JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.103

104.207.42.103 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.103

Whois 104.207.42.103

IP Abuse Reports for 104.207.42.103:

This IP address has been reported a total of 142 times from 19 distinct sources. 104.207.42.103 was first reported on June 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-06-04 21:21:28 (2 weeks ago)	Form spam	Web Spam
🇮🇹 VINA	2026-05-18 10:10:10 (1 month ago)	Banned by SPAMHAUS ASN-DROP list (ASN: 200373)	DDoS Attack Hacking Bad Web Bot Web App Attack
🇬🇧 relianoid.com	2026-03-27 06:44:14 (2 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇺🇸 TPI-Abuse	2026-02-15 12:38:23 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:38:17.890124 2026] [security2:error] [pid 2570:tid 2570] [client 104.207.42.103:52929] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shafoo.com"] [uri "/.env"] [unique_id "aZG-OZ-XT7vlyc1X-DhfLAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:01:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:01:27.642166 2026] [security2:error] [pid 28082:tid 28082] [client 104.207.42.103:36637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pamelaweisberg.com"] [uri "/.git/config"] [unique_id "aZG1l7bhRpGV9BtieeJMfQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:30:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:30:36.627465 2026] [security2:error] [pid 23198:tid 23198] [client 104.207.42.103:10621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozarkshousing.com"] [uri "/admin/.git/config"] [unique_id "aZGuXEZDlKeUyvhlJJWNugAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 10:58:35 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.42.103 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.42.103 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 07:04:03 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 02:03:57.102304 2026] [security2:error] [pid 977681:tid 977681] [client 104.207.42.103:41099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "origenial.com"] [uri "/test/.git/config"] [unique_id "aZFv3RxUHm7eD9e8XDpUrAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:20:34 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:20:28.542988 2026] [security2:error] [pid 24678:tid 24678] [client 104.207.42.103:13973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "onlineteacher.info"] [uri "/new/.git/config"] [unique_id "aZFlrKEHkoY5DP9JTBQUfAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:26:11 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:26:04.145632 2026] [security2:error] [pid 21311:tid 21311] [client 104.207.42.103:17873] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "printorganic.com"] [uri "/api/.git/config"] [unique_id "aZFY7O0c7a2jaKvI_RwHIgAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:08:42 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:08:37.001077 2026] [security2:error] [pid 20213:tid 20213] [client 104.207.42.103:60187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "octaviomontes.com"] [uri "/backup/.git/config"] [unique_id "aZFU1RPwXwl2nF08q0b_PgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:20:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:20:28.461194 2026] [security2:error] [pid 2469219:tid 2469219] [client 104.207.42.103:49831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "samuelcurtis.com"] [uri "/app/.env"] [unique_id "aZFJjFjqtDpD6NxHJrUf5QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 poundawebsiteltd	2026-02-15 04:03:15 (4 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 104.207.42.103 - - [15/Feb/2026:0 ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 104.207.42.103 - - [15/Feb/2026:04:03:13 +0000] GET /dev/.git/config HTTP/1.1 403 213 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:00:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:00:24.843053 2026] [security2:error] [pid 2169:tid 2250] [client 104.207.42.103:55915] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nothingwithoutwater.com"] [uri "/api/.git/config"] [unique_id "aZFE2HCmiqKc9qeqCdLkxgAAAIo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:41:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.103 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:41:20.326815 2026] [security2:error] [pid 22199:tid 22233] [client 104.207.42.103:49119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sailcleaner.com"] [uri "/backup/.git/config"] [unique_id "aZFAYL6k6LPKjSLyJxBYnAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 185.100.212.141

🇵🇭 122.2.97.31

🇧🇷 45.140.193.156

🇷🇺 212.3.155.8

🇰🇷 183.104.220.195

🇺🇸 162.216.150.205

🇦🇪 132.243.121.237

🇳🇵 103.166.101.162

🇺🇸 97.93.43.157

🇺🇸 74.125.77.83

🇸🇬 43.153.211.15

🇮🇩 34.101.74.212

🇨🇳 27.99.149.67

🇸🇬 8.219.102.103

🇳🇱 185.242.226.71

🇳🇱 178.16.54.22

🇮🇪 109.76.125.142

🇹🇷 88.247.63.254

🇺🇸 52.91.13.224

🇬🇧 2a06:4880:6000::86