JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.136

104.207.43.136 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.136

Whois 104.207.43.136

IP Abuse Reports for 104.207.43.136:

This IP address has been reported a total of 146 times from 17 distinct sources. 104.207.43.136 was first reported on June 22nd 2024, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-05-06 23:56:45 (4 weeks ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2026-05-04 05:55:36 (1 month ago)	(From [email protected]) Hey, I’m handing out something real value for zero cost No stri ... show more (From [email protected]) Hey, I’m handing out something real value for zero cost No strings attached. Use this link before it’s gone: https://suniljaindvg.systeme.io/6850adaf Takes like 10 sec. Could land with you. Join now. If you prefer not to receive additional emails from me, please submit the form on my website show less	Phishing Web Spam
🇱🇻 garmtech.com	2026-05-02 04:32:35 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-32.104.207.43.136.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 07-32.104.207.43.136.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇺🇸 oncord	2026-04-30 10:10:28 (1 month ago)	Form spam	Web Spam
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇦🇺 nzhost.co.nz	2026-02-19 12:32:34 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-13 08:49:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 03:49:30.415218 2026] [security2:error] [pid 22177:tid 22177] [client 104.207.43.136:33975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lakesideshelving.com"] [uri "/backup/.git/config"] [unique_id "aY7lmjeIjqrv0GzZyKDlAQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 06:15:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 01:15:51.780146 2026] [security2:error] [pid 2360696:tid 2360696] [client 104.207.43.136:24323] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kotelbarmitzvah.com"] [uri "/frontend/.env"] [unique_id "aY7Blwnn-s67P_ribrlrRQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 nzhost.co.nz	2026-02-13 05:38:18 (3 months ago)	$f2bV_matches	Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-02-13 05:11:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 13 00:11:19.213608 2026] [security2:error] [pid 32682:tid 32682] [client 104.207.43.136:59195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmg365media.com"] [uri "/site/.git/config"] [unique_id "aY6ydx5-4bkKSLiOpLU70gAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 04:15:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 23:15:30.858639 2026] [security2:error] [pid 1294519:tid 1294519] [client 104.207.43.136:15969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinkycouple4u.com"] [uri "/.env.production"] [unique_id "aY6lYqKLdTVrCPQSVH9elgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 02:25:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 21:25:47.656266 2026] [security2:error] [pid 7784:tid 7784] [client 104.207.43.136:44049] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kellermoving.com"] [uri "/v2/.git/config"] [unique_id "aY6Lq0najNoQJXYKhfK7dAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 20:15:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 15:15:39.078902 2026] [security2:error] [pid 8667:tid 8667] [client 104.207.43.136:37231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "encoremtmorris.com"] [uri "/.env"] [unique_id "aY4067s2yip36eWvx5PFVAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 2000cn.com.au	2026-02-12 15:41:22 (3 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Hacking Web App Attack
🇩🇪 big-cloud.nl	2026-02-12 14:31:01 (3 months ago)	Try to access /.git/config	Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.206

🇫🇷 91.231.89.67

🇳🇱 45.148.10.183

🇳🇱 45.142.193.9

🇺🇸 38.126.208.210

🇲🇰 188.44.20.32

🇺🇸 167.99.102.191

🇺🇸 159.223.156.29

🇺🇸 151.240.67.140

🇨🇳 123.99.199.71

🇺🇸 103.144.28.85

🇫🇷 85.204.70.118

🇺🇸 64.227.82.174

🇨🇳 58.19.105.36

🇺🇸 47.251.142.252

🇷🇺 5.101.64.6

🇨🇦 207.134.141.194

🇳🇱 193.176.31.225

🇨🇳 180.76.146.235

🇳🇱 160.119.78.252