JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.78

104.207.50.78 was found in our database!

This IP was reported 162 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.78

Whois 104.207.50.78

IP Abuse Reports for 104.207.50.78:

This IP address has been reported a total of 162 times from 26 distinct sources. 104.207.50.78 was first reported on June 22nd 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-05-15 13:15:56 (2 weeks ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.50.78 (GB/United Kingdom/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.50.78 (GB/United Kingdom/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇦🇺 oncord	2026-03-05 03:34:49 (2 months ago)	Form spam	Web Spam
🇬🇧 oncord	2026-03-03 11:01:42 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-28 07:16:10 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-27 00:01:11 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-19 00:01:55 (3 months ago)	Form spam	Web Spam
🇬🇧 consul.to	2026-02-15 12:49:43 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 12:21:57 (3 months ago)	Try to access /.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:03:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:03:51.136272 2026] [security2:error] [pid 26660:tid 26660] [client 104.207.50.78:23321] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tigerallenyim.com"] [uri "/api/.env"] [unique_id "aZG2J_wvUu12c5NHK-FrjQAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:41:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:41:30.128387 2026] [security2:error] [pid 15562:tid 15562] [client 104.207.50.78:9793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomaschemical.net"] [uri "/app/.env"] [unique_id "aZGw6o7KvibeApvMDJ17IgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:48:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:48:19.638975 2026] [security2:error] [pid 797:tid 797] [client 104.207.50.78:27471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "talentstar.com"] [uri "/dev/.git/config"] [unique_id "aZFsM3p3RTefwMzcAmV8VwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:08:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:07:57.699526 2026] [security2:error] [pid 11221:tid 11221] [client 104.207.50.78:29345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sympalais.com"] [uri "/wp/.git/config"] [unique_id "aZFivUrf32hlLApg0Q6wCQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2026-02-15 05:54:14 (3 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:11:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:11:22.915821 2026] [security2:error] [pid 2139:tid 2139] [client 104.207.50.78:20027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sunshine-trust.com"] [uri "/.env.staging"] [unique_id "aZFVek1g2LgO4UQyBzL1JQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:24:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:24:10.245950 2026] [security2:error] [pid 27199:tid 27199] [client 104.207.50.78:12189] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stricklinphotography.com"] [uri "/admin/.git/config"] [unique_id "aZFKajUpBb1lVrjYAbeUhAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 162 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 221.156.126.1

🇷🇼 197.243.14.52

🇪🇹 196.189.155.89

🇩🇪 194.88.98.86

🇻🇪 190.89.29.12

🇻🇳 115.78.226.174

🇺🇸 104.152.52.132

🇭🇰 101.36.110.201

🇳🇱 45.148.10.152

🇳🇱 45.128.199.108

🇺🇸 162.216.150.237

🇺🇸 152.32.234.97

🇭🇺 89.134.210.182

🇨🇭 85.5.148.125

🇬🇧 51.195.215.62

🇪🇨 45.224.97.241

🇧🇪 34.62.74.204

🇩🇪 217.154.173.63

🇺🇸 208.112.107.54

🇺🇸 208.109.240.82