JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.32.104

104.207.32.104 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.32.104

Whois 104.207.32.104

IP Abuse Reports for 104.207.32.104:

This IP address has been reported a total of 144 times from 19 distinct sources. 104.207.32.104 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇴 Fn4ticHz	2026-05-09 13:41:53 (1 month ago)	Repeated DDoS targeted -- ZeroGuard X ManagedSRV	DDoS Attack Exploited Host
🇵🇱 sefinek.net	2026-02-12 16:32:03 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:24 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇪🇸 10dencehispahard SL	2025-12-29 09:16:45 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 TPI-Abuse	2025-12-23 23:38:12 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 23 18:38:08.679569 2025] [security2:error] [pid 11276:tid 11276] [client 104.207.32.104:54881] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|jolankagroup.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jolankagroup.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aUsn4FeReo00QZ9N6jF7jwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 06:41:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 01:41:01.018568 2025] [security2:error] [pid 30773:tid 30773] [client 104.207.32.104:35019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "microscopicpablo.com"] [uri "/.env"] [unique_id "aTfEfU_Cc39-NnyS5_4ujQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 06:31:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 01:31:09.915194 2025] [security2:error] [pid 32161:tid 32161] [client 104.207.32.104:44273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lukeschicago.com"] [uri "/.svn/wc.db"] [unique_id "aTZwrdWjVfVQuwa2SREnhAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 03:58:27 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:58:21.995411 2025] [security2:error] [pid 16292:tid 16292] [client 104.207.32.104:43147] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "club1069radio.com"] [uri "/.svn/wc.db"] [unique_id "aTZM3bkVCQxnGaimYKIwMwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 11:24:06 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 06:23:59.481420 2025] [security2:error] [pid 9440:tid 9440] [client 104.207.32.104:55685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barkatthemoonpetsitting.com"] [uri "/.env"] [unique_id "aTLAz0i2De_fSRpMfDFu2gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 09:14:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 04:14:42.217931 2025] [security2:error] [pid 23199:tid 23199] [client 104.207.32.104:10841] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kraftrentals.com"] [uri "/.svn/wc.db"] [unique_id "aTKigkMyLjiUojBt6R3IgAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 03:37:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 22:37:36.710987 2025] [security2:error] [pid 29762:tid 29762] [client 104.207.32.104:32543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pappakotis.com"] [uri "/.env"] [unique_id "aTJTgJUoCk0ZxYDaYaQdrwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:45:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.104 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:45:01.213919 2025] [security2:error] [pid 6106:tid 6106] [client 104.207.32.104:30917] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "konar-steenberg.com"] [uri "/.git/HEAD"] [unique_id "aTJHLZwMPKyB4obGq5mtJQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 kjaerulff	2025-12-04 04:19:08 (6 months ago)	Failed Wordpress login using wp-login.php	Web App Attack
🇺🇸 Dolphi	2025-11-07 21:41:12 (7 months ago)	Excessive POST /xmlrpc.php requests	Brute-Force Web App Attack
Anonymous	2025-10-30 14:46:17 (7 months ago)	WordPress Brute Force	Brute-Force

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 115.85.80.12

🇺🇸 191.101.33.114

🇬🇧 172.236.19.70

🇺🇸 162.216.149.213

🇭🇰 152.32.189.128

🇨🇳 122.243.75.25

🇷🇺 91.238.28.186

🇺🇸 85.208.96.208

🇺🇸 64.62.197.33

🇨🇳 58.23.78.190

🇲🇾 47.250.38.64

🇩🇪 47.91.89.133

🇮🇹 45.143.182.238

🇨🇳 27.17.151.63

🇺🇸 13.89.125.30

🇧🇷 200.175.61.207

🇷🇴 193.29.13.167

🇬🇧 185.216.145.163

🇺🇸 172.191.178.196

🇨🇦 142.181.26.182