2026] [security2:error] [pid 28729:tid 28729] [client 104.207.58.212:34009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naturallyneworleans.com"] [uri "/.env.local"] [unique_id "aZEcl_hIvgukY51iXz4wRAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 129.146.121.103

🇨🇳 240e:108:4ac1:fffe::2

🇺🇬 196.0.242.54

🇳🇬 168.253.118.147

🇨🇳 101.126.129.179

🇨🇳 113.57.5.139

🇨🇳 112.93.137.151

🇮🇳 34.93.128.179

🇺🇸 208.87.242.185

🇺🇸 205.210.31.88

🇬🇧 193.104.222.145

🇺🇸 134.199.225.8

🇧🇩 103.154.158.70

🇺🇸 65.111.3.81

🇸🇦 51.211.218.132

🇬🇧 35.203.211.146

🇷🇴 2.57.122.177

🇩🇪 213.209.159.56

🇪🇬 195.246.57.4

🇳🇴 185.181.61.203