JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.149

104.207.43.149 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.149

Whois 104.207.43.149

IP Abuse Reports for 104.207.43.149:

This IP address has been reported a total of 146 times from 20 distinct sources. 104.207.43.149 was first reported on June 11th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 penjaga BRIN	2026-03-23 20:28:39 (2 months ago)	SQL injection attempt	SQL Injection
🇺🇸 mnsf	2026-02-15 06:05:05 (3 months ago)	Scanning/Probing (26)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:35:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:35:11.491119 2026] [security2:error] [pid 23199:tid 23199] [client 104.207.43.149:64115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "susansambou.org"] [uri "/backup/.git/config"] [unique_id "aZFbD2CUyhMT6acrbw-EHgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2026-02-15 02:46:20 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.43.149 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.43.149 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:37:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:37:11.678710 2026] [security2:error] [pid 748851:tid 748851] [client 104.207.43.149:51413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n-vil.com"] [uri "/api/.git/config"] [unique_id "aZExV4_2qS8EwDsCsSCR8gAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:29:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:29:48.360949 2026] [security2:error] [pid 26728:tid 26728] [client 104.207.43.149:12973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "musicpolitan.com"] [uri "/.env"] [unique_id "aZEhjOODd2NGDnVtpEm4MwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:09:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:09:41.990083 2026] [security2:error] [pid 31404:tid 31404] [client 104.207.43.149:23561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "muddybuddypals.com"] [uri "/api/.env"] [unique_id "aZEc1eHApsFiCjp9GPSKGgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:47:08 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:47:00.945594 2026] [security2:error] [pid 20609:tid 20609] [client 104.207.43.149:39785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mplsmedia.com"] [uri "/app/.git/config"] [unique_id "aZEXhJZvoCMVfSJuJzn5agAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 00:09:57 (3 months ago)	Blocking for trying to access an exploit file: /app/.env	Hacking
🇺🇸 TPI-Abuse	2026-02-14 23:59:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:59:51.713495 2026] [security2:error] [pid 5656:tid 5656] [client 104.207.43.149:63249] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "longacre.biz"] [uri "/dev/.git/config"] [unique_id "aZEMd0869W2TVjOqJK75BwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 23:19:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 18:18:57.793017 2026] [security2:error] [pid 2170:tid 2264] [client 104.207.43.149:26201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "livetalkusa.com"] [uri "/.env.local"] [unique_id "aZEC4WK04aBCi-tiI-A6HQAAANI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:56:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:56:53.972816 2026] [security2:error] [pid 26027:tid 26027] [client 104.207.43.149:13755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lionheartpublications.com"] [uri "/.git/config"] [unique_id "aZD9tWJAqZeC4nkd1Vvr0gAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:19:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:18:51.552661 2026] [security2:error] [pid 16312:tid 16312] [client 104.207.43.149:42273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mollins.com"] [uri "/.git/config"] [unique_id "aZD0y1XheMplHXq768OxEwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2026-02-14 22:05:02 (3 months ago)	C1: Web Attack GET /admin/.git/config	Web Spam Hacking Bad Web Bot Web App Attack
🇧🇾 lns.bz	2026-02-14 21:56:32 (3 months ago)	Too many 404 requests [BY]	Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇪 2a05:d018:10df:d400:655d:f912:d88a:8970

🇨🇳 218.207.25.249

🇯🇵 167.179.84.244

🇸🇬 165.22.57.22

🇺🇸 138.68.243.18

🇨🇳 106.52.49.148

🇵🇭 49.149.188.19

🇺🇸 47.39.67.115

🇩🇪 2001:4ca0:108:42::24

🇸🇬 194.233.74.201

🇨🇳 183.142.36.52

🇩🇿 154.241.36.184

🇵🇭 136.158.59.155

🇺🇸 74.7.243.244

🇺🇸 47.42.131.93

🇮🇩 222.124.53.223

🇲🇾 219.92.35.130

🇫🇷 207.180.227.113

🇭🇰 185.227.153.56

🇧🇴 181.188.176.242