JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.190

104.207.42.190 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.190

Whois 104.207.42.190

IP Abuse Reports for 104.207.42.190:

This IP address has been reported a total of 130 times from 15 distinct sources. 104.207.42.190 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 masterguru	2026-04-02 21:08:28 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.42.190 (US/United States/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.42.190 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-03-20 07:20:54 (3 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇩🇪 big-cloud.nl	2026-02-19 05:41:48 (4 months ago)	Try to access /config/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 05:40:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:40:21.626061 2026] [security2:error] [pid 1109:tid 1109] [client 104.207.42.190:64185] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kugbe.com"] [uri "/api/.env"] [unique_id "aZaiRZICNPws2IdvKqHQLgAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 05:24:20 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 00:24:13.135766 2026] [security2:error] [pid 20225:tid 20225] [client 104.207.42.190:56429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krmartindale.com"] [uri "/config/.env"] [unique_id "aZaefR2e_d7AzcsyKTVpHAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:27:43 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:27:38.963388 2026] [security2:error] [pid 11658:tid 11658] [client 104.207.42.190:33573] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kh6jim.com"] [uri "/.env.staging"] [unique_id "aZaDKnJ9r-pcHOp7CPy8vQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 03:10:40 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 22:10:36.952854 2026] [security2:error] [pid 21116:tid 21116] [client 104.207.42.190:35925] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kerrywood.com"] [uri "/.git/config"] [unique_id "aZZ_LIjyj8IClYl86FBgqwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 02:11:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 21:11:23.569388 2026] [security2:error] [pid 2747769:tid 2747769] [client 104.207.42.190:24793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathiekate.com"] [uri "/wp/.git/config"] [unique_id "aZZxS2S80r0JR6WBMA3MggAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 01:27:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:27:37.678047 2026] [security2:error] [pid 17457:tid 17457] [client 104.207.42.190:61721] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kanata.ws"] [uri "/.env"] [unique_id "aZZnCZimHUtrkYNwjwjCywAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-19 00:04:22 (4 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.42.190 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.42.190 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 23:25:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 18:24:57.117530 2026] [security2:error] [pid 31652:tid 31652] [client 104.207.42.190:18387] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vetline.eu"] [uri "/.env.production"] [unique_id "aZZKSX99hluQDHti3LVXDgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 22:41:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 17:41:26.883556 2026] [security2:error] [pid 12171:tid 12171] [client 104.207.42.190:24857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vabq.com"] [uri "/.env.local"] [unique_id "aZZAFvIEQfsx7ki6ViiklQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:21:17 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:21:10.435221 2026] [security2:error] [pid 3131:tid 3131] [client 104.207.42.190:35785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "travelwithjenniferb.com"] [uri "/app/.env"] [unique_id "aZYfNiDFuCUivmB2soQzLwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:42:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.190 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:42:34.456773 2026] [security2:error] [pid 4232:tid 4232] [client 104.207.42.190:25985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thirdplanettechnology.space"] [uri "/backup/.git/config"] [unique_id "aZYIGjObOUsx7skTcBC36AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Petros Stefanakis	2026-02-18 17:08:31 (4 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.42.190 (US/United States/-)	SQL Injection

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇬 197.46.189.236

🇺🇸 147.185.132.40

🇮🇳 52.172.177.191

🇮🇷 5.238.9.16

🇧🇪 198.235.24.147

🇦🇺 180.216.244.199

🇷🇺 178.65.153.231

🇳🇱 91.92.241.196

🇺🇸 66.132.195.109

🇺🇸 66.132.195.75

🇩🇿 41.111.178.165

🇺🇸 34.144.184.99

🇺🇸 20.169.104.239

🇨🇳 14.103.115.181

🇮🇱 2.54.85.220

🇸🇰 2a00:4b40:aaaa:2009::5

🇺🇸 2604:a880:400:d1:0:4:9e94:a001

🇮🇳 202.88.209.51

🇬🇧 185.216.145.173

🇨🇴 181.56.174.63