JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.219

104.207.42.219 was found in our database!

This IP was reported 150 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.219

Whois 104.207.42.219

IP Abuse Reports for 104.207.42.219:

This IP address has been reported a total of 150 times from 21 distinct sources. 104.207.42.219 was first reported on June 4th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-04 19:08:21 (1 week ago)	Abuse Detected (2)	Brute-Force Web App Attack
Anonymous	2026-04-12 06:19:11 (2 months ago)	Attempt to scan vulnerabilities	Hacking
🇳🇱 homeshowdomain.nl	2026-01-17 22:59:29 (4 months ago)	Auto-ban: >3000 req/min op 2026-01-17	Hacking Web App Attack SSH
🇮🇹 VHosting	2025-12-23 11:24:10 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇫🇮 Shaik Sai Meera	2025-12-09 23:40:08 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 myagent.site	2025-12-09 14:20:05 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-09 05:02:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 00:02:24.927724 2025] [security2:error] [pid 18203:tid 18203] [client 104.207.42.219:45245] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dennisangellismusic.com"] [uri "/.svn/wc.db"] [unique_id "aTetYDPpz1_XHGOT3OWctgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 15:34:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 10:34:42.924929 2025] [security2:error] [pid 15985:tid 15985] [client 104.207.42.219:14651] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "register-yacht-delaware.com"] [uri "/.git/HEAD"] [unique_id "aTbwElluSSpC3bvQtloKSAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 15:56:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 10:56:14.201547 2025] [security2:error] [pid 1669:tid 1669] [client 104.207.42.219:60197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aikomp.net"] [uri "/.env"] [unique_id "aTRSHjdcBPr1Txx22O-_qAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 05:41:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 00:41:15.093939 2025] [security2:error] [pid 31538:tid 31538] [client 104.207.42.219:36629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "indieheaven.io"] [uri "/.svn/wc.db"] [unique_id "aTPB-_UoSRFq8wJC435JUwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 03:32:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 22:32:23.350088 2025] [security2:error] [pid 23823:tid 23823] [client 104.207.42.219:53597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "progresstraining.info"] [uri "/.svn/wc.db"] [unique_id "aTOjx2zrw6ECWAAcqQCkowAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 16:57:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 11:56:59.461548 2025] [security2:error] [pid 29465:tid 29465] [client 104.207.42.219:38513] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "highstakeslearning.com"] [uri "/.env"] [unique_id "aTMO2zrdXLJjbdNfRF3UBQAAADE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 13:17:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 08:16:56.392844 2025] [security2:error] [pid 22252:tid 22252] [client 104.207.42.219:42263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "spicerreport.com"] [uri "/.svn/wc.db"] [unique_id "aTLbSBM94Ak546yob4EqkAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:32:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:31:55.355386 2025] [security2:error] [pid 14968:tid 14968] [client 104.207.42.219:49141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rudiscreations.com"] [uri "/.env"] [unique_id "aTLCq05xrQn-Jn3xFR0FDAAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:08:42 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.219 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:08:34.574213 2025] [security2:error] [pid 18508:tid 18541] [client 104.207.42.219:12457] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ajbruner.com"] [uri "/.svn/wc.db"] [unique_id "aTK9Mk6QxcYcOHsrjFX8BQAAANM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 150 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.250

🇺🇸 172.203.245.156

🇺🇸 66.132.172.213

🇺🇸 52.161.74.195

🇧🇩 202.191.122.75

🇧🇪 198.235.24.240

🇸🇬 176.97.64.6

🇳🇱 176.65.139.253

🇪🇬 156.204.253.172

🇹🇭 150.95.24.146

🇳🇴 91.149.55.210

🇷🇴 82.152.132.24

🇺🇸 44.159.34.106

🇩🇿 41.110.4.106

🇦🇺 34.151.71.21

🇺🇸 34.125.112.223

🇨🇳 27.21.25.81

🇯🇵 8.216.8.246

🇮🇷 2.180.201.136

🇬🇧 193.163.125.229