JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.39.43

104.207.39.43 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 15%: ?

15%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.39.43

Whois 104.207.39.43

IP Abuse Reports for 104.207.39.43:

This IP address has been reported a total of 136 times from 15 distinct sources. 104.207.39.43 was first reported on June 22nd 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇰 RhQM	2026-06-15 05:20:13 (1 week ago)		Bad Web Bot Exploited Host Web App Attack
🇩🇪 www.Examensfragen.de	2026-06-06 23:26:14 (2 weeks ago)		Web Spam Bad Web Bot
🇱🇻 garmtech.com	2026-05-03 04:17:23 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-17.104.207.39.43.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-17.104.207.39.43.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-05-01 04:13:38 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-13.104.207.39.43.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-13.104.207.39.43.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:33:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:33:44.405896 2026] [security2:error] [pid 30497:tid 30497] [client 104.207.39.43:62987] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gamedayincentives.com"] [uri "/admin/.env"] [unique_id "aYpEqJnlrrrC8GmQB68s6gAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:08:05 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:07:57.832110 2026] [security2:error] [pid 717735:tid 717746] [client 104.207.39.43:57109] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galenaproperties.com"] [uri "/.env.staging"] [unique_id "aYo-nVe2saaLoPBOZVo_yQAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 05:21:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 00:20:55.077668 2026] [security2:error] [pid 1261:tid 1261] [client 104.207.39.43:40887] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingangelinvestors.com"] [uri "/admin/.git/config"] [unique_id "aYlut1idaKC2N58LCtgj3wAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-13 06:46:22 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-12-13 01:50:30 (6 months ago)	botnet	DDoS Attack
Anonymous	2025-11-29 12:14:20 (6 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.29 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.29 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 03:19:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:18:57.189822 2025] [security2:error] [pid 6597:tid 6597] [client 104.207.39.43:47469] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.numbulary.com"] [uri "/.env"] [unique_id "aSZxoUWEQVnvRHmhTaxswQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:45:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:45:15.503186 2025] [security2:error] [pid 3365542:tid 3365609] [client 104.207.39.43:19835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.rawsynergy.com"] [uri "/.env"] [unique_id "aSZbqwivzmMXD2VG4A73bQAAANA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:28:59 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.39.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:28:52.755837 2025] [security2:error] [pid 1378:tid 1378] [client 104.207.39.43:11027] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.wamgirlz.com"] [uri "/.git/HEAD"] [unique_id "aSPtFB3dlhslucMXD_JOcwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-16 21:38:12 (7 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.16 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.16 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-12 14:35:27 (7 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 87.236.176.145

🇯🇵 8.216.15.23

🇧🇷 205.210.31.238

🇬🇧 185.216.145.181

🇧🇴 177.222.99.49

🇩🇪 162.158.111.228

🇮🇩 125.160.128.46

🇨🇳 106.117.109.109

🇵🇰 103.151.46.32

🇷🇺 95.84.137.185

🇫🇷 91.231.89.207

🇫🇷 91.231.89.112

🇺🇸 91.230.168.164

🇺🇸 91.230.168.32

🇬🇧 90.200.178.175

🇺🇸 64.62.197.147

🇳🇱 45.148.10.151

🇳🇱 45.148.10.141

🇧🇪 34.38.53.213

🇺🇸 20.83.167.28