JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.252

104.207.50.252 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.252

Whois 104.207.50.252

IP Abuse Reports for 104.207.50.252:

This IP address has been reported a total of 130 times from 15 distinct sources. 104.207.50.252 was first reported on June 12th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 inlink.ltd	2026-06-06 03:38:59 (4 days ago)	dot file probe	Web App Attack
🇮🇳 Genhost	2026-05-06 11:36:22 (1 month ago)	SCANNING OF PHP SHELL FILES	Brute-Force SSH
🇪🇸 librebit	2026-03-23 05:05:17 (2 months ago)	Brute force	Brute-Force
🇬🇧 killian7603	2026-03-14 08:25:00 (2 months ago)	Brute-force attempts with exploited credentials	Brute-Force Web App Attack
Anonymous	2026-01-16 14:34:11 (4 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 17:19:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 12:19:37.603752 2025] [security2:error] [pid 4533:tid 4533] [client 104.207.50.252:13413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamsterslmcc.com"] [uri "/.env"] [unique_id "aThaKRWAmF7RqI5oc7l4fgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 08:40:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 03:40:23.263735 2025] [security2:error] [pid 5816:tid 5816] [client 104.207.50.252:24353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rosoctechnologies.com"] [uri "/.git/HEAD"] [unique_id "aTaO98v8c0Dwm1_pThO4YwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-08 03:15:08 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-07 13:56:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:56:29.772586 2025] [security2:error] [pid 19382:tid 19382] [client 104.207.50.252:39271] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "legionellaexperts.org"] [uri "/.svn/wc.db"] [unique_id "aTWHjSKZNNoHfDt5Wc4LHQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:26:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:26:55.637630 2025] [security2:error] [pid 8575:tid 8575] [client 104.207.50.252:28005] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bioterrorismbooks.net"] [uri "/.svn/wc.db"] [unique_id "aTQS_3pijpfENBWsok3xwQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:15:16 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:15:10.438354 2025] [security2:error] [pid 15640:tid 15640] [client 104.207.50.252:22523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eatinnola.com"] [uri "/.svn/wc.db"] [unique_id "aTK-viz4AyZRGUo_InThZwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:29:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:29:25.705528 2025] [security2:error] [pid 11069:tid 11069] [client 104.207.50.252:41759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hopitel.com"] [uri "/.git/HEAD"] [unique_id "aTK0BegesdExDmQqapCOiAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 08:25:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 03:25:39.472892 2025] [security2:error] [pid 8857:tid 8857] [client 104.207.50.252:26963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "yellowbrickfoundation.com"] [uri "/.env"] [unique_id "aTKXA8nohpZHrzmSRHz_FQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:10:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:10:09.530805 2025] [security2:error] [pid 5498:tid 5514] [client 104.207.50.252:37265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coasterdvdsonline.com"] [uri "/.git/HEAD"] [unique_id "aTJNEW7X3fCXD5Yl2i6DbwAAAM4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 00:48:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 19:48:10.321439 2025] [security2:error] [pid 8917:tid 8935] [client 104.207.50.252:9347] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zammconstruction.com"] [uri "/.git/HEAD"] [unique_id "aTIryrrc5ipWQk-c8MLDOgAAANA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.240

🇲🇽 189.165.49.226

🇺🇸 172.236.228.115

🇺🇸 172.171.233.230

🇯🇵 172.104.93.159

🇦🇺 170.64.203.56

🇺🇸 38.248.90.20

🇺🇦 213.227.245.154

🇸🇬 206.189.89.186

🇬🇧 195.206.182.212

🇧🇷 189.127.243.14

🇳🇱 185.223.235.36

🇺🇸 174.35.25.178

🇫🇮 147.185.133.171

🇷🇴 92.118.39.62

🇯🇴 86.108.23.20

🇳🇱 35.204.230.30

🇮🇪 34.244.150.43

🇮🇪 3.252.234.51

🇺🇸 3.142.170.60