JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.238.50.25

104.238.50.25 was found in our database!

This IP was reported 3 times. Confidence of Abuse is 0%: ?

ISP	Web2Objects LLC
Usage Type	Fixed Line ISP
ASN	AS62874
Domain Name	web2objects.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.238.50.25

Whois 104.238.50.25

IP Abuse Reports for 104.238.50.25:

This IP address has been reported a total of 3 times from 2 distinct sources. 104.238.50.25 was first reported on March 19th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-04-21 03:48:00 (1 month ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-03 12:17:28 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 104.238.50.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 104.238.50.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 08:17:20.457400 2026] [security2:error] [pid 23250:tid 23250] [client 104.238.50.25:36579] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ellesorority.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ellesorority.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ac-v0Gbagwbdx22mS-6CIgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-03-19 21:52:24 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 104.238.50.25 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 104.238.50.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 19 17:52:15.062817 2024] [security2:error] [pid 11883] [client 104.238.50.25:59375] [client 104.238.50.25] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|gapanda.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gapanda.com"] [uri "/php-old.ini"] [unique_id "ZfoJD7NxY3-z2eILgjEgYwAAABM"], referer: https://gapanda.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 3 of 3 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 200.57.3.4

🇨🇱 190.5.45.143

🇨🇳 171.114.230.60

🇭🇰 150.5.169.138

🇺🇸 104.23.245.40

🇮🇳 103.248.120.6

🇭🇰 103.155.100.66

🇿🇦 102.129.51.83

🇮🇪 98.71.8.129

🇬🇧 13.135.97.203

🇺🇸 2607:f8b0:400e:c1e::122

🇺🇸 216.73.217.42

🇨🇴 191.111.15.16

🇸🇬 185.200.116.68

🇮🇩 163.7.8.79

🇺🇸 135.119.89.109

🇨🇳 111.26.106.119

🇸🇬 103.253.27.73

🇺🇸 98.83.117.79

🇩🇪 91.92.240.14