JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.250

104.207.42.250 was found in our database!

This IP was reported 166 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.250

Whois 104.207.42.250

IP Abuse Reports for 104.207.42.250:

This IP address has been reported a total of 166 times from 27 distinct sources. 104.207.42.250 was first reported on June 4th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-04-22 17:20:35 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 20-20.104.207.42.250.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 20-20.104.207.42.250.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇩🇪 big-cloud.nl	2026-03-06 00:59:37 (3 months ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 mnsf	2026-02-16 00:05:44 (3 months ago)	Too many Status 40X (12) Scanning/Probing (14)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:35:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:35:50.151288 2026] [security2:error] [pid 22408:tid 22408] [client 104.207.42.250:40657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tlambert.us"] [uri "/admin/.git/config"] [unique_id "aZG9pu8RPU3RRikbLlxetQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:36:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:36:27.841796 2026] [security2:error] [pid 24008:tid 24008] [client 104.207.42.250:33383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "taekwondoit.com"] [uri "/config/.env"] [unique_id "aZFpayRKrBmFK2ExY3sZlwAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:53:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:53:42.734800 2026] [security2:error] [pid 21275:tid 21275] [client 104.207.42.250:24079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "swindon-itf.com"] [uri "/app/.env"] [unique_id "aZFfZkuiKv2Ydg580Q9RGQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:31:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:31:49.979012 2026] [security2:error] [pid 334851:tid 334851] [client 104.207.42.250:54029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "surrenderhouse.com"] [uri "/admin/.git/config"] [unique_id "aZFaRYYUAld93aCO2NJYOQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:11:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:11:51.192640 2026] [security2:error] [pid 23213:tid 23213] [client 104.207.42.250:34343] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stormstrips.com"] [uri "/site/.git/config"] [unique_id "aZFHhyRihiXEwz9td8wluAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:12:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:12:43.748923 2026] [security2:error] [pid 20979:tid 20979] [client 104.207.42.250:50325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stananddana.com"] [uri "/app/.git/config"] [unique_id "aZE5q_PjQkSoMSdA5P0d8QAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:47:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:46:59.968317 2026] [security2:error] [pid 2408592:tid 2408592] [client 104.207.42.250:19255] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "springmeadowventures.com"] [uri "/backend/.env"] [unique_id "aZEzo_DUKqc3H4DQ2eicVAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:50:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:50:02.094795 2026] [security2:error] [pid 11585:tid 11585] [client 104.207.42.250:26819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sourcecodeportal.com"] [uri "/dev/.git/config"] [unique_id "aZEmSm4dyIX5wmeqELZSjAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:45:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:45:26.093033 2026] [security2:error] [pid 6462:tid 6462] [client 104.207.42.250:10673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mp3tracks.com"] [uri "/v2/.git/config"] [unique_id "aZEXJtKixYRvnj1lFNozUwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:18:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:18:18.362416 2026] [security2:error] [pid 15590:tid 15590] [client 104.207.42.250:42607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "louisianamasons.com"] [uri "/api/.env"] [unique_id "aZEQysafbe6hvfqQmzhzZgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 00:05:04 (3 months ago)	Bot / scanning and/or hacking attempts: GET /.env.staging HTTP/1.1, GET /app/.env HTTP/1.1, GET /.en ... show more Bot / scanning and/or hacking attempts: GET /.env.staging HTTP/1.1, GET /app/.env HTTP/1.1, GET /.env HTTP/1.1, GET /admin/.env HTTP/1.1 show less	Hacking Web App Attack

Showing 1 to 15 of 166 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.223.235.41

🇨🇦 148.113.221.241

🇺🇸 71.6.134.231

🇺🇸 20.64.105.251

🇩🇪 213.209.159.231

🇺🇸 208.84.100.109

🇨🇦 199.167.138.45

🇬🇧 193.32.209.246

🇳🇱 185.136.15.12

🇳🇱 185.136.15.11

🇵🇰 154.80.114.74

🇦🇷 148.222.223.129

🇫🇮 147.185.133.98

🇺🇸 100.50.17.159

🇫🇷 85.217.140.52

🇫🇷 85.217.140.37

🇵🇭 49.151.189.214

🇺🇸 15.204.233.201

🇨🇳 223.151.72.93

🇳🇱 198.16.108.10