JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.43.56

104.207.43.56 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.43.56

Whois 104.207.43.56

IP Abuse Reports for 104.207.43.56:

This IP address has been reported a total of 156 times from 26 distinct sources. 104.207.43.56 was first reported on June 5th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-15 00:33:48 (1 month ago)	Brute force	Brute-Force
🇺🇸 oncord	2026-02-19 08:28:03 (4 months ago)	Form spam	Web Spam
🇳🇱 MacLotsen	2026-02-16 07:39:29 (4 months ago)	Violated robots.txt	Web Spam
🇳🇱 MacLotsen	2026-02-13 04:27:29 (4 months ago)	Violated robots.txt	Web Spam
🇹🇷 rtbh.com.tr	2026-02-12 04:11:31 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-02-10 20:11:30 (4 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-02-10 15:32:53 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:32:49.747873 2026] [security2:error] [pid 9229:tid 9229] [client 104.207.43.56:39753] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "10bestcountryclubs.com"] [uri "/backup/.git/config"] [unique_id "aYtPoVNnRlLqvEh5E0eEoQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:13:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:13:13.356420 2026] [security2:error] [pid 19929:tid 20011] [client 104.207.43.56:16339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koliosfoods.com"] [uri "/api/.git/config"] [unique_id "aYrMeVn6EEqOJQgSnk0RgwAAAMo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:37:30 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:37:22.717608 2026] [security2:error] [pid 12746:tid 12782] [client 104.207.43.56:45273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "koalacogs.com"] [uri "/dev/.git/config"] [unique_id "aYrEEi7qoT-4nEbOWPXtuAAAAMc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:24:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:23:54.320857 2026] [security2:error] [pid 27874:tid 27874] [client 104.207.43.56:34527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kircali.net"] [uri "/app/.env"] [unique_id "aYqkyvdBCuKs92qQLfZeUQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:34:57 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.43.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:34:51.908839 2026] [security2:error] [pid 10849:tid 10849] [client 104.207.43.56:28207] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kellermoving.com"] [uri "/v2/.git/config"] [unique_id "aYpvG_zFc1_X93wT45qnZgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-02-09 21:50:25 (4 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ksol-hostmaster	2026-02-09 21:25:15 (4 months ago)	2026/02/09 22:25:15 [error] 81464#103375: 1672404 access forbidden by rule, client: 104.207.43.56, ... show more 2026/02/09 22:25:15 [error] 81464#103375: 1672404 access forbidden by rule, client: 104.207.43.56, server: karolyimusic.com, request: "GET /site/.git/config HTTP/1.1", host: "karolyimusic.com" ... show less	Web Spam
🇺🇸 oncord	2026-02-08 21:08:38 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-06 12:31:49 (4 months ago)	Form spam	Web Spam

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.194

🇧🇷 189.51.43.54

🇷🇺 178.65.206.24

🇮🇳 103.173.20.69

🇳🇬 102.90.109.80

🇽🇰 91.187.112.249

🇧🇪 34.156.163.45

🇲🇾 219.93.103.9

🇺🇸 216.180.246.243

🇧🇪 198.235.24.184

🇧🇷 189.113.8.254

🇨🇳 124.174.70.250

🇬🇧 51.195.244.120

🇪🇬 41.43.137.67

🇺🇸 34.123.134.194

🇨🇱 216.155.93.75

🇩🇪 213.209.159.227

🇺🇸 203.161.54.251

🇳🇱 185.242.226.97

🇳🇱 178.62.216.118