JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.42.53

104.207.42.53 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.42.53

Whois 104.207.42.53

IP Abuse Reports for 104.207.42.53:

This IP address has been reported a total of 145 times from 19 distinct sources. 104.207.42.53 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 interbiznw.com	2026-04-24 00:19:29 (1 month ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇮🇹 VHosting	2026-02-18 22:30:18 (3 months ago)	Detected attack and reported by a human	Brute-Force Web App Attack SSH DDoS Attack Exploited Host Bad Web Bot
🇩🇪 Bedios GmbH	2026-02-09 15:04:20 (3 months ago)	SQL backup theft attempt	Hacking
🇦🇺 oncord	2025-12-18 05:02:37 (5 months ago)	Form spam	Web Spam
Anonymous	2025-11-29 10:34:15 (6 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.29 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.29 is noted in report timestamp show less	Hacking Brute-Force
🇱🇻 garmtech.com	2025-11-26 04:25:57 (6 months ago)	Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probin ... show more Attempted access to sensitive endpoint (/.svn/wc.db) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:55:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:55:39.055708 2025] [security2:error] [pid 21287:tid 21287] [client 104.207.42.53:27465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.sargentandco.com"] [uri "/.svn/wc.db"] [unique_id "aSVE29VpGK2H1KfmiEDKFwAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:37:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:37:29.496905 2025] [security2:error] [pid 13068:tid 13068] [client 104.207.42.53:17511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rossiolympusjr.themotelwest.com"] [uri "/.env"] [unique_id "aSUyiVCJA8fUcNIiP2NL1gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:13:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:13:00.023268 2025] [security2:error] [pid 1416:tid 1416] [client 104.207.42.53:51267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.doublenaughtspycar.com"] [uri "/.git/HEAD"] [unique_id "aSUszOEpkWmK0RlphWOS5wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:47:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:47:29.300070 2025] [security2:error] [pid 28667:tid 28667] [client 104.207.42.53:58689] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.partybussantafe.com"] [uri "/.git/HEAD"] [unique_id "aSUm0deGwW-AfQVSZraa3AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:09:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:08:56.610460 2025] [security2:error] [pid 15844:tid 15844] [client 104.207.42.53:14289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.fathereeinc.com"] [uri "/.svn/wc.db"] [unique_id "aSUdyO5hApkHT1PblDHigQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:42:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:41:46.519386 2025] [security2:error] [pid 28491:tid 28491] [client 104.207.42.53:15097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.rgostl.com"] [uri "/.env"] [unique_id "aSUXaoi62C-Ug7-xkY-A-AAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:30:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:30:05.135564 2025] [security2:error] [pid 12456:tid 12456] [client 104.207.42.53:28145] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bienvista.com"] [uri "/.svn/wc.db"] [unique_id "aSQXjVvwAECAi-s0rYRgawAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:12:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.42.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:12:31.569182 2025] [security2:error] [pid 8636:tid 8636] [client 104.207.42.53:51087] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.belmontsprings.ca"] [uri "/.env"] [unique_id "aSPpPzxgTvQTOaAv1ZLDTQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-24 01:47:06 (6 months ago)	(From [email protected]) Are you searching for a job that can be done right away? If so, cou ... show more (From [email protected]) Are you searching for a job that can be done right away? If so, countless businesses are hiring website chat support agents - no experience is needed, as full training will be provided. Click here to complete your application if you are interested. -----> https://themoneyfromhome.com show less	Phishing Web Spam

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 2a00:1450:4010:c1c::12b

🇲🇾 219.92.8.252

🇳🇱 185.242.226.68

🇧🇷 131.255.130.149

🇷🇴 102.129.186.87

🇯🇵 96.126.130.244

🇳🇱 91.92.42.248

🇺🇸 82.24.132.153

🇷🇴 80.94.92.171

🇩🇪 69.5.169.96

🇳🇱 45.142.193.164

🇭🇰 45.116.78.92

🇺🇸 34.125.201.229

🇺🇸 185.150.191.165

🇩🇪 178.105.144.231

🇺🇸 136.109.8.98

🇧🇩 114.130.98.26

🇺🇿 82.215.97.111

🇭🇰 43.135.31.166

🇨🇳 39.144.129.70