JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.53

104.207.43.53 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.53

Whois 104.207.43.53

IP Abuse Reports for 104.207.43.53:

This IP address has been reported a total of 142 times from 20 distinct sources. 104.207.43.53 was first reported on June 4th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Savvii	2026-04-02 22:35:52 (2 months ago)	20 attempts against mh-misbehave-ban on ethyl	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Rocky Mountain Bioengineering Symposium	2026-02-10 03:51:50 (3 months ago)	104.207.43.53 - - [09/Feb/2026:20:51:50 -0700] "GET /backup/.git/config HTTP/1.1" 404 8556 "-" "Mozi ... show more 104.207.43.53 - - [09/Feb/2026:20:51:50 -0700] "GET /backup/.git/config HTTP/1.1" 404 8556 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:31:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:31:07.689168 2026] [security2:error] [pid 12502:tid 12502] [client 104.207.43.53:46897] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirstengoldberg.com"] [uri "/backend/.env"] [unique_id "aYqme1YxThzuDAfqzBPkSQAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:55:23 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:55:15.727282 2026] [security2:error] [pid 550:tid 550] [client 104.207.43.53:39131] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kingfishbets.com"] [uri "/.env.staging"] [unique_id "aYqeE6959Hw-b-IpNiFPFAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:22:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:22:53.291017 2026] [security2:error] [pid 13231:tid 13252] [client 104.207.43.53:64391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kimbleproperties.com"] [uri "/.env.production"] [unique_id "aYqWfQoQP8esBx9Kr0f7uAAAANM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:53:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:53:06.564743 2026] [security2:error] [pid 30445:tid 30445] [client 104.207.43.53:9979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hxctechllc.com"] [uri "/dev/.git/config"] [unique_id "aYqPggzv0dyzHFyvtQfm4wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:34:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:34:24.657133 2026] [security2:error] [pid 14865:tid 14865] [client 104.207.43.53:48035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kevinfranz.com"] [uri "/frontend/.env"] [unique_id "aYp9EOd0H_n1nUgaCFqlHwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:34:53 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:34:42.310497 2026] [security2:error] [pid 19340:tid 19383] [client 104.207.43.53:47267] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honeyled.com"] [uri "/dev/.git/config"] [unique_id "aYpE4rk_Inlp4mxkFSJKRQAAAM0"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-23 14:50:21 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-12-14 12:26:29 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 04:26:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:26:03.829317 2025] [security2:error] [pid 14789:tid 14789] [client 104.207.43.53:11129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ashtangayogamelbourne.com.au"] [uri "/.git/HEAD"] [unique_id "aSUv26BPiU2y34HEhhbawwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:53:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:53:26.987951 2025] [security2:error] [pid 10452:tid 10452] [client 104.207.43.53:57237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.todotex.com"] [uri "/.env"] [unique_id "aSUoNko2_P3biTeEYtiwUgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:23:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:23:18.314397 2025] [security2:error] [pid 14552:tid 14552] [client 104.207.43.53:31287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.foxmm.com"] [uri "/.git/HEAD"] [unique_id "aSUhJjvvJZBGEjG5wzIbMgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:07:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:07:33.178058 2025] [security2:error] [pid 12578:tid 12578] [client 104.207.43.53:29419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.casalaaldehuela.com"] [uri "/.env"] [unique_id "aSUPZW3UJG-S4bWYF5jv4QAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-10-18 04:30:54 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.219

🇬🇧 198.244.183.92

🇻🇪 186.167.85.134

🇸🇬 176.97.117.21

🇺🇸 162.216.149.24

🇨🇳 111.170.27.105

🇷🇴 92.118.39.236

🇺🇸 66.132.186.199

🇺🇸 64.62.156.71

🇨🇦 54.39.6.74

🇨🇦 51.222.95.207

🇳🇱 185.242.226.85

🇫🇷 185.234.69.227

🇨🇦 167.114.139.216

🇮🇩 163.7.9.55

🇺🇸 148.153.188.254

🇬🇧 118.193.64.15

🇨🇳 117.149.196.167

🇧🇩 103.205.134.154

🇺🇸 100.28.153.226