JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.48

104.207.58.48 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.48

Whois 104.207.58.48

IP Abuse Reports for 104.207.58.48:

This IP address has been reported a total of 134 times from 17 distinct sources. 104.207.58.48 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-03-27 23:02:17 (2 months ago)	Auto-ban: >3000 req/min op 2026-03-27	Web App Attack SSH Hacking
🇳🇱 e.fierstra	2026-03-27 00:45:18 (2 months ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack
🇫🇷 vtchost.com	2026-03-10 23:32:57 (2 months ago)	invalid/bad user agent - possible botnet ...	Bad Web Bot
Anonymous	2026-02-15 13:18:46 (3 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:26:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:26:27.229091 2026] [security2:error] [pid 31581:tid 31581] [client 104.207.58.48:31703] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "parkhan.com"] [uri "/dev/.git/config"] [unique_id "aZG7c1DQwZ9mQbkwn9Rr8AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 11:56:40 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:44:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:44:29.658039 2026] [security2:error] [pid 25869:tid 25869] [client 104.207.58.48:18127] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qcyprus.com"] [uri "/api/.env"] [unique_id "aZGxncOl2mLIupmnz_5OqQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:26:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:26:09.574993 2026] [security2:error] [pid 20453:tid 20453] [client 104.207.58.48:17563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oxford-gliding-club.co.uk"] [uri "/.env.staging"] [unique_id "aZGtUTzybs8WCYPsJ-BG0gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:58:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:58:30.381507 2026] [security2:error] [pid 1807:tid 1807] [client 104.207.58.48:14057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ospectra.com"] [uri "/api/.env"] [unique_id "aZGm1h0Hrf0-f-fxBOxUtQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 10:58:23 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.58.48 (TH/Thailand/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.58.48 (TH/Thailand/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:17:46 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:17:42.143522 2026] [security2:error] [pid 18182:tid 18182] [client 104.207.58.48:20405] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "promoadvocate.com"] [uri "/.env.local"] [unique_id "aZFlBs3lZXhxW8mdZ4qXLQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:02:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:02:31.158247 2026] [security2:error] [pid 10241:tid 10241] [client 104.207.58.48:19253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ondakompun.com"] [uri "/frontend/.env"] [unique_id "aZFhdzP9qgW-7RAYff9wxQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-02-15 05:58:34 (3 months ago)	Accessed trap at '/.env'	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:32:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:32:17.515389 2026] [security2:error] [pid 15080:tid 15080] [client 104.207.58.48:58643] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sb-adventures.com"] [uri "/v2/.git/config"] [unique_id "aZFaYcEZNOcgM1Go4u-AKwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:00:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:00:13.554358 2026] [security2:error] [pid 30987:tid 30987] [client 104.207.58.48:58361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "saratogaequity.com"] [uri "/api/.env"] [unique_id "aZFS3UqoHhFGPk644wGnnQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.12.150.45

🇺🇸 91.230.168.255

🇫🇷 86.217.21.47

🇻🇳 222.252.21.159

🇭🇰 165.154.6.144

🇺🇸 91.230.168.23

🇫🇷 91.196.152.113

🇫🇷 91.196.152.29

🇳🇱 91.92.42.245

🇩🇪 81.199.26.35

🇱🇹 45.227.254.170

🇦🇺 45.133.6.28

🇮🇪 185.192.16.173

🇵🇰 160.187.180.175

🇦🇺 123.209.95.195

🇩🇪 85.203.15.146

🇧🇬 78.128.113.22

🇹🇿 41.93.32.48

🇬🇧 5.226.140.87

🇳🇱 176.65.148.215