JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.57.42

104.207.57.42 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇩🇪 Germany
City	Berlin, State of Berlin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.57.42

Whois 104.207.57.42

IP Abuse Reports for 104.207.57.42:

This IP address has been reported a total of 129 times from 18 distinct sources. 104.207.57.42 was first reported on June 14th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-24 08:17:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 03:17:05.764432 2026] [security2:error] [pid 15249:tid 15249] [client 104.207.57.42:58863] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ols.e-zschedule.com"] [uri "/.git/config"] [unique_id "aZ1egTH6eFkMGFPV47rKLQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 09:25:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 04:25:32.721862 2026] [security2:error] [pid 19289:tid 19289] [client 104.207.57.42:19635] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sweetpeachcupcakes.shawnlayne.com"] [uri "/.git/config"] [unique_id "aZwdDCgxR-z8LDHVyFkAlAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:46:05 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:49 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇧🇷 hostseries	2025-12-24 05:21:33 (5 months ago)	Trigger: LF_DISTATTACK	Brute-Force
🇺🇸 COMPLEX	2025-12-14 23:07:46 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protoc ... show more Triggered Cloudflare WAF (l7ddos) from DE. Action taken: BLOCK ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/2 (GET method) Endpoint: / show less	DDoS Attack Bad Web Bot
🇬🇧 openstrike.co.uk	2025-12-11 09:16:47 (5 months ago)	9 packets to port 2083	Port Scan
🇺🇸 TPI-Abuse	2025-11-24 09:17:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:16:56.891073 2025] [security2:error] [pid 9980:tid 9980] [client 104.207.57.42:46525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.pharmasalesconnect.com"] [uri "/.env"] [unique_id "aSQiiIy3Ikh5PdPXGERv9QAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:51:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:51:22.703598 2025] [security2:error] [pid 1715:tid 1715] [client 104.207.57.42:10263] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fishleadership.org"] [uri "/.env"] [unique_id "aSQAaojgPczN2HBOSioYegAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:53:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.57.42 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:53:09.947249 2025] [security2:error] [pid 27026:tid 27026] [client 104.207.57.42:25621] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ecrecorp.com"] [uri "/.git/HEAD"] [unique_id "aSPktUt2ClVpIkdOpvomtQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2025-11-09 20:09:50 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2025-11-08 20:09:48 (6 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 applemooz	2025-11-01 11:24:33 (7 months ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
Anonymous	2025-10-30 15:23:03 (7 months ago)	WordPress Brute Force	Brute-Force
🇦🇺 AWW-Admin	2025-10-16 16:30:27 (7 months ago)	(wordpress) Failed wordpress login from 104.207.57.42 (DE/Germany/-)	Brute-Force

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.215

🇺🇸 151.240.46.251

🇯🇵 139.162.66.65

🇻🇳 103.5.210.47

🇳🇱 89.190.156.8

🇳🇱 45.148.10.183

🇬🇧 5.226.140.45

🇬🇧 2a09:bac5:385b:23cd::391:82

🇸🇬 209.97.168.229

🇮🇩 202.67.44.13

🇨🇳 182.40.195.233

🇮🇳 165.140.164.99

🇮🇩 163.7.14.218

🇬🇧 104.28.162.15

🇱🇹 81.30.98.158

🇬🇧 35.203.210.95

🇬🇧 31.14.254.15

🇷🇴 2.57.121.112

🇨🇳 222.128.80.201

🇰🇷 221.162.0.119