JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.234

104.207.50.234 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.234

Whois 104.207.50.234

IP Abuse Reports for 104.207.50.234:

This IP address has been reported a total of 146 times from 22 distinct sources. 104.207.50.234 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇫🇷 tilellit.pro	2026-02-23 13:07:23 (3 months ago)	Fail2Ban banned 104.207.50.234 for security violations in jail nginx-aggressive. Log: 2026/02/23 13: ... show more Fail2Ban banned 104.207.50.234 for security violations in jail nginx-aggressive. Log: 2026/02/23 13:07:22 [error] FastCGI sent in stderr: "Primary script unknown" , client: 104.207.50.234, server: [REDACTED], request: "POST /wp-admin/xmlrpc.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] 2026/02/23 13:07:22 [error] FastCGI sent in stderr: "Primary script unknown" , client: 104.207.50.234, server: [REDACTED], request: "POST /wp-admin/xmlrpc.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-13 22:59:57 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-13	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-13 08:43:07 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:42:58.260335 2026] [security2:error] [pid 27922:tid 27922] [client 104.207.50.234:50905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lajoyadelmar.net"] [uri "/test/.git/config"] [unique_id "aY7kEjMq_lVEzkGsCeFUtQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 LRob.fr	2026-02-13 08:15:01 (4 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:01:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:01:12.314510 2026] [security2:error] [pid 30156:tid 30156] [client 104.207.50.234:11535] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koolcoastalnights.com"] [uri "/backend/.env"] [unique_id "aY6-KDaEuLRxOvaBcwdaKAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 filstal.org	2026-02-13 04:16:16 (4 months ago)	CrowdSec-Report: crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇩🇪 iNetWorker	2026-02-13 03:45:44 (4 months ago)	trolling for resource vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 00:49:17 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 19:49:10.939589 2026] [security2:error] [pid 26884:tid 26884] [client 104.207.50.234:28431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kamrynbever.com"] [uri "/app/.env"] [unique_id "aY51BnLdrRw7FlxGOKztogAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 18:51:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 13:51:47.011625 2026] [security2:error] [pid 30141:tid 30141] [client 104.207.50.234:13257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "evolutionmedical.help"] [uri "/.git/config"] [unique_id "aY4hQ0QE8sa_TgypR-_j5QAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 16:47:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 11:47:48.902226 2026] [security2:error] [pid 23850:tid 23850] [client 104.207.50.234:16541] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "automotiveforms.net"] [uri "/.env"] [unique_id "aY4ENB1sFsHYlOrB4AhqEQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 14:41:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 09:41:26.668082 2026] [security2:error] [pid 16517:tid 16517] [client 104.207.50.234:52471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "articulaterecords.com"] [uri "/.git/config"] [unique_id "aY3mlk2RacS0I5UWWKMHcwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:37:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:37:48.959753 2026] [security2:error] [pid 12076:tid 12076] [client 104.207.50.234:16943] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brownlegacy.org"] [uri "/.env.production"] [unique_id "aY0SzBxqe9av-jUfkrpUHwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 Origon	2026-02-11 11:49:31 (4 months ago)	http-sensitive-files - IP: 104.207.50.234 - time="2026-02-11T12:49:31+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 104.207.50.234 - time="2026-02-11T12:49:31+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.50.234 (GB/200373) : 4h ban on Ip 104.207.50.234" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:47:37 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.234 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:47:09.874060 2026] [security2:error] [pid 11787:tid 11787] [client 104.207.50.234:37205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "copiersgreensboro.com"] [uri "/admin/.git/config"] [unique_id "aYvRjV9HBmDNJbG8DSDF-AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.141.41.212

🇮🇩 202.152.201.166

🇷🇺 188.32.30.69

🇩🇪 185.220.100.241

🇸🇪 130.49.78.76

🇺🇸 91.193.232.251

🇨🇦 35.183.34.190

🇺🇸 6.237.152.229

🇷🇴 2.57.121.112

🇷🇴 2.57.121.25

🇳🇱 2a06:a880:5:74ca::1

🇷🇺 212.248.72.114

🇭🇺 195.199.210.194

🇧🇴 190.129.122.12

🇩🇪 185.242.3.195

🇰🇷 175.206.1.60

🇺🇸 164.90.129.12

🇻🇳 160.30.160.192

🇺🇸 147.93.179.147

🇩🇪 130.12.180.51