JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.201

104.207.50.201 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 7%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.201

Whois 104.207.50.201

IP Abuse Reports for 104.207.50.201:

This IP address has been reported a total of 134 times from 16 distinct sources. 104.207.50.201 was first reported on June 13th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 [email protected]	2026-04-17 22:18:18 (1 month ago)	[Sat Apr 18 00:18:17.891800 2026] [authz_core:error] [pid 289056:tid 289142] [remote 104.207.50.201: ... show more [Sat Apr 18 00:18:17.891800 2026] [authz_core:error] [pid 289056:tid 289142] [remote 104.207.50.201:33315] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇦🇺 MAGIC	2026-04-17 01:02:58 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-15 07:09:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 02:09:46.940457 2026] [security2:error] [pid 30988:tid 30988] [client 104.207.50.201:47805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ptfea.org"] [uri "/app/.env"] [unique_id "aZFxOph4zdSFTPrkx1VHhQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 06:30:44 (3 months ago)	Try to access /api/.git/config	Web App Attack
🇺🇸 myagent.site	2026-02-15 05:08:20 (3 months ago)	Blocking for trying to access an exploit file: /backup/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-15 05:06:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:06:29.095976 2026] [security2:error] [pid 6223:tid 6235] [client 104.207.50.201:60027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oconnorpest.biz"] [uri "/api/.env"] [unique_id "aZFUVfZ1Qi5ljpkNddWBJQAAAIg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:27:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:27:50.179860 2026] [security2:error] [pid 16482:tid 16482] [client 104.207.50.201:32667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "numeralla.com"] [uri "/v2/.git/config"] [unique_id "aZFLRqp14EwR5qqlenm4UgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:54:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:54:26.104053 2026] [security2:error] [pid 10516:tid 10516] [client 104.207.50.201:54869] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "salernospizza.com"] [uri "/site/.git/config"] [unique_id "aZFDclBYWx9erTfJzmNvMQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:18:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:18:23.391014 2026] [security2:error] [pid 17437:tid 17437] [client 104.207.50.201:37185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "platinumcapitalpartners.net"] [uri "/v2/.git/config"] [unique_id "aZEs7w05fWYcobeL-U8a2gAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:48:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:48:08.190060 2026] [security2:error] [pid 5066:tid 5066] [client 104.207.50.201:16187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "piratecostumesonline.com"] [uri "/.env.production"] [unique_id "aZEl2KtGXo7ukC8nlvlMqAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:28:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:28:44.602600 2026] [security2:error] [pid 15243:tid 15243] [client 104.207.50.201:45383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ronelgas.com"] [uri "/config/.env"] [unique_id "aZEhTG-UDhZdeo0JHBUayAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-02-15 01:13:00 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:12:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.201 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:12:43.372759 2026] [security2:error] [pid 2937:tid 2937] [client 104.207.50.201:29649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roguetechink.com"] [uri "/.env.staging"] [unique_id "aZEdi5u1nflQb2a3mNi_WgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 01:05:59 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 203.154.158.195

🇺🇸 173.255.223.32

🇺🇸 91.230.168.90

🇰🇿 2.134.15.12

🇷🇴 2.57.121.25

🇳🇱 185.242.226.19

🇵🇱 143.20.97.216

🇵🇱 143.20.97.118

🇨🇳 123.145.37.170

🇨🇳 101.35.251.120

🇱🇹 81.30.98.142

🇳🇱 45.148.10.36

🇿🇦 185.132.186.8

🇨🇳 111.126.198.114

🇩🇪 91.99.117.254

🇺🇸 69.175.33.170

🇲🇽 206.135.24.10

🇩🇪 194.88.98.123

🇳🇱 185.226.197.59

🇳🇴 185.12.59.118