JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.245

104.207.43.245 was found in our database!

This IP was reported 159 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.245

Whois 104.207.43.245

IP Abuse Reports for 104.207.43.245:

This IP address has been reported a total of 159 times from 23 distinct sources. 104.207.43.245 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nowyouknow	2026-03-18 08:46:52 (2 months ago)	(From [email protected]) Hello Bowerschiro Net, This is Angie Parsons from Spiegelglass Co ... show more (From [email protected]) Hello Bowerschiro Net, This is Angie Parsons from Spiegelglass Construction Company. We’re reviewing potential partners for an upcoming Q2 2026 project and wanted to check your availability and interest in receiving more details. Scope information will be shared once we confirm your interest.. Sincerely, Angie Parsons Project Manager Spiegelglass Construction Company. show less	Phishing Web Spam
Anonymous	2026-03-18 04:57:36 (2 months ago)	Forum/form spam	Web Spam
Anonymous	2026-02-04 17:27:36 (4 months ago)	Forum/form spam	Web Spam
Anonymous	2025-12-30 20:33:24 (5 months ago)	"GET /.git/HEAD HTTP/1.1"	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:06 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 04:20:43 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:20:39.672454 2025] [security2:error] [pid 20183:tid 20183] [client 104.207.43.245:43853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shelbysmoak.com"] [uri "/.svn/wc.db"] [unique_id "aVIBlxkH-XKEXREXKyKYGgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:42:32 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:42:25.662413 2025] [security2:error] [pid 16976:tid 16976] [client 104.207.43.245:54729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avrknives.com"] [uri "/.git/HEAD"] [unique_id "aVH4odxthseaANIddCzM4QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-14 06:46:20 (5 months ago)	botnet	DDoS Attack
🇳🇱 i-turnradio.nl	2025-12-06 07:28:01 (6 months ago)	2025-12-06 @ 08:28:01 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 12:26:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 07:25:57.247895 2025] [security2:error] [pid 7404:tid 7404] [client 104.207.43.245:53085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.njoyquilts.com"] [uri "/.env"] [unique_id "aSbx1TM0mSzBqSa_FQcmtAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 10:04:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 05:04:49.001015 2025] [security2:error] [pid 26686:tid 26686] [client 104.207.43.245:56385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dodgersboosterclub.com"] [uri "/.git/HEAD"] [unique_id "aSbQwYQ4_3dKMHuZmSpbDQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 00:27:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 19:27:16.556803 2025] [security2:error] [pid 4445:tid 4445] [client 104.207.43.245:33391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.st-johns.us"] [uri "/.svn/wc.db"] [unique_id "aSZJZAwlRBMCx_6GDOG17AAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:03:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:03:48.358733 2025] [security2:error] [pid 28361:tid 28361] [client 104.207.43.245:9313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.constructiondomex.com"] [uri "/.svn/wc.db"] [unique_id "aSUAdIkAwOCXWsVINk1iQwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:39:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.245 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:39:05.687100 2025] [security2:error] [pid 15521:tid 15521] [client 104.207.43.245:56103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.yakski.com"] [uri "/.svn/wc.db"] [unique_id "aST6qS29avuqibIEg0kudQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 0x44	2025-11-24 17:58:18 (6 months ago)	104.207.43.245 [24/Nov/2025] * Spam host detected, probing for vulnerabilities	Web Spam Exploited Host Web App Attack

Showing 1 to 15 of 159 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.139.151

🇱🇹 81.30.98.49

🇮🇩 36.70.32.62

🇮🇷 2.180.69.11

🇺🇸 165.154.255.26

🇵🇰 119.152.102.54

🇨🇳 61.147.209.31

🇮🇳 49.200.158.226

🇨🇳 47.95.251.174

🇯🇵 43.165.185.71

🇺🇸 20.84.60.216

🇬🇧 195.140.214.23

🇻🇳 160.250.186.97

🇻🇳 125.212.235.194

🇮🇳 103.111.228.36

🇩🇪 2a01:4f8:150:13a5::100:28

🇱🇹 81.30.98.158

🇺🇸 40.83.182.122

🇸🇬 8.219.126.236

🇷🇴 2.57.122.177