JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.235

104.207.58.235 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.235

Whois 104.207.58.235

IP Abuse Reports for 104.207.58.235:

This IP address has been reported a total of 145 times from 21 distinct sources. 104.207.58.235 was first reported on June 6th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-02-15 12:50:09 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 mnsf	2026-02-15 06:06:45 (3 months ago)	Too many Status 40X (11) Scanning/Probing (12)	Brute-Force Web App Attack
🇪🇸 masterguru	2026-02-15 05:33:40 (3 months ago)	Restricted File Access Attempt. Matched phrase "/.env" at REQUEST_FILENAME. (930130-122)	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:27:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:27:43.689999 2026] [security2:error] [pid 27170:tid 27170] [client 104.207.58.235:60039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "suretrap.com"] [uri "/.env"] [unique_id "aZFZTxFYQXqAB-gsiyjqlwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-15 05:00:16 (3 months ago)	http-sensitive-files - IP: 104.207.58.235 - time="2026-02-15T06:00:16+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 104.207.58.235 - time="2026-02-15T06:00:16+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.58.235 (TH/200373) : 4h ban on Ip 104.207.58.235" module=db show less	Web App Attack
Anonymous	2026-02-15 04:31:16 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 04:11:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:11:26.477587 2026] [security2:error] [pid 21205:tid 21205] [client 104.207.58.235:53427] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stormstrips.info"] [uri "/app/.git/config"] [unique_id "aZFHbq9TlzuqUGnNd-fOrgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:41:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:41:00.862960 2026] [security2:error] [pid 20623:tid 20623] [client 104.207.58.235:54923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stellwagenmusic.com"] [uri "/v2/.git/config"] [unique_id "aZFATF9c4fB1XoSWSnIQwwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:37:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:37:15.803249 2026] [security2:error] [pid 16629:tid 16633] [client 104.207.58.235:14465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n30ew.com"] [uri "/.git/config"] [unique_id "aZExW40dBptQCLod9Kq9ZwAAAMI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:22:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:22:04.266412 2026] [security2:error] [pid 2648:tid 2648] [client 104.207.58.235:60013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "speedgo.mx"] [uri "/backup/.git/config"] [unique_id "aZEtzC6HwaACFv4lWM-vvwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:45:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:45:15.500595 2026] [security2:error] [pid 5660:tid 5660] [client 104.207.58.235:48833] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mp3tracks.com"] [uri "/.git/config"] [unique_id "aZEXG3iDotwnfcGdOtjviQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:24:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:24:12.004743 2026] [security2:error] [pid 14210:tid 14210] [client 104.207.58.235:26797] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "loveoflearning.com"] [uri "/.env"] [unique_id "aZESLGD2k1RDr0YXN1tooQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:06:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:06:46.861360 2026] [security2:error] [pid 25185:tid 25185] [client 104.207.58.235:36597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lopansri.com"] [uri "/backend/.env"] [unique_id "aZEOFkj5tuj8-dysg9y3RQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:48:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:48:11.074696 2026] [security2:error] [pid 15833:tid 15833] [client 104.207.58.235:27407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "loftonboys.com"] [uri "/.git/config"] [unique_id "aZEJu7UaNX5-vjLNGrahJwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:21:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:21:22.236122 2026] [security2:error] [pid 30527:tid 30527] [client 104.207.58.235:35813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "livinghomegrown.com"] [uri "/config/.env"] [unique_id "aZEDcvgZHiYu1-di0WNurgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.251.17.223

🇹🇳 197.14.235.211

🇺🇸 192.155.90.147

🇲🇩 176.123.2.115

🇨🇳 120.48.90.166

🇸🇬 47.84.139.62

🇳🇱 45.153.34.186

🇺🇸 34.23.43.214

🇬🇧 20.254.210.195

🇺🇸 18.221.179.104

🇺🇸 216.24.210.240

🇺🇸 198.46.154.22

🇫🇷 185.177.72.70

🇺🇸 172.237.136.213

🇺🇸 165.227.65.239

🇺🇸 151.245.166.94

🇺🇸 147.182.167.109

🇺🇸 136.116.238.162

🇯🇵 136.110.69.81

🇨🇳 121.61.197.67