JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.191

104.207.50.191 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.191

Whois 104.207.50.191

IP Abuse Reports for 104.207.50.191:

This IP address has been reported a total of 142 times from 18 distinct sources. 104.207.50.191 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-04-18 06:56:05 (2 months ago)	[Sat Apr 18 08:56:05.068997 2026] [authz_core:error] [pid 560721:tid 560787] [remote 104.207.50.191: ... show more [Sat Apr 18 08:56:05.068997 2026] [authz_core:error] [pid 560721:tid 560787] [remote 104.207.50.191:39545] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-09 19:47:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:47:29.083158 2026] [security2:error] [pid 618953:tid 618973] [client 104.207.50.191:61107] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gafm.org"] [uri "/.env.production"] [unique_id "aYo50ax7LPzmx8mSrZc-2wAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 19:09:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 14:09:47.521158 2026] [security2:error] [pid 17864:tid 17864] [client 104.207.50.191:54607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g-drome.com"] [uri "/wp/.git/config"] [unique_id "aYow-6Q0-bKAwf-VlT6rcQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 12:41:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 07:40:56.922777 2026] [security2:error] [pid 16952:tid 16952] [client 104.207.50.191:24769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamepart.com"] [uri "/frontend/.env"] [unique_id "aYnV2Agagi6itPdntl3TvwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 10:13:43 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 05:13:32.404062 2026] [security2:error] [pid 11968:tid 11968] [client 104.207.50.191:32087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gabver.com"] [uri "/test/.git/config"] [unique_id "aYmzTP_WBAzfG9PTk1FCNAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 08:27:52 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 03:27:26.200095 2026] [security2:error] [pid 17930:tid 17930] [client 104.207.50.191:46725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fydelity.net"] [uri "/.env.save"] [unique_id "aYmabsSMfhNhhl7WOyIwngAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 04:18:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 23:18:35.826943 2026] [security2:error] [pid 20721:tid 20721] [client 104.207.50.191:57379] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fullbladderclub.com"] [uri "/.env.save"] [unique_id "aYlgG0fqTbZ_i1dCJyGk0gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-05 21:50:43 (4 months ago)	wordpress-trap	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:39:15 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-12-02 20:10:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 15:10:10.101065 2025] [security2:error] [pid 29533:tid 29533] [client 104.207.50.191:29933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zenmonkeyproject.com"] [uri "/.svn/wc.db"] [unique_id "aS9Hoi_fKWF_3AUI4IbtzgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 19:24:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:24:11.258803 2025] [security2:error] [pid 18015:tid 18015] [client 104.207.50.191:9565] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gewgawdesigns.com"] [uri "/.svn/wc.db"] [unique_id "aS8826KPbRl3LaTPZs-XeAAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 08:31:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 03:31:47.199910 2025] [security2:error] [pid 1280:tid 1280] [client 104.207.50.191:53371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "weddingfavorcandles.com"] [uri "/.env"] [unique_id "aS6j84Q-p2Ow_VtCHqCmPgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:49:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:49:02.214335 2025] [security2:error] [pid 5015:tid 5015] [client 104.207.50.191:23571] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lucitania.com"] [uri "/.git/HEAD"] [unique_id "aS59zmCrw1iC4DEKA388JQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:30:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.191 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:29:35.639964 2025] [security2:error] [pid 9707:tid 9895] [client 104.207.50.191:54829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.rmgmediagroup.com"] [uri "/.svn/wc.db"] [unique_id "aSQlf_BpxIwoZY4UysC3MgAAAZQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.176.29.11

🇧🇷 179.181.11.10

🇸🇪 155.4.245.222

🇫🇷 85.217.140.39

🇺🇸 195.184.76.173

🇬🇧 104.28.208.60

🇩🇪 69.5.169.44

🇱🇹 45.227.254.170

🇬🇧 35.203.211.96

🇮🇳 20.235.157.149

🇨🇳 223.100.65.35

🇨🇳 223.90.32.215

🇧🇷 205.210.31.164

🇧🇴 200.105.156.53

🇺🇸 147.185.132.168

🇧🇷 138.0.150.255

🇷🇺 90.150.93.138

🇳🇱 45.148.10.247

🇺🇸 13.89.125.24

🇺🇸 5.161.101.51