JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.132

104.207.43.132 was found in our database!

This IP was reported 161 times. Confidence of Abuse is 11%: ?

11%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.132

Whois 104.207.43.132

IP Abuse Reports for 104.207.43.132:

This IP address has been reported a total of 161 times from 27 distinct sources. 104.207.43.132 was first reported on June 11th 2024, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-23 04:14:13 (22 hours ago)	Web App Attack	Web App Attack
🇸🇬 anotherwatcher	2026-05-10 01:30:05 (1 month ago)	bad bot	Bad Web Bot
🇦🇺 MAGIC	2026-04-03 01:26:43 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇪🇸 librebit	2026-04-01 06:29:16 (2 months ago)	Brute force	Brute-Force
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 MAGIC	2026-02-22 01:15:55 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 big-cloud.nl	2026-02-13 13:56:31 (4 months ago)	Try to access /dev/.git/config	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 13:25:56 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 08:25:49.388763 2026] [security2:error] [pid 12514:tid 12514] [client 104.207.43.132:28893] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lazymanvegan.com"] [uri "/admin/.env"] [unique_id "aY8mXavL275t9HlaDx-IHwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 12:51:50 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 07:51:46.654462 2026] [security2:error] [pid 11612:tid 11612] [client 104.207.43.132:64143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "midnight-tech.com"] [uri "/.env.save"] [unique_id "aY8eYpp82Ir3VktAK73zDQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 08:47:45 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:47:36.939212 2026] [security2:error] [pid 30404:tid 30404] [client 104.207.43.132:20225] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "messengersforchrist.com"] [uri "/.git/config"] [unique_id "aY7lKMJUirZXd0lw5DX94wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-13 08:06:48 (4 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 07:06:36 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 02:06:27.582127 2026] [security2:error] [pid 4083:tid 4083] [client 104.207.43.132:14825] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "medioskreativos.com"] [uri "/dev/.git/config"] [unique_id "aY7Nc8l72cKFrZdXiPL91wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:37:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:37:35.351680 2026] [security2:error] [pid 5674:tid 5674] [client 104.207.43.132:38759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marilynmather.com"] [uri "/backend/.env"] [unique_id "aY6cf7i8_0DHrFiY7EcjBwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 Progetto1	2026-02-13 02:15:02 (4 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 01:10:25 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.132 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 20:10:20.789770 2026] [security2:error] [pid 1381:tid 1381] [client 104.207.43.132:51199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "maeghanan.com"] [uri "/new/.git/config"] [unique_id "aY55_DMJSWjaYMmsJhORDgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 161 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 111.10.174.90

🇮🇹 79.36.151.158

🇺🇸 71.127.145.112

🇺🇸 66.132.224.81

🇺🇸 50.28.2.153

🇸🇬 43.128.113.103

🇺🇸 195.184.76.60

🇪🇸 185.51.109.75

🇿🇦 165.16.184.155

🇫🇮 147.185.133.202

🇮🇳 106.219.66.246

🇺🇸 100.29.192.9

🇫🇷 93.9.239.61

🇧🇬 91.92.48.38

🇧🇬 79.124.49.226

🇺🇸 74.7.243.205

🇸🇦 51.39.232.87

🇨🇳 222.212.83.53

🇪🇸 213.194.154.42

🇮🇩 202.4.170.20