JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.243

104.207.50.243 was found in our database!

This IP was reported 131 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.243

Whois 104.207.50.243

IP Abuse Reports for 104.207.50.243:

This IP address has been reported a total of 131 times from 13 distinct sources. 104.207.50.243 was first reported on June 7th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ShadowWhisperer	2026-05-03 08:04:58 (1 month ago)	DOCKER port scan / probe. GET /secrets	Port Scan
🇨🇭 Origon	2026-02-19 04:31:34 (3 months ago)	http-sensitive-files - IP: 104.207.50.243 - time="2026-02-19T05:31:34+01:00" level=info msg="(555f6 ... show more http-sensitive-files - IP: 104.207.50.243 - time="2026-02-19T05:31:34+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-sensitive-files by ip 104.207.50.243 (GB/200373) : 4h ban on Ip 104.207.50.243" module=db show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:46:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:46:09.124496 2026] [security2:error] [pid 25523:tid 25523] [client 104.207.50.243:37881] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keidar.com"] [uri "/.env"] [unique_id "aZZ5cQFU2sSWyOgNiP7peQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:10:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:10:41.794149 2026] [security2:error] [pid 30832:tid 30832] [client 104.207.50.243:49591] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katherinehowell.us"] [uri "/frontend/.env"] [unique_id "aZZxIWHtLl5ByNVaQoxCUAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 21:17:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 16:17:41.389317 2026] [security2:error] [pid 14591:tid 14591] [client 104.207.50.243:61159] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twentytwocreative.net"] [uri "/app/.git/config"] [unique_id "aZYsdR5cH14HGWLCDGRMGAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 19:07:05 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 11:55:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 06:55:20.564103 2026] [security2:error] [pid 21393:tid 21393] [client 104.207.50.243:18099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "warnock.ws"] [uri "/.git/config"] [unique_id "aZWoqPXN1vKjxhgKm7RRsAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Yosi	2026-02-12 09:33:10 (3 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:55 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 backslash	2025-11-28 01:35:03 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 06:15:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:15:33.861406 2025] [security2:error] [pid 9134:tid 9134] [client 104.207.50.243:20707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.keeran.org"] [uri "/.svn/wc.db"] [unique_id "aSVJhcO6mLUAI429tTk4fQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:57:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:56:50.649628 2025] [security2:error] [pid 9197:tid 9197] [client 104.207.50.243:21519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.veracurnow.com"] [uri "/.env"] [unique_id "aSU3EuPsBEQLrlX0cAYVlwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:49:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:49:14.966852 2025] [security2:error] [pid 4215:tid 4215] [client 104.207.50.243:54103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.toolsandtutorialsforwriters.com"] [uri "/.svn/wc.db"] [unique_id "aSUnOryTm0NeudoGaqotgAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:58:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:58:37.115218 2025] [security2:error] [pid 26809:tid 26809] [client 104.207.50.243:19491] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.exotic-dancers-los-angeles.com"] [uri "/.env"] [unique_id "aSUbXR8ncZHksTiUMqHa2wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:19:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:19:09.186063 2025] [security2:error] [pid 20651:tid 20651] [client 104.207.50.243:19325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.d-sinema.com"] [uri "/.svn/wc.db"] [unique_id "aSUSHeogs87ZNs8Wz5EpDQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 131 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇭 27.110.166.67

🇰🇷 222.108.147.76

🇳🇱 195.178.110.30

🇬🇧 185.195.13.179

🇹🇼 182.234.145.20

🇮🇩 180.252.162.214

🇫🇷 91.196.152.106

🇸🇮 89.212.154.14

🇬🇧 87.236.176.206

🇱🇹 77.90.185.204

🇺🇸 54.81.202.243

🇿🇼 197.221.232.44

🇵🇱 194.180.49.145

🇺🇸 107.150.105.116

🇳🇱 85.121.127.148

🇱🇹 81.30.98.158

🇺🇸 64.62.197.26

🇨🇳 60.188.58.133

🇷🇴 2.57.121.25

🇬🇧 152.32.157.173