JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.143

104.207.50.143 was found in our database!

This IP was reported 160 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.143

Whois 104.207.50.143

IP Abuse Reports for 104.207.50.143:

This IP address has been reported a total of 160 times from 20 distinct sources. 104.207.50.143 was first reported on October 19th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 oncord	2026-03-17 10:00:36 (2 months ago)	Form spam	Web Spam
🇩🇪 stinpriza	2026-03-04 02:09:24 (3 months ago)	Web App Attack	Web App Attack
🇦🇺 oncord	2026-02-21 11:10:46 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-17 21:26:35 (3 months ago)	Form spam	Web Spam
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:52 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
Anonymous	2026-02-15 16:31:13 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 12:49:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:49:46.464167 2026] [security2:error] [pid 25406:tid 25406] [client 104.207.50.143:13511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qwik-wash.com"] [uri "/.env"] [unique_id "aZHA6tYlG9hJtZnuF8IFmAAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:35:43 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:35:39.046350 2026] [security2:error] [pid 30261:tid 30261] [client 104.207.50.143:14209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pa-ksa.com"] [uri "/.env.staging"] [unique_id "aZGvi-ZZKvVbyTDnsa2pSgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:03:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:03:41.077895 2026] [security2:error] [pid 4010:tid 4010] [client 104.207.50.143:30885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "punctuminteractive.com"] [uri "/api/.git/config"] [unique_id "aZGoDUUCnhSiOsC8QsHr4wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 08:05:12 (4 months ago)	Scanning/Probing (11)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:29:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:29:17.074204 2026] [security2:error] [pid 857991:tid 857991] [client 104.207.50.143:46403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sawyerwest.com"] [uri "/app/.git/config"] [unique_id "aZFZraSJ_R6rmKMg3zSJugAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 IROK	2026-02-15 04:29:30 (4 months ago)	Malware/WebShell Scan blocked by ModSecurity ...	Hacking
🇺🇸 TPI-Abuse	2026-02-15 04:17:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:17:03.427555 2026] [security2:error] [pid 8535:tid 8535] [client 104.207.50.143:24465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ppcspetsitting.com"] [uri "/app/.git/config"] [unique_id "aZFIv2gn5dCsQW8DNm8eBAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:49:30 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:49:22.681077 2026] [security2:error] [pid 21775:tid 21775] [client 104.207.50.143:39887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "portraitgalleria.com"] [uri "/v2/.git/config"] [unique_id "aZFCQgRZ8E9xMS3l0pwtvAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 160 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 103.98.37.102

🇧🇪 35.205.78.100

🇨🇳 220.203.28.200

🇰🇷 183.116.206.204

🇨🇳 125.77.73.145

🇳🇱 91.92.40.239

🇩🇪 68.183.223.82

🇺🇸 65.49.1.162

🇺🇸 64.62.156.144

🇳🇱 45.153.34.235

🇺🇸 216.244.83.58

🇮🇳 182.95.233.86

🇫🇮 147.185.133.137

🇺🇸 147.185.132.185

🇮🇳 106.51.92.114

🇺🇸 104.223.41.217

🇮🇩 103.110.34.131

🇻🇳 103.63.108.25

🇺🇸 72.29.134.34

🇺🇸 45.61.186.169