JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.58.96

104.207.58.96 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.58.96

Whois 104.207.58.96

IP Abuse Reports for 104.207.58.96:

This IP address has been reported a total of 147 times from 23 distinct sources. 104.207.58.96 was first reported on June 11th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-02-26 00:17:29 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇬🇧 consul.to	2026-02-15 12:50:34 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:34:32 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:34:25.772970 2026] [security2:error] [pid 31440:tid 31464] [client 104.207.58.96:52519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tkfay.com"] [uri "/v2/.git/config"] [unique_id "aZG9UX1kHR_DNCMGsoVn-gAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:32:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:32:25.305270 2026] [security2:error] [pid 23412:tid 23412] [client 104.207.58.96:28973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tausiet.com"] [uri "/.env.save"] [unique_id "aZGuydLBKEO0-LucQtq7hwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 06:05:46 (3 months ago)	Too many Status 40X (11) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:46:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:46:24.225457 2026] [security2:error] [pid 4503:tid 4503] [client 104.207.58.96:63527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sublimationconsultants.com"] [uri "/.env.save"] [unique_id "aZFPoB5qHWhiwvginDIb3gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:20:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:20:18.471238 2026] [security2:error] [pid 17878:tid 17878] [client 104.207.58.96:44477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "streaklesstoiletpaper.com"] [uri "/v2/.git/config"] [unique_id "aZFJgpaA47xGrXASo_FY5QAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:58:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:58:31.695306 2026] [security2:error] [pid 2078:tid 2078] [client 104.207.58.96:49395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stlouisdave.com"] [uri "/.env.save"] [unique_id "aZFEZ-aBqxTfDvlBFO-p7wAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:37:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:36:54.965517 2026] [security2:error] [pid 14005:tid 14005] [client 104.207.58.96:60277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stefchild.com"] [uri "/.env.production"] [unique_id "aZE_VjDmT-fRUJvs55UNDgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-02-15 02:50:04 (3 months ago)		Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:54:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:54:53.494582 2026] [security2:error] [pid 21806:tid 21806] [client 104.207.58.96:55791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mydobdate.net"] [uri "/.env.production"] [unique_id "aZEnbSP-ss0D0c0d2rPWQwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:09:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:09:47.169043 2026] [security2:error] [pid 5571:tid 5571] [client 104.207.58.96:49901] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "muddybuddypals.com"] [uri "/admin/.env"] [unique_id "aZEc24g_grZEWZwl5jf9awAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:50:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.58.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:50:40.805151 2026] [security2:error] [pid 20173:tid 20173] [client 104.207.58.96:15433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mrbaystreet.com"] [uri "/app/.git/config"] [unique_id "aZEYYG8uUW-tI7pP0fHL_AAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 00:49:10 (3 months ago)	Try to access /config/.env	Web App Attack
🇩🇪 paissangroup	2026-02-15 00:12:29 (3 months ago)	Multiple WAF Violations	Web App Attack

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 183.220.37.203

🇮🇳 182.95.47.2

🇩🇪 162.249.127.50

🇺🇸 98.191.77.249

🇳🇱 86.54.31.34

🇮🇳 59.145.160.134

🇫🇮 217.179.49.103

🇵🇰 203.128.10.138

🇳🇱 193.176.31.214

🇧🇿 190.197.31.229

🇮🇳 182.95.228.22

🇷🇺 176.109.97.11

🇨🇴 170.239.205.133

🇩🇪 167.94.145.28

🇩🇪 144.31.117.175

🇨🇳 125.88.160.13

🇨🇳 119.6.55.57

🇨🇳 117.69.255.239

🇹🇼 111.70.23.230

🇺🇸 91.230.168.144