JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.50

104.207.38.50 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.50

Whois 104.207.38.50

IP Abuse Reports for 104.207.38.50:

This IP address has been reported a total of 139 times from 17 distinct sources. 104.207.38.50 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-12 05:41:58 (2 months ago)	Attempt to scan vulnerabilities	Hacking
🇩🇪 HandyTreff.de	2025-12-29 02:16:56 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -37.374 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -37.374 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrows show less	Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-23 12:50:18 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 TPI-Abuse	2025-12-02 15:21:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 10:21:32.006884 2025] [security2:error] [pid 15263:tid 15263] [client 104.207.38.50:48723] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kulacenterky.com"] [uri "/.git/HEAD"] [unique_id "aS8D_M53L6pQ1SLtTQQ-YwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 09:22:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 04:22:43.170064 2025] [security2:error] [pid 2144459:tid 2144459] [client 104.207.38.50:20757] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "central-wi-coal-sales.com"] [uri "/.svn/wc.db"] [unique_id "aS6v4zPv9aRsAMDhKnmqUgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-27 02:54:00 (6 months ago)	(From [email protected]) Enhance lifesourcefamilychiro.com search engine rankings, increase your ... show more (From [email protected]) Enhance lifesourcefamilychiro.com search engine rankings, increase your search visibility and build powerful backlinks! BonusBacklinks - we deliver daily backlinks and bring website traffic to your page EVERY DAY: + Get 85% SALE + Strong daily seo backlinks + Organic website traffic + Prices start from $1 + Bonus discount codes https://tiny.cc/BonusBacklinks-85Deal BonusBacklinks - daily seo backlinks and organic clicks to improve your page every day show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-26 08:35:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 03:34:53.945887 2025] [security2:error] [pid 9128:tid 9128] [client 104.207.38.50:25397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.insidepublications.com"] [uri "/.git/HEAD"] [unique_id "aSa7rYrRgjfNl4O52ugf1gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:34:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:34:11.767108 2025] [security2:error] [pid 9323:tid 9323] [client 104.207.38.50:32013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.robertet.co"] [uri "/.env"] [unique_id "aSafY0wez4iQqDNuhQM1rAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:50:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:50:22.378685 2025] [security2:error] [pid 11866:tid 11866] [client 104.207.38.50:57695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.iconconstructors.com"] [uri "/.svn/wc.db"] [unique_id "aSaVHstah5rHw2lPJH1cZwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-11-26 05:35:54 (6 months ago)	Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.	Web App Attack
Anonymous	2025-11-26 04:57:54 (6 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-11-26 02:29:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:29:14.676796 2025] [security2:error] [pid 10487:tid 10487] [client 104.207.38.50:11123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.brianknudsen.com"] [uri "/.svn/wc.db"] [unique_id "aSZl-vGwbykeAkeuR22FRwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:09:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:09:31.793405 2025] [security2:error] [pid 14494:tid 14494] [client 104.207.38.50:25631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bizzmail.net"] [uri "/.env"] [unique_id "aSZTSwmjpg2OJKq3SbfdYAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:36:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.50 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:36:47.833133 2025] [security2:error] [pid 5630:tid 5630] [client 104.207.38.50:27059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dginstruments.com"] [uri "/.git/HEAD"] [unique_id "aSUkT6tbD7S9FqiNZ5toEwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-11-24 10:03:59 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.254

🇨🇦 20.220.195.127

🇹🇷 185.153.231.44

🇧🇷 177.174.95.245

🇷🇺 111.88.250.248

🇨🇿 109.72.12.69

🇱🇹 81.30.98.49

🇺🇸 66.228.41.7

🇲🇽 45.134.9.27

🇻🇳 14.236.38.220

🇧🇪 198.235.24.141

🇬🇧 193.163.125.35

🇺🇸 135.233.112.94

🇺🇸 44.220.188.100

🇺🇸 195.184.76.61

🇮🇶 185.166.25.150

🇰🇷 175.213.118.146

🇸🇬 159.223.50.237

🇳🇱 45.148.10.151

🇧🇷 205.210.31.253