JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.143

104.207.43.143 was found in our database!

This IP was reported 150 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.143

Whois 104.207.43.143

IP Abuse Reports for 104.207.43.143:

This IP address has been reported a total of 150 times from 19 distinct sources. 104.207.43.143 was first reported on June 5th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-14 19:15:26 (1 day ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
Anonymous	2026-03-26 15:31:36 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 mnsf	2026-02-19 23:05:17 (3 months ago)	Too many Status 40X (12) Scanning/Probing (12)	Brute-Force Web App Attack
🇳🇱 jjnxpct	2026-02-19 04:49:55 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /new/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Web App Attack Hacking
🇺🇸 TPI-Abuse	2026-02-19 04:30:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:30:11.454100 2026] [security2:error] [pid 29443:tid 29443] [client 104.207.43.143:16045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmp.net"] [uri "/backend/.env"] [unique_id "aZaR0xTMTsS-7HLbzcQREwAAAC0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-19 04:07:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 23:07:47.970926 2026] [security2:error] [pid 2829727:tid 2829727] [client 104.207.43.143:53477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kittyloveschai.com"] [uri "/v2/.git/config"] [unique_id "aZaMk5UoiufsDsh-9FTipAAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 23:19:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 18:18:54.524492 2026] [security2:error] [pid 379557:tid 379557] [client 104.207.43.143:9003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "versahealthcare.com"] [uri "/api/.env"] [unique_id "aZZI3kBTFLAbgyPp4VZqRgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 22:05:46 (3 months ago)	Scanning/Probing (24)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 21:16:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 16:16:38.681597 2026] [security2:error] [pid 13943:tid 13943] [client 104.207.43.143:57253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "twentytwocreative.net"] [uri "/.env"] [unique_id "aZYsNphmNGlU7LOZ7Q4B-AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:26:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:26:54.919364 2026] [security2:error] [pid 13389:tid 13389] [client 104.207.43.143:37729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trendwolf.org"] [uri "/backend/.env"] [unique_id "aZYgjkkzf4iBT0zMw-XjHAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 19:59:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 14:59:40.878058 2026] [security2:error] [pid 18555:tid 18555] [client 104.207.43.143:19191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "towermedia.net"] [uri "/config/.env"] [unique_id "aZYaLDslgd0UsHf16TrRoAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:48:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:48:27.407332 2026] [security2:error] [pid 13831:tid 13831] [client 104.207.43.143:14575] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thoughtage.org"] [uri "/.env.save"] [unique_id "aZYJe3ABKuqrG4FfOo12XgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:30:41 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:30:35.425847 2026] [security2:error] [pid 2170:tid 2170] [client 104.207.43.143:33297] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thevillageartcenter.com"] [uri "/config/.env"] [unique_id "aZYFS35ynhaGjzwwvkDKKQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 13:20:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 08:20:07.170141 2026] [security2:error] [pid 17270:tid 17280] [client 104.207.43.143:55333] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "williampower.com"] [uri "/app/.git/config"] [unique_id "aZW8h9BdpYB5FJXJ-_VtkQAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:50:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.143 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:50:10.208657 2026] [security2:error] [pid 5521:tid 5521] [client 104.207.43.143:56855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wendeeholtcamp.com"] [uri "/test/.git/config"] [unique_id "aZW1gr_oULg4qMNIW-XgfwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 150 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 178.253.23.61

🇳🇱 45.148.10.121

🇪🇸 2a01:4b80:3::31ff:fee4:10

🇧🇷 190.115.84.25

🇷🇺 185.141.234.221

🇺🇸 184.154.156.13

🇧🇷 177.43.105.11

🇻🇳 165.99.16.135

🇺🇸 162.216.149.50

🇺🇸 152.32.207.229

🇺🇸 152.32.207.179

🇫🇷 151.80.35.225

🇨🇳 111.229.31.4

🇦🇺 103.208.218.164

🇺🇸 82.108.66.6

🇮🇳 49.207.40.162

🇭🇰 43.154.195.142

🇨🇭 37.120.213.13

🇮🇳 27.123.94.66

🇺🇸 20.171.26.41