JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.104.9.242

194.104.9.242 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	Baykov Ilya Sergeevich
Usage Type	Data Center/Web Hosting/Transit
ASN	Unknown
Domain Name	hip-hosting.com
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.104.9.242

Whois 194.104.9.242

IP Abuse Reports for 194.104.9.242:

This IP address has been reported a total of 20 times from 12 distinct sources. 194.104.9.242 was first reported on June 23rd 2023, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-08-27 22:59:52 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇺 MAGIC	2025-06-21 06:08:43 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 backslash	2025-06-20 03:35:04 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇩🇪 on-com	2025-05-16 09:55:22 (1 year ago)	URL scan	Brute-Force Web App Attack
Anonymous	2025-05-07 12:13:49 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-05-06 05:31:59 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:31:52.089750 2025] [security2:error] [pid 635926:tid 635926] [client 194.104.9.242:38165] [client 194.104.9.242] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Hudson II/Hudson II/Vermont Bark/Loveseat/originals/Thumbs.db"] [unique_id "aBmeyD0ClTkCyU3bYLHj-QAAAAg"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Hudson%20II/Hudson%20II/Vermont%20Bark/Loveseat/originals/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-05 04:52:32 (1 year ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 Anonymous	2025-02-28 16:00:00 (1 year ago)	Brute force attack detected from 194.104.9.242	DDoS Attack Brute-Force Web App Attack
🇷🇸 Smel	2024-11-05 07:07:09 (1 year ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-10-20 15:00:30 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 20 11:00:23.303603 2024] [security2:error] [pid 9383:tid 9383] [client 194.104.9.242:42917] [client 194.104.9.242] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|idahostem.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "idahostem.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ZxUbB5vn3SY4kaUNDQydAAAAAAc"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-19 05:59:46 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 19 01:59:41.529046 2024] [security2:error] [pid 19687:tid 19687] [client 194.104.9.242:63059] [client 194.104.9.242] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|belluardo.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "belluardo.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ZxNKzbhflwvAjKERpjIVRwAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-18 10:53:59 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.9.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 18 06:53:54.828322 2024] [security2:error] [pid 4428:tid 4428] [client 194.104.9.242:35331] [client 194.104.9.242] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|abbysue.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "abbysue.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZxI-QpLSHDVI7AG8eoGyNwAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-23 12:10:07 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
Anonymous	2024-06-27 20:50:05 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-06-21 06:16:50 (2 years ago)	Excessive 404 Traffic Wordpress	Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 146.70.147.120

🇬🇧 118.193.64.235

🇭🇰 104.208.108.166

🇺🇦 95.158.39.201

🇺🇸 40.119.33.98

🇬🇧 35.203.211.136

🇺🇸 5.181.171.200

🇧🇷 190.115.84.25

🇬🇪 188.121.193.29

🇺🇸 172.190.89.127

🇳🇱 161.35.147.82

🇹🇷 131.222.248.101

🇺🇸 124.198.131.39

🇻🇳 103.154.62.14

🇺🇸 77.220.193.145

🇺🇸 66.132.172.119

🇱🇺 64.89.161.172

🇮🇳 49.206.27.37

🇬🇧 35.203.210.103

🇺🇸 20.65.193.94