JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.110

104.207.42.110 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.110

Whois 104.207.42.110

IP Abuse Reports for 104.207.42.110:

This IP address has been reported a total of 143 times from 16 distinct sources. 104.207.42.110 was first reported on June 5th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-05-18 22:00:53 (3 weeks ago)	Auto-ban: >3000 req/min op 2026-05-18	Web App Attack SSH Hacking
Anonymous	2026-04-07 08:52:47 (2 months ago)	Forum/form spam	Web Spam
🇫🇷 masterguru	2026-04-06 00:52:41 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.42.110 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.42.110 (US/United States/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇪🇸 masterguru	2026-03-19 15:40:23 (2 months ago)	SQL Injection Attack Detected via libinjection. detected SQLi using libinjection with fingerprint 's ... show more SQL Injection Attack Detected via libinjection. detected SQLi using libinjection with fingerprint 's)c' (942100-122) show less	SQL Injection
Anonymous	2026-02-11 01:16:25 (4 months ago)	Forum/form spam	Web Spam
🇪🇸 10dencehispahard SL	2026-01-26 07:30:27 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2026-01-26 07:25:50 (4 months ago)	Forum/form spam	Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:41 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇨🇭 backslash	2025-12-10 10:45:03 (6 months ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-25 05:09:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:09:25.525289 2025] [security2:error] [pid 4014:tid 4014] [client 104.207.42.110:18033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.sircain.net"] [uri "/.env"] [unique_id "aSU6BdlYzA88QRE043plOQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:39:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:38:55.563025 2025] [security2:error] [pid 22530:tid 22530] [client 104.207.42.110:38019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.bordalo-es.com"] [uri "/.svn/wc.db"] [unique_id "aSUy35JCZNirx1Kcv26ecQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:26:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:26:13.607476 2025] [security2:error] [pid 12686:tid 12686] [client 104.207.42.110:43411] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.forkliftserviceatl.com"] [uri "/.git/HEAD"] [unique_id "aSUTxXM8ydvzj1XcmbrpfwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:06:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:06:51.890977 2025] [security2:error] [pid 654883:tid 654883] [client 104.207.42.110:33203] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.healthyforyoullc.com"] [uri "/.git/HEAD"] [unique_id "aSUPO7GJ1qIDczNUEInibAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:20:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:20:27.811209 2025] [security2:error] [pid 30416:tid 30416] [client 104.207.42.110:39131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coloradospartans.com"] [uri "/.git/HEAD"] [unique_id "aSUEW2ll1W7r3DqjFFVx-wAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:40:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.110 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:40:49.780207 2025] [security2:error] [pid 7592:tid 7592] [client 104.207.42.110:46395] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.pkermis.com"] [uri "/.git/HEAD"] [unique_id "aST7EcSpjCq3sNjRSiUXXwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.215

🇧🇷 189.23.205.242

🇫🇷 31.36.163.95

🇹🇭 202.29.224.230

🇳🇱 195.178.110.30

🇨🇱 186.103.136.43

🇳🇱 176.65.139.195

🇺🇸 147.185.132.111

🇲🇲 136.228.161.66

🇷🇴 92.118.39.236

🇮🇶 65.20.141.202

🇩🇪 209.50.184.42

🇧🇦 195.222.57.190

🇬🇧 193.163.125.52

🇸🇬 148.66.142.9

🇮🇳 139.59.30.229

🇫🇷 82.102.18.116

🇺🇸 64.62.197.205

🇮🇷 31.7.118.17

🇺🇸 20.65.195.63