JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.103

104.207.50.103 was found in our database!

This IP was reported 119 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.103

Whois 104.207.50.103

IP Abuse Reports for 104.207.50.103:

This IP address has been reported a total of 119 times from 13 distinct sources. 104.207.50.103 was first reported on June 4th 2024, and the most recent report was 15 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 02:02:35 (15 minutes ago)	Web App Attack	Web App Attack
🇫🇷 masterguru	2026-04-01 18:16:50 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.50.103 (GB/United Kingdom/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.50.103 (GB/United Kingdom/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇱🇻 garmtech.com	2026-03-30 06:23:45 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇱🇻 garmtech.com	2026-03-28 10:27:17 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇫🇷 masterguru	2026-03-28 10:25:40 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.50.103 (GB/United Kingdom/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.50.103 (GB/United Kingdom/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇬🇧 openstrike.co.uk	2026-02-10 06:13:35 (4 months ago)	2 attacks on password grabbing URLs, env grabbing URLs: GET /.aws/credentials HTTP/1.1 GET /.env.pro ... show more 2 attacks on password grabbing URLs, env grabbing URLs: GET /.aws/credentials HTTP/1.1 GET /.env.production HTTP/1.1 show less	Hacking
🇧🇾 lns.bz	2026-02-09 21:04:32 (4 months ago)	.env scanning [BY]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:37:23 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:37:19.524299 2026] [security2:error] [pid 22593:tid 22593] [client 104.207.50.103:12889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabver.com"] [uri "/backend/.env"] [unique_id "aYo3b56VtPtVFq7SPgE_WQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 18:42:28 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 13:42:25.872679 2026] [security2:error] [pid 32264:tid 32264] [client 104.207.50.103:14451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fwa51.com"] [uri "/.git/config"] [unique_id "aYoqkY_MTFU-dvI4g9H29AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 16:28:05 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 11:28:00.191708 2026] [security2:error] [pid 1170440:tid 1170440] [client 104.207.50.103:29783] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftiptondds.com"] [uri "/.env.local"] [unique_id "aYoLELkM3kL8N0jOcISLcQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 07:18:57 (4 months ago)	Blocking for trying to access an exploit file: /.aws/credentials	Hacking
🇺🇸 nowyouknow	2026-01-01 13:30:19 (5 months ago)	(From [email protected]) Hello, Are you currently looking for a reliable Digital Marketin ... show more (From [email protected]) Hello, Are you currently looking for a reliable Digital Marketing Assistant to support your business with tasks like SEO, Google & Meta Ads, Email Marketing, Social Media Management, Order Management, and more? We provide trained, dedicated personnel who work a minimum of 8 hours per day for only $250/month + and your first month is completely free. If you’re interested to afford a full time VA at $250/month after the free month, kindly fill out the form below to get started: Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-24 05:45:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:45:16.750194 2025] [security2:error] [pid 32449:tid 32449] [client 104.207.50.103:49549] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.siouxfallslimos.com"] [uri "/.git/HEAD"] [unique_id "aSPw7I-t88FsZ38QjC1gOQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:59:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:59:47.626173 2025] [security2:error] [pid 19288:tid 19288] [client 104.207.50.103:12051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.bioterrorismbooks.info"] [uri "/.git/HEAD"] [unique_id "aSPmQ6j63SZmI3Em9enMkQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 13:45:15 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 119 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.3.53.4

🇳🇱 146.190.230.189

🇰🇷 115.91.48.142

🇨🇳 103.36.220.174

🇺🇸 74.7.228.28

🇳🇬 41.242.115.84

🇺🇸 23.251.34.171

🇺🇸 15.204.211.98

🇺🇸 172.236.228.38

🇹🇳 165.50.76.126

🇺🇸 153.66.53.144

🇭🇰 114.111.53.214

🇩🇪 91.239.211.240

🇺🇸 64.62.156.228

🇨🇳 60.163.217.10

🇨🇱 216.155.93.75

🇬🇧 185.245.82.33

🇳🇱 185.223.235.19

🇷🇺 176.32.39.21

🇺🇸 172.236.228.229