JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.254

104.207.42.254 was found in our database!

This IP was reported 152 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.254

Whois 104.207.42.254

IP Abuse Reports for 104.207.42.254:

This IP address has been reported a total of 152 times from 14 distinct sources. 104.207.42.254 was first reported on June 5th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 10dencehispahard SL	2026-01-23 07:31:31 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:50 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 08:32:42 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:32:35.625457 2025] [security2:error] [pid 31115:tid 31115] [client 104.207.42.254:37809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "centerofhopefl.com"] [uri "/.env"] [unique_id "aVI8o-ofPNm9OYllC-otxAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:11:45 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:11:37.577110 2025] [security2:error] [pid 24522:tid 24536] [client 104.207.42.254:27657] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jameskeeton.com"] [uri "/.env"] [unique_id "aVIbmZVapoNOU6g-1PdUhwAAAIw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-29 06:05:15 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-29 05:55:27 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:55:18.932748 2025] [security2:error] [pid 24774:tid 24774] [client 104.207.42.254:43699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rame-int.com"] [uri "/.git/HEAD"] [unique_id "aVIXxmlWHYlEzi9tZ54BagAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:33:16 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:33:13.253447 2025] [security2:error] [pid 23328:tid 23328] [client 104.207.42.254:41227] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "linuxforpoets.com"] [uri "/.env"] [unique_id "aVISmcON2ygIu9WBME2rxQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:05:28 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:05:25.748436 2025] [security2:error] [pid 28006:tid 28006] [client 104.207.42.254:46191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baptismnapkins.com"] [uri "/.svn/wc.db"] [unique_id "aVIMFXgY2psv2NMToG4cwQAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 19:14:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 14:14:33.215453 2025] [security2:error] [pid 246671:tid 246768] [client 104.207.42.254:13325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lilapalooza.opticaldesignconcepts.com"] [uri "/.env"] [unique_id "aSdRmTyc0BMoEcK8xMlrVAAAAoo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 18:10:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 13:10:03.313159 2025] [security2:error] [pid 1462:tid 1462] [client 104.207.42.254:60179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.rcrgalicia.com"] [uri "/.svn/wc.db"] [unique_id "aSdCeyhBtOsp3W-C4_ZjqQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 17:23:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 12:23:25.129481 2025] [security2:error] [pid 12226:tid 12226] [client 104.207.42.254:21619] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.forsythfixit.com"] [uri "/.git/HEAD"] [unique_id "aSc3jex0PtOIeJq_zgOJLwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:25:21 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:25:16.543594 2025] [security2:error] [pid 23176:tid 23176] [client 104.207.42.254:45829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.debzy.com"] [uri "/.env"] [unique_id "aSVZ3LKLJvD6cKKQzH7CNwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:28:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:28:43.047544 2025] [security2:error] [pid 14223:tid 14251] [client 104.207.42.254:45061] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.beckhofmann.com"] [uri "/.git/HEAD"] [unique_id "aSU-i4jUYazU71qMBH9JlwAAARc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:01:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:01:24.642919 2025] [security2:error] [pid 15306:tid 15306] [client 104.207.42.254:60467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.cindybearce.com"] [uri "/.svn/wc.db"] [unique_id "aSU4JPawId9EQtpEDwp6IQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:33:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.254 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:33:13.849802 2025] [security2:error] [pid 17408:tid 17408] [client 104.207.42.254:35877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.tausiet.com"] [uri "/.git/HEAD"] [unique_id "aSUxiZ8kpbKY3E0KJjQzwQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 152 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 35.203.211.3

🇧🇷 205.210.31.132

🇳🇱 193.176.31.194

🇳🇱 176.65.148.132

🇺🇸 172.93.148.166

🇺🇸 147.185.132.52

🇧🇩 124.6.235.27

🇨🇳 123.181.89.107

🇨🇳 116.179.32.23

🇮🇩 103.187.91.2

🇿🇦 102.220.208.177

🇸🇬 101.47.15.26

🇸🇦 94.99.173.71

🇦🇿 80.69.55.177

🇮🇷 78.39.48.166

🇺🇸 66.132.172.232

🇨🇳 61.184.210.217

🇸🇬 43.160.244.105

🇧🇪 34.22.144.205

🇧🇬 5.188.206.30