JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.48.43

104.207.48.43 was found in our database!

This IP was reported 139 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.48.43

Whois 104.207.48.43

IP Abuse Reports for 104.207.48.43:

This IP address has been reported a total of 139 times from 20 distinct sources. 104.207.48.43 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇹 NotACaptcha	2026-02-26 01:48:29 (3 months ago)	webserver:80 [26/Feb/2026] "GET /.env HTTP/1.1" 404 397 "-" "python-requests/2.32.5"	Web App Attack
🇨🇦 SSH-Admin	2026-02-07 17:12:28 (3 months ago)	Probing for Exploits	Exploited Host Web App Attack
🇺🇸 nowyouknow	2026-01-01 12:10:16 (5 months ago)	(From [email protected]) Hello, Full-time Digital Marketing Assistant for $250/month, fi ... show more (From [email protected]) Hello, Full-time Digital Marketing Assistant for $250/month, first month free. Covers SEO, ads, email, social media, and daily marketing tasks. Fill out the form to get started. Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:48 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 oncord	2025-12-27 21:40:23 (5 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-24 03:26:40 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 23 22:26:24.156267 2025] [security2:error] [pid 14077:tid 14077] [client 104.207.48.43:59707] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adoniahenterprises.com"] [uri "/goober_.htaccess"] [unique_id "aUtdYMWPridzl0f6AB-4JAAAABE"], referer: https://adoniahenterprises.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 SSH-Admin	2025-12-01 02:33:03 (6 months ago)	Probing for Exploits	Exploited Host Web App Attack
Anonymous	2025-11-24 12:13:18 (6 months ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:25:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:22:28.168600 2025] [security2:error] [pid 28590:tid 28590] [client 104.207.48.43:41523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.dannisinn.com"] [uri "/.svn/wc.db"] [unique_id "aSQHtDszJkc1vG-_5TNhAgAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:43:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:43:22.753537 2025] [security2:error] [pid 9646:tid 9646] [client 104.207.48.43:27339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "creativeinteriors.co.com"] [uri "/.env"] [unique_id "aSPweoSknACKQnclqFeuaAAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:05:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.48.43 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:04:55.992316 2025] [security2:error] [pid 27783:tid 27783] [client 104.207.48.43:50097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.oxfordgrpco.com"] [uri "/.git/HEAD"] [unique_id "aSPZZx67Co31rBiyZ3GUJwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-02 06:41:28 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-30 17:44:50 (7 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-30 05:28:53 (7 months ago)	wordpress-trap	Web App Attack
🇦🇺 AWW-Admin	2025-10-29 13:58:31 (7 months ago)	(wordpress) Failed wordpress login from 104.207.48.43 (BR/Brazil/-)	Brute-Force

Showing 1 to 15 of 139 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.68.218.124

🇧🇷 201.63.138.70

🇳🇱 178.16.54.74

🇮🇩 113.192.31.57

🇩🇪 109.91.4.177

🇺🇸 66.132.186.194

🇨🇦 62.169.135.9

🇺🇸 50.116.72.139

🇳🇱 45.156.87.254

🇺🇸 216.180.246.86

🇷🇺 178.18.12.21

🇭🇰 103.218.241.7

🇪🇬 81.10.109.54

🇺🇸 3.22.100.15

🇷🇴 2.57.121.112

🇺🇸 198.46.168.51

🇲🇴 182.93.50.90

🇺🇸 165.154.254.143

🇺🇸 64.62.197.132

🇩🇪 47.254.151.194