JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.238

104.207.43.238 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.238

Whois 104.207.43.238

IP Abuse Reports for 104.207.43.238:

This IP address has been reported a total of 144 times from 20 distinct sources. 104.207.43.238 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-12 05:42:04 (2 months ago)	Attempt to scan vulnerabilities	Hacking
🇺🇸 TPI-Abuse	2026-03-04 01:32:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 20:32:54.711324 2026] [security2:error] [pid 27839:tid 27839] [client 104.207.43.238:22963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aabondwnc.com"] [uri "/.git/HEAD"] [unique_id "aaeLxhKvNkjs8X5vScgToAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-02 21:54:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 02 16:53:45.154257 2026] [security2:error] [pid 26885:tid 26885] [client 104.207.43.238:60909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gunningphysio.modeltdr.com"] [uri "/.svn/wc.db"] [unique_id "aaYG6aicQemga0bRg6Ol3wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-01-13 10:06:57 (5 months ago)	IM360 WAF: SQL Injection Attack: Common DB Names Detected	SQL Injection
🇩🇪 ps-center	2025-12-13 16:44:10 (6 months ago)	ABV: Web Attack GET /aufbau-digital/wp-includes/wlwmanifest.xml	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 14:13:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 09:12:59.422130 2025] [security2:error] [pid 15955:tid 15955] [client 104.207.43.238:36135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "moversandshakers.org"] [uri "/.svn/wc.db"] [unique_id "aTWLa5zbSMKtXMAG3DlNggAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:21:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:21:14.685678 2025] [security2:error] [pid 19641:tid 19641] [client 104.207.43.238:16279] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zyxod.net"] [uri "/.env"] [unique_id "aTQRqsKIntZHYQU9-XTcygAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 09:33:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 04:33:54.489537 2025] [security2:error] [pid 24053:tid 24053] [client 104.207.43.238:23037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "4md.lol"] [uri "/.git/HEAD"] [unique_id "aTP4gi17BqeBTHuPBjaAOwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 soverin	2025-12-05 21:18:48 (6 months ago)	Network scan on port 80	Email Spam
🇺🇸 TPI-Abuse	2025-12-05 09:48:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 04:48:03.117075 2025] [security2:error] [pid 10678:tid 10678] [client 104.207.43.238:54149] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "isaacsonpaintings.com"] [uri "/.svn/wc.db"] [unique_id "aTKqU0BU0FUvgN8TB3bMOwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:09:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:09:25.986043 2025] [security2:error] [pid 18011:tid 18011] [client 104.207.43.238:38967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.mtprogressions.com"] [uri "/.git/HEAD"] [unique_id "aSbt9c5IdXZg0qCyZGFBgwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 02:57:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 21:57:10.139674 2025] [security2:error] [pid 1527:tid 1527] [client 104.207.43.238:10439] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.randymeisner.com"] [uri "/.svn/wc.db"] [unique_id "aSZshk-Dp4j33Doa4KZrhQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 01:15:46 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 20:15:43.586899 2025] [security2:error] [pid 28499:tid 28499] [client 104.207.43.238:58717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.specialtycomputer.com"] [uri "/.env"] [unique_id "aSZUv_gPwQGdDkaJhwqvFAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:57:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:57:33.929856 2025] [security2:error] [pid 2510:tid 2510] [client 104.207.43.238:40165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.drgracetomastolentino.com"] [uri "/.env"] [unique_id "aSZQfUlkbOHmOELt9cCt4AAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:37:11 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.238 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:37:06.435208 2025] [security2:error] [pid 32003:tid 32012] [client 104.207.43.238:51749] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.miltonthepuppy.com"] [uri "/.git/HEAD"] [unique_id "aSZLsjKMur_mjuXzQQ9FDgAAAQc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.47.173.90

🇺🇸 52.167.144.16

🇬🇧 35.203.211.54

🇨🇳 180.76.194.91

🇺🇸 157.185.177.30

🇨🇳 118.145.225.50

🇨🇳 113.117.90.143

🇺🇸 45.146.55.136

🇺🇸 35.93.147.86

🇯🇵 8.216.13.201

🇷🇺 176.115.121.116

🇺🇸 148.153.245.161

🇨🇳 121.24.28.76

🇹🇷 78.170.203.203

🇳🇱 185.28.37.194

🇫🇮 147.185.133.37

🇵🇱 31.182.57.86

🇷🇺 217.149.191.246

🇮🇩 103.217.144.113

🇺🇸 96.78.175.36