JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.22

104.207.50.22 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.22

Whois 104.207.50.22

IP Abuse Reports for 104.207.50.22:

This IP address has been reported a total of 82 times from 12 distinct sources. 104.207.50.22 was first reported on June 11th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 HERA - Operations	2026-01-06 21:46:46 (5 months ago)	sensobox - searching for vulnerable scripts: .env 2026/01/06 22:46:46	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:49:02 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:48:57.652486 2025] [security2:error] [pid 12261:tid 12261] [client 104.207.50.22:40695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jacksonlimobus.com"] [uri "/.svn/wc.db"] [unique_id "aVIWST8ewqCDicsfBbS4XwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-29 04:52:57 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-29 03:50:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:50:22.573782 2025] [security2:error] [pid 26754:tid 26754] [client 104.207.50.22:22049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kraftre.com"] [uri "/.env"] [unique_id "aVH6flYR9mryZKRcAW6q7AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 12:12:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 07:12:37.580630 2025] [security2:error] [pid 21638:tid 21638] [client 104.207.50.22:29423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "albioncapitalfund.com"] [uri "/.git/HEAD"] [unique_id "aTbAtdBC4ygH0AL3nqLpewAAADE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 06:38:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 01:38:39.164453 2025] [security2:error] [pid 19149:tid 19149] [client 104.207.50.22:34489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serconpri.com"] [uri "/.git/HEAD"] [unique_id "aTZybxJ0tSghygVnmTcPSgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 00:00:24 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 19:00:20.335039 2025] [security2:error] [pid 32625:tid 32625] [client 104.207.50.22:30709] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinesiologiaenmovimiento.com"] [uri "/.git/HEAD"] [unique_id "aTYVFPFHMp1eK90KP1PFfgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 22:44:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 17:44:13.369229 2025] [security2:error] [pid 28131:tid 28135] [client 104.207.50.22:28801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paylessformedicine.com"] [uri "/.git/HEAD"] [unique_id "aTYDPWeOGV0m1jdUS0uVUgAAAEE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-07 17:45:13 (6 months ago)	IM360 WAF: Infectors: Suspicious access attempt (webshell)	FTP Brute-Force Open Proxy Brute-Force
🇺🇸 TPI-Abuse	2025-12-07 14:17:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:17:30.373240 2025] [security2:error] [pid 18395:tid 18395] [client 104.207.50.22:27205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "naturalpozzolanassociation.org"] [uri "/.svn/wc.db"] [unique_id "aTWMesufqZCnPlBFLYtTGwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:02:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:02:20.027827 2025] [security2:error] [pid 19969:tid 19969] [client 104.207.50.22:44063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "myemail.navy"] [uri "/.git/HEAD"] [unique_id "aTQNPAs6UsZyIU-ecIyL0gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 17:00:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 12:00:35.902594 2025] [security2:error] [pid 1472:tid 1472] [client 104.207.50.22:49475] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bernescobar.com"] [uri "/.git/HEAD"] [unique_id "aTMPs4-sKfu7BXSU7CSIFwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 15:55:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 10:55:00.464000 2025] [security2:error] [pid 1277:tid 1277] [client 104.207.50.22:38511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "batonrougecustomcabinets.com"] [uri "/.svn/wc.db"] [unique_id "aTMAVAKEMPM0L9mUrGu5QAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:04:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:04:06.224541 2025] [security2:error] [pid 31776:tid 31776] [client 104.207.50.22:53689] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tallersprats.com"] [uri "/.git/HEAD"] [unique_id "aTKR9makbJ3ghXiEN1S6nQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:23:46 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:23:38.474527 2025] [security2:error] [pid 14205:tid 14205] [client 104.207.50.22:18131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.professionalpartyplanner.org"] [uri "/.env"] [unique_id "aSPr2nFO60VG0tyk0ETbzQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇦 200.46.177.242

🇳🇱 192.109.200.78

🇦🇷 186.148.224.83

🇩🇪 130.61.73.238

🇨🇳 14.103.90.30

🇷🇴 2.57.121.112

🇲🇩 178.175.167.17

🇳🇱 176.65.139.56

🇺🇸 64.62.156.216

🇩🇪 49.13.136.104

🇺🇸 47.251.34.92

🇺🇸 20.65.193.201

🇬🇧 195.140.214.19

🇧🇷 187.120.73.226

🇨🇳 117.62.22.127

🇫🇷 85.217.140.1

🇩🇪 69.5.169.180

🇺🇸 66.132.195.100

🇺🇸 47.251.249.8

🇧🇷 45.205.1.73