JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.50.85

104.207.50.85 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.50.85

Whois 104.207.50.85

IP Abuse Reports for 104.207.50.85:

This IP address has been reported a total of 139 times from 17 distinct sources. 104.207.50.85 was first reported on June 11th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-13 09:08:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 04:08:04.922547 2026] [security2:error] [pid 9591:tid 9591] [client 104.207.50.85:47573] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "landjudging.com"] [uri "/.env.production"] [unique_id "aY7p9H2mjO-qPRYl34VsMQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 08:07:09 (3 months ago)	Too many Status 40X (12) Scanning/Probing (35)	Brute-Force Web App Attack
🇳🇱 jjnxpct	2026-02-13 04:48:32 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇫🇷 pm33	2026-02-13 04:35:49 (3 months ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:26:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:26:08.044593 2026] [security2:error] [pid 26019:tid 26019] [client 104.207.50.85:24135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirkrmartin.com"] [uri "/new/.git/config"] [unique_id "aY6n4GvrmXNfuvYUPyxXTgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:55:00 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:54:53.400361 2026] [security2:error] [pid 26157:tid 26157] [client 104.207.50.85:29721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kindbyamber.com"] [uri "/.env"] [unique_id "aY6gjUK_cGzvXBrRowDoLAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:38:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:38:22.929489 2026] [security2:error] [pid 5691:tid 5691] [client 104.207.50.85:54931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kenmalone.com"] [uri "/new/.git/config"] [unique_id "aY6OniHRv3N0F2jc0lJDhgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 21:44:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 16:44:46.766058 2026] [security2:error] [pid 1501488:tid 1501507] [client 104.207.50.85:19031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abadie.com.uy"] [uri "/.git/config"] [unique_id "aY5Jznmc7r-QzsKpRj1logAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:46:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:45:57.201853 2026] [security2:error] [pid 11552:tid 11552] [client 104.207.50.85:12505] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "friendshiptrees.com"] [uri "/.git/config"] [unique_id "aY4t9RF22i7cmRVNqgGkGQAAACo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 05:58:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 00:58:37.974782 2026] [security2:error] [pid 8158:tid 8158] [client 104.207.50.85:47195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cortona.ws"] [uri "/app/.git/config"] [unique_id "aYwajdN45FWe-ciF3v9nfQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 21:05:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:05:17.297238 2026] [security2:error] [pid 11053:tid 11053] [client 104.207.50.85:49243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "contrarianadvisors.com"] [uri "/new/.git/config"] [unique_id "aYudjeXK43lMswZNMzpIxgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:20:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:20:09.574201 2026] [security2:error] [pid 30657:tid 30657] [client 104.207.50.85:16251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ggdome.org"] [uri "/api/.env"] [unique_id "aYrOGcFME_lniwDSv3NByAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:26:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:26:05.101237 2026] [security2:error] [pid 16678:tid 16678] [client 104.207.50.85:20029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "getagriponlife.net"] [uri "/backend/.env"] [unique_id "aYqzXZgNItFP1OKBdc1o7gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:06:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:06:45.199849 2026] [security2:error] [pid 8120:tid 8120] [client 104.207.50.85:56291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgegourmet.com"] [uri "/app/.git/config"] [unique_id "aYqgxXE2A4P3KxaBIpTLsgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:21:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.50.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:20:57.131252 2026] [security2:error] [pid 14666:tid 14666] [client 104.207.50.85:51861] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gemconsulting.world"] [uri "/.env.staging"] [unique_id "aYqH-Tysf_0N9yczMMWwSgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.231

🇳🇱 185.223.235.35

🇮🇳 125.20.245.182

🇺🇸 66.132.186.253

🇳🇱 45.148.10.183

🇺🇸 45.79.172.21

🇷🇺 45.8.158.94

🇧🇪 35.195.73.245

🇩🇪 34.89.184.122

🇭🇰 199.45.155.64

🇧🇷 177.221.205.218

🇨🇳 119.145.5.194

🇹🇼 111.240.201.41

🇮🇳 106.201.80.104

🇷🇴 80.94.92.186

🇺🇸 48.217.82.99

🇧🇪 35.189.200.194

🇯🇵 34.146.36.115

🇮🇷 31.170.61.72

🇺🇸 20.51.244.147