JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.46.242

104.207.46.242 was found in our database!

This IP was reported 172 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.46.242

Whois 104.207.46.242

IP Abuse Reports for 104.207.46.242:

This IP address has been reported a total of 172 times from 30 distinct sources. 104.207.46.242 was first reported on June 5th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-23 05:00:29 (2 weeks ago)		Bad Web Bot
🇧🇷 SOC Blue Team	2026-02-16 05:26:28 (3 months ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇫🇷 mrcrassi	2026-02-13 13:54:50 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST meth ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (POST method) Endpoint: /wp-login.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-13 13:49:03 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:48:55.825690 2026] [security2:error] [pid 19101:tid 19101] [client 104.207.46.242:14003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mindtoken.app"] [uri "/.git/config"] [unique_id "aY8rx-tZ7RZCKalUmBUzgwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 OceanTreasure	2026-02-13 13:15:39 (3 months ago)	tcp/443; Git configuration exposure attempt: "GET /app/.git/config" @ 2026-02-13T13:12:44Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:13:27 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:13:21.453441 2026] [security2:error] [pid 32217:tid 32217] [client 104.207.46.242:36921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lavozdominicana.com"] [uri "/wp/.git/config"] [unique_id "aY8jcSqYwQFOonZGigkTDwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-13 13:09:41 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 mnsf	2026-02-13 05:06:11 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 myagent.site	2026-02-13 04:32:48 (3 months ago)	Blocking for trying to access an exploit file: /.env.local	Hacking
🇺🇸 TPI-Abuse	2026-02-13 03:45:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:45:19.767869 2026] [security2:error] [pid 13352:tid 13352] [client 104.207.46.242:64741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marisa-mcphee.com"] [uri "/new/.git/config"] [unique_id "aY6eT3KQUS5jOmPWtW7huAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:25:09 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:25:02.431385 2026] [security2:error] [pid 32225:tid 32225] [client 104.207.46.242:55809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "magnawebinc.com"] [uri "/.env.local"] [unique_id "aY59bpqzl79px1QP0jm36QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:07:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:07:43.375319 2026] [security2:error] [pid 12534:tid 12547] [client 104.207.46.242:55597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "madring.click"] [uri "/.git/config"] [unique_id "aY55XzxQLiSCEGPdqghVHgAAAMs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 19:40:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 14:40:16.006316 2026] [security2:error] [pid 6757:tid 6757] [client 104.207.46.242:25519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g-drome.com"] [uri "/.git/config"] [unique_id "aY4soCfYF27BAbfD0WZ8XAAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:32:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:32:40.350067 2026] [security2:error] [pid 14637:tid 14637] [client 104.207.46.242:46713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dentistholidaycards.com"] [uri "/.env"] [unique_id "aY4OuP-PoMp9qSJxonbsLgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 17:10:15 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.46.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 12:10:09.371084 2026] [security2:error] [pid 1064660:tid 1064707] [client 104.207.46.242:27099] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cynosureservices.email"] [uri "/.env"] [unique_id "aY4Jcf2vurYQR0i56dKjQQAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 172 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 103.27.178.180

🇫🇷 95.111.230.218

🇫🇷 62.84.190.180

🇩🇪 44.144.239.185

🇵🇰 38.100.220.166

🇺🇸 34.85.207.167

🇳🇱 5.255.121.5

🇬🇧 193.163.125.16

🇮🇳 125.19.216.162

🇭🇰 103.210.238.204

🇺🇸 100.28.191.174

🇧🇪 35.205.227.2

🇷🇴 2.57.121.112

🇮🇪 2a05:d018:10df:d401:5371:e872:23a6:c493

🇮🇩 202.65.231.164

🇲🇽 187.212.10.12

🇳🇱 178.16.55.161

🇲🇦 160.176.148.17

🇦🇺 110.144.66.62

🇸🇦 93.112.141.240