JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.213

104.207.43.213 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.213

Whois 104.207.43.213

IP Abuse Reports for 104.207.43.213:

This IP address has been reported a total of 147 times from 21 distinct sources. 104.207.43.213 was first reported on June 8th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-01 07:20:32 (2 months ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-03-10 15:34:26 (3 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇱🇻 garmtech.com	2026-03-03 12:01:16 (3 months ago)	IM360 WAF: WordPress malicious plugin install block MV:dummy-plugin.zip	Web App Attack
Anonymous	2026-02-22 05:06:30 (3 months ago)	Forum/form spam	Web Spam
🇱🇻 garmtech.com	2026-02-17 16:51:13 (3 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 octageeks.com	2026-02-16 05:06:02 (3 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:50:31 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:50:24.593990 2026] [security2:error] [pid 31145:tid 31145] [client 104.207.43.213:53335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "painting-with-numbers.com"] [uri "/.env.production"] [unique_id "aZGzAIsTdp1_F5C6TH6l7QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:30:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:30:26.365669 2026] [security2:error] [pid 11367:tid 11367] [client 104.207.43.213:14125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ozarkshousing.com"] [uri "/.git/config"] [unique_id "aZGuUgjjY_84l1Apvz79IgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:05:45 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:05:39.162031 2026] [security2:error] [pid 2176:tid 2176] [client 104.207.43.213:24287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "otrantocapital.com"] [uri "/admin/.env"] [unique_id "aZGogwk3LVVXSZR_944CdQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 Anytech	2026-02-15 10:59:46 (3 months ago)	CrowdSec detected: crowdsecurity/http-sensitive-files	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:58:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:58:27.821486 2026] [security2:error] [pid 25985:tid 25985] [client 104.207.43.213:60289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "omnithermal.com"] [uri "/.git/config"] [unique_id "aZFgg1fiOyMBdepcdMDTngAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oralunal	2026-02-15 05:23:42 (3 months ago)	IP banned by Fail2Ban in jail its-suss access.log mvfnds ...	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:07:30 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:07:24.313844 2026] [security2:error] [pid 26219:tid 26219] [client 104.207.43.213:47317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerastronomy.com"] [uri "/v2/.git/config"] [unique_id "aZFGfGGA5biOJ093gc8bLAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:21:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:21:17.722241 2026] [security2:error] [pid 957:tid 957] [client 104.207.43.213:16763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "no504.com"] [uri "/.git/config"] [unique_id "aZE7rfdNRX3yu4GVz9evkAAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 03:06:20 (3 months ago)	Too many Status 40X (11) Scanning/Probing (11)	Brute-Force Web App Attack

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:6c75:8001

🇳🇱 45.148.10.147

🇳🇱 45.148.10.121

🇰🇷 43.164.133.93

🇷🇴 2.57.121.112

🇸🇬 161.118.220.167

🇺🇦 160.238.124.254

🇭🇰 118.26.39.178

🇬🇧 35.203.210.95

🇨🇳 27.186.206.216

🇩🇪 167.94.146.71

🇸🇬 159.223.43.16

🇺🇦 159.26.120.37

🇷🇺 109.94.184.37

🇺🇸 70.37.89.177

🇨🇳 58.245.210.70

🇫🇷 51.254.113.225

🇳🇱 45.198.224.5

🇺🇸 45.56.121.237

🇺🇸 44.247.19.38