JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.29

104.207.43.29 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.29

Whois 104.207.43.29

IP Abuse Reports for 104.207.43.29:

This IP address has been reported a total of 145 times from 17 distinct sources. 104.207.43.29 was first reported on June 12th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-23 05:00:23 (1 week ago)		Bad Web Bot
🇳🇱 soverin	2026-05-21 21:29:23 (2 weeks ago)	Network scan on port 443	Email Spam
Anonymous	2026-04-13 23:38:15 (1 month ago)	Attempt to scan vulnerabilities	Hacking
🇺🇸 octageeks.com	2026-03-17 04:08:37 (2 months ago)	Wordpress malicious attack:[octaxmlrpc]	Web App Attack
🇺🇸 TPI-Abuse	2026-01-07 14:23:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 09:23:05.242449 2026] [security2:error] [pid 7821:tid 7821] [client 104.207.43.29:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "perl-photo.com"] [uri "/.env"] [unique_id "aV5sScAESoQmwHC8XWaE-AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 03:33:52 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 22:33:48.938026 2025] [security2:error] [pid 18316:tid 18316] [client 104.207.43.29:18441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "club1069media.com"] [uri "/.env"] [unique_id "aVH2nG-tTsbASY0aRo9FcwAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 00:40:27 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 19:40:22.582857 2025] [security2:error] [pid 28948:tid 28948] [client 104.207.43.29:60891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michelehoop.com"] [uri "/.svn/wc.db"] [unique_id "aVHN9v2v4TKgl13S6mH3OQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-27 23:25:12 (5 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-27 19:46:20 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 14:46:16.080270 2025] [security2:error] [pid 4931:tid 4931] [client 104.207.43.29:16467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "shirtzz.com"] [uri "/.env"] [unique_id "aVA3iHXzvngyKiJuV-YifwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 16:25:57 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 11:25:52.368986 2025] [security2:error] [pid 4419:tid 4516] [client 104.207.43.29:12631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "batesandbrown.com"] [uri "/.env"] [unique_id "aVAIkM15vEZHlPu98DPyAQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 16:10:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 11:10:02.396755 2025] [security2:error] [pid 18777:tid 18777] [client 104.207.43.29:17879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "misscrankypants.com"] [uri "/.git/HEAD"] [unique_id "aVAE2mYuStBcYJTA-idBXAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ManagedStack	2025-12-26 00:45:02 (5 months ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
🇮🇹 VHosting	2025-12-23 11:24:10 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-11-28 14:09:01 (6 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.28 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.28 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 04:34:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.29 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:34:01.526834 2025] [security2:error] [pid 19753:tid 19753] [client 104.207.43.29:59857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dpcfab.com"] [uri "/.env"] [unique_id "aSUxue8MaJonqWgRGGczDgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 167.172.28.156

🇪🇨 190.155.57.175

🇧🇷 186.194.83.221

🇭🇰 165.154.225.20

🇱🇹 81.30.98.62

🇧🇪 74.125.47.144

🇺🇸 66.132.186.237

🇰🇷 61.76.112.4

🇮🇳 45.123.110.70

🇸🇬 43.153.204.181

🇺🇸 40.65.222.177

🇮🇷 193.151.130.217

🇺🇸 162.216.149.179

🇩🇰 109.58.19.15

🇺🇸 89.106.84.74

🇺🇸 86.111.187.169

🇳🇱 74.125.114.209

🇧🇷 45.169.200.254

🇺🇸 20.168.120.208

🇳🇱 195.178.110.30