JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.1

104.207.43.1 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.1

Whois 104.207.43.1

IP Abuse Reports for 104.207.43.1:

This IP address has been reported a total of 77 times from 19 distinct sources. 104.207.43.1 was first reported on June 5th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-11 12:03:10 (5 days ago)	Web App Attack	Web App Attack
🇨🇭 backslash	2026-05-25 03:51:01 (3 weeks ago)		Bad Web Bot
🇳🇱 i-turnradio.nl	2026-01-17 01:59:08 (5 months ago)	2026-01-17 02:59:07 (CET) ~ Blocked by abusescan risk assessment	Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:55 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇳🇱 i-turnradio.nl	2025-12-23 01:03:17 (5 months ago)	2025-12-23 @ 02:03:17 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
Anonymous	2025-12-12 16:33:43 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 05:21:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:21:48.274419 2025] [security2:error] [pid 1817000:tid 1817016] [client 104.207.43.1:45731] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mediacrafts.iancaird.com"] [uri "/.git/HEAD"] [unique_id "aSU87JiXM9qjzOaPIgQ64gAAAUQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:07:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:06:47.000029 2025] [security2:error] [pid 15101:tid 15109] [client 104.207.43.1:60199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.stephaniemoody.com"] [uri "/.git/HEAD"] [unique_id "aSUdRqNKS2jdjfTVKRdcpAAAAQY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:49:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:49:08.987361 2025] [security2:error] [pid 13353:tid 13353] [client 104.207.43.1:45735] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.dbrooketaylor.com"] [uri "/.svn/wc.db"] [unique_id "aSUZJJ1ZcjpmCV9wqGEgywAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:25:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:25:20.908539 2025] [security2:error] [pid 27028:tid 27028] [client 104.207.43.1:10207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.joshi.us"] [uri "/.svn/wc.db"] [unique_id "aSUFgLaiLL_PSxsoN_JwRwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:51:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:51:39.754070 2025] [security2:error] [pid 5162:tid 5162] [client 104.207.43.1:34995] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.fusteriafontane.com"] [uri "/.env"] [unique_id "aST9m7BAKsj0KN6P6M2--wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:12:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:12:13.280345 2025] [security2:error] [pid 31517:tid 31517] [client 104.207.43.1:20949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.linguistes.com"] [uri "/.svn/wc.db"] [unique_id "aST0XXstox96DNmWO4SrSgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Marc	2025-10-29 18:36:19 (7 months ago)		Brute-Force Web App Attack
Anonymous	2025-10-17 15:04:53 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-10-15 00:12:05 (8 months ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.15 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.10.15 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.95

🇩🇪 69.5.169.65

🇺🇸 57.141.14.75

🇳🇱 45.148.10.151

🇬🇧 35.203.210.120

🇧🇪 34.38.12.99

🇳🇱 176.65.139.42

🇺🇸 172.67.142.171

🇺🇸 170.254.178.191

🇮🇳 157.50.198.117

🇵🇱 147.135.211.229

🇺🇸 132.255.133.72

🇨🇭 107.189.1.9

🇸🇬 101.47.27.73

🇷🇺 46.8.146.170

🇧🇷 45.165.178.231

🇮🇳 45.79.120.72

🇺🇸 20.172.70.65

🇫🇷 5.189.130.191

🇺🇸 216.25.89.110