JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.247

104.207.50.247 was found in our database!

This IP was reported 118 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.247

Whois 104.207.50.247

IP Abuse Reports for 104.207.50.247:

This IP address has been reported a total of 118 times from 12 distinct sources. 104.207.50.247 was first reported on June 6th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 RedBear IT	2026-03-26 10:00:37 (3 months ago)	"DDoS against public endpoint"	DDoS Attack
🇺🇸 TPI-Abuse	2026-02-20 09:17:59 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 04:17:55.831652 2026] [security2:error] [pid 31723:tid 31771] [client 104.207.50.247:64789] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|andestravel.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "andestravel.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aZgmw5kUWj5BXKZGqBDh5gAAAEE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:54:53 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:54:48.144238 2025] [security2:error] [pid 12514:tid 12514] [client 104.207.50.247:60649] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cdhcreations.com"] [uri "/.git/HEAD"] [unique_id "aVIXqK7BaLTDHR5C77DO-gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:30:09 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:30:03.045853 2025] [security2:error] [pid 12097:tid 12097] [client 104.207.50.247:28889] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kamermanhome.com"] [uri "/.svn/wc.db"] [unique_id "aVIR2wpVdJ_3aodueM-2VwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:18:39 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:18:35.393379 2025] [security2:error] [pid 31603:tid 31603] [client 104.207.50.247:22735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "overlandpublishing.com"] [uri "/.env"] [unique_id "aVIBG9Feru46LvhRJdqv7gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-12-14 10:37:38 (6 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 12-37.104.207.50.247.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 12-37.104.207.50.247.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 oncord	2025-12-09 16:17:13 (6 months ago)	Form spam	Web Spam
🇱🇻 garmtech.com	2025-12-04 13:17:40 (6 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-17.104.207.50.247.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 15-17.104.207.50.247.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:40:54 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:40:46.332713 2025] [security2:error] [pid 31606:tid 31606] [client 104.207.50.247:13747] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bobfaw.com"] [uri "/.git/HEAD"] [unique_id "aSQoHikaMI4RtQelc1pd3AAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:27:20 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:27:08.698379 2025] [security2:error] [pid 22674:tid 22674] [client 104.207.50.247:58395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bisbyphotography.com"] [uri "/.env"] [unique_id "aSPsrBRYiKtp2IIoBT5l9AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:01:03 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:00:55.797217 2025] [security2:error] [pid 3965260:tid 3965364] [client 104.207.50.247:30285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.echrony.com"] [uri "/.env"] [unique_id "aSPYd6yiyKH59MCrZuH0ggAAAgw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:21:18 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:20:48.136913 2025] [security2:error] [pid 3225251:tid 3225251] [client 104.207.50.247:14257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.depcare.com"] [uri "/.env"] [unique_id "aSPPEKXDHmbgl8L-A5AfmAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-19 15:35:19 (7 months ago)	(From [email protected]) Are you searching for a job that can be done right away? If so, countles ... show more (From [email protected]) Are you searching for a job that can be done right away? If so, countless businesses are hiring website chat support agents - no experience is needed, as full training will be provided. Click here to complete your application if you are interested. -----> THEmoneyfromhome.com show less	Phishing Web Spam
🇺🇸 nowyouknow	2025-10-08 19:32:05 (8 months ago)	(From [email protected]) This is an open job position to be a website chat assistant. We curren ... show more (From [email protected]) This is an open job position to be a website chat assistant. We currently have lots of different businesses hiring for these positions in all countries right now. Website chat assistants are the people who answer the customer’s live chat support or sales questions on a business’s website. The work is done online, normally from home. Read the full details here to complete your application if you are interested. -----> https://tinyurl.com/3vcruwra show less	Phishing Web Spam
Anonymous	2025-10-06 20:55:07 (8 months ago)	wordpress-trap	Web App Attack

Showing 1 to 15 of 118 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 66.132.186.225

🇩🇪 2001:9e8:7d9b:d400:5580:39:2e68:7fff

🇨🇳 223.85.102.138

🇺🇸 216.25.89.126

🇩🇪 213.209.159.83

🇧🇷 205.210.31.202

🇹🇭 202.183.141.133

🇧🇪 198.235.24.194

🇬🇧 194.50.235.142

🇬🇧 188.240.59.42

🇺🇸 184.105.139.70

🇹🇷 176.91.161.206

🇺🇸 174.138.92.44

🇫🇷 172.71.135.62

🇻🇳 160.191.242.222

🇺🇸 147.185.132.92

🇭🇰 121.91.171.33

🇨🇳 117.34.85.168

🇸🇬 103.253.27.62

🇸🇬 94.231.206.133