JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 196.119.64.11

196.119.64.11 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 53%: ?

53%

ISP	2G/3G/4G Mobile Costumers
Usage Type	Fixed Line ISP
ASN	AS36925
Domain Name	orange.ma
Country	🇲🇦 Morocco
City	Rabat, Rabat-Sale-Kenitra

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 196.119.64.11

Whois 196.119.64.11

IP Abuse Reports for 196.119.64.11:

This IP address has been reported a total of 23 times from 8 distinct sources. 196.119.64.11 was first reported on June 25th 2026, and the most recent report was 42 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 05:18:40 (42 minutes ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 01:18:37.705244 2026] [security2:error] [pid 25908:tid 25908] [client 196.119.64.11:53349] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sianti.com"] [uri "/.env"] [unique_id "aj4LrZCg17sFcYByyr0IEQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Lee Daniel	2026-06-26 05:07:36 (53 minutes ago)	196.119.64.11 - - [26/Jun/2026:01:07:35 -0400] "GET /.env HTTP/1.1" 403 4806 "-" "Mozilla/5.0 (Macin ... show more 196.119.64.11 - - [26/Jun/2026:01:07:35 -0400] "GET /.env HTTP/1.1" 403 4806 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	DDoS Attack Web Spam Email Spam Port Scan Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 04:26:02 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 00:25:56.435379 2026] [security2:error] [pid 21403:tid 21403] [client 196.119.64.11:60027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sloaviation.com"] [uri "/.env"] [unique_id "aj3_VDmpaT-rJX7oCpwdYgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 04:08:34 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 00:08:28.738093 2026] [security2:error] [pid 1950:tid 1950] [client 196.119.64.11:54226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sigrc.org"] [uri "/.env"] [unique_id "aj37PMlk28IXARr4aPuMAQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 03:46:48 (2 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 23:46:44.168363 2026] [security2:error] [pid 4868:tid 4868] [client 196.119.64.11:50881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "simcorr.com"] [uri "/.env"] [unique_id "aj32JD7NqYop_w0bX4z9KQAAADU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 03:00:37 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 23:00:29.305783 2026] [security2:error] [pid 22358:tid 22358] [client 196.119.64.11:51870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "skyfall-estate.com"] [uri "/.env"] [unique_id "aj3rTTxX2LyiXbN0dqrk6wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 02:17:19 (3 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 22:17:11.425099 2026] [security2:error] [pid 15355:tid 15355] [client 196.119.64.11:60578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shtondo.com"] [uri "/.env"] [unique_id "aj3hJ80cDTfnAcGh4nVuLQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:46:45 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:46:37.298636 2026] [security2:error] [pid 4555:tid 4555] [client 196.119.64.11:53975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sinko-intl.com"] [uri "/.env"] [unique_id "aj3Z_Sh5r4Rgdr0waEvRhgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 01:25:44 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 21:25:40.977077 2026] [security2:error] [pid 32338:tid 32338] [client 196.119.64.11:60748] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sketchnotebook.com"] [uri "/.env"] [unique_id "aj3VFP3UjrNCtklQVducTwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:39:12 (5 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:39:04.849684 2026] [security2:error] [pid 12334:tid 12334] [client 196.119.64.11:58748] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sjtent.com"] [uri "/.env"] [unique_id "aj3KKFWiu6hnA4OpbXW-mgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-26 00:33:31 (5 hours ago)	Try to access /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 00:13:03 (5 hours ago)	(mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 196.119.64.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 20:12:57.939323 2026] [security2:error] [pid 17146:tid 17146] [client 196.119.64.11:51382] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "skanksex.com"] [uri "/.env"] [unique_id "aj3ECUhltVxp9OHbZt9r8gAAAHE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Rip	2026-06-26 00:02:06 (5 hours ago)	Restricted File Access Attempts	Port Scan Web App Attack
🇩🇪 todix	2026-06-25 23:03:48 (6 hours ago)	Web App Attack Exploid from 196.119.64.11	Web App Attack
🇩🇪 conseilgouz	2026-06-25 23:01:58 (6 hours ago)	sle-17 : Block hidden directories=>/.env(/)	Hacking

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.193

🇧🇼 168.167.228.123

🇺🇸 71.6.240.19

🇨🇳 220.180.171.157

🇺🇸 217.148.142.94

🇨🇬 197.157.252.162

🇲🇿 196.28.226.125

🇵🇱 194.180.49.217

🇩🇪 193.124.20.235

🇲🇽 189.217.130.86

🇧🇷 187.8.120.90

🇧🇷 186.239.41.74

🇫🇷 185.182.186.243

🇨🇦 178.93.201.244

🇨🇦 178.93.201.240

🇨🇦 178.93.201.237

🇨🇦 178.93.201.200

🇨🇦 178.93.201.189

🇨🇦 178.93.201.172

🇨🇦 178.93.201.166