JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.235

104.207.50.235 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 17%: ?

17%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.235

Whois 104.207.50.235

IP Abuse Reports for 104.207.50.235:

This IP address has been reported a total of 137 times from 18 distinct sources. 104.207.50.235 was first reported on June 22nd 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-25 03:51:01 (2 weeks ago)		Bad Web Bot
🇳🇱 homeshowdomain.nl	2026-05-18 22:01:27 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-18	Web App Attack SSH Hacking
🇩🇪 4server	2026-04-13 17:55:49 (1 month ago)	[MonApr1319:55:27.5032672026][security2:error][pid1311238:tid1311355][client104.207.50.235:0]ModSecu ... show more [MonApr1319:55:27.5032672026][security2:error][pid1311238:tid1311355][client104.207.50.235:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(curl\\|wget\\|python\\|nikto\\|sqlmap\\|acunetix\\|fimap\\|dirbuster\\|cmsmap\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"195\"][id\"990210\"][msg\"Suspicioususer-agentblocked\"][hostname\"modularss.com\"][uri\"/.env\"][unique_id\"ad0uD-mTteELGGfqeGUFAAAAAFQ\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 oncord	2026-04-12 11:13:06 (1 month ago)	Form spam	Web Spam
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇨🇭 backslash	2026-03-04 11:21:01 (3 months ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
Anonymous	2026-03-02 19:56:20 (3 months ago)	AGERADE WEBFORM SPAM 104.207.50.235 (104.207.50.235)	Web Spam
🇺🇸 oncord	2026-02-15 12:08:38 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 00:36:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 19:36:19.180923 2026] [security2:error] [pid 21932:tid 21932] [client 104.207.50.235:52993] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10mostwantedfugitives.com"] [uri "/.env.staging"] [unique_id "aY0gg0yjPMMETik1tn36PQAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 21:17:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 16:16:57.904746 2026] [security2:error] [pid 8003:tid 8003] [client 104.207.50.235:9111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "areaware-archive.com"] [uri "/.env.save"] [unique_id "aYzxyeUPBUCUWjfqz6KzYwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:12:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:12:47.813524 2026] [security2:error] [pid 2791265:tid 2791265] [client 104.207.50.235:23975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kneupper.com"] [uri "/.env.save"] [unique_id "aYq-T71OKqpre8BrcXXFxAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:37:36 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.235 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:37:33.900700 2026] [security2:error] [pid 21144:tid 21144] [client 104.207.50.235:44741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevintheadventurer.org"] [uri "/config/.env"] [unique_id "aYp9zaa3VV1aH9XzrHfMngAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-09 20:07:11 (4 months ago)	Blocking for trying to access an exploit file: /app/.git/config	Hacking
🇦🇺 oncord	2026-01-24 08:14:38 (4 months ago)	Form spam	Web Spam
🇵🇱 IROK	2026-01-06 02:03:56 (5 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 144.76.22.41

🇩🇪 144.31.81.21

🇨🇳 113.237.196.162

🇰🇷 112.168.175.109

🇨🇿 91.224.90.50

🇹🇷 89.252.131.17

🇺🇸 68.183.150.183

🇸🇬 47.79.11.230

🇰🇷 211.230.140.85

🇸🇬 193.37.32.212

🇮🇳 182.60.128.241

🇺🇸 162.216.149.111

🇧🇬 162.158.210.20

🇺🇸 149.88.21.148

🇫🇮 147.185.133.5

🇩🇪 144.31.220.24

🇩🇪 144.31.63.181

🇷🇺 109.194.108.203

🇺🇸 104.237.150.123

🇺🇸 104.237.132.65