JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.32.113

104.207.32.113 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.32.113

Whois 104.207.32.113

IP Abuse Reports for 104.207.32.113:

This IP address has been reported a total of 141 times from 18 distinct sources. 104.207.32.113 was first reported on June 8th 2024, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 01:52:05 (19 hours ago)	Web App Attack	Web App Attack
🇪🇸 masterguru	2026-04-06 13:56:10 (2 months ago)	xmlrpc request blocked, no referer. Pattern match "xmlrpc.php" at REQUEST_URI. (5000900-122)	Web App Attack
🇪🇸 librebit	2026-03-28 01:22:43 (2 months ago)	Brute force	Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:15 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇮🇹 VHosting	2025-12-23 12:30:09 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 nowyouknow	2025-12-17 20:46:52 (6 months ago)	(From [email protected]) Improve wellness-chiropractic-center.com rankings, improve your sear ... show more (From [email protected]) Improve wellness-chiropractic-center.com rankings, improve your search visibility and gain powerful backlinks! BonusBacklinks.com - we provide daily backlinks and drive website visits to your site EVERY DAY: + Use 85% DISCOUNT + Quality daily backlinks + Real website traffic + Price start from $1 + Bonus coupon codes: https://BonusBacklinks.com/85save BonusBacklinks.com - daily backlinks and website clicks to increase your page everyday show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-26 11:50:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 06:50:00.903571 2025] [security2:error] [pid 840:tid 840] [client 104.207.32.113:46013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.edgecombe.net"] [uri "/.git/HEAD"] [unique_id "aSbpaIT8B3VudXajsWehUgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:28:08 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:28:03.938973 2025] [security2:error] [pid 12435:tid 12435] [client 104.207.32.113:23295] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.andiamocomputers.com"] [uri "/.git/HEAD"] [unique_id "aSUGI7EiuC5lG_bOkqlNPwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:05:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:05:23.623596 2025] [security2:error] [pid 17343:tid 17343] [client 104.207.32.113:45741] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.victorg.me"] [uri "/.git/HEAD"] [unique_id "aSP1o_sefSUYKvRcQXdMrgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:00:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:00:12.944984 2025] [security2:error] [pid 28686:tid 28686] [client 104.207.32.113:19489] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.26c.org"] [uri "/.env"] [unique_id "aSPmXF1TDwPmc8LsaKX9-QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-11-15 01:25:02 (7 months ago)		Web Spam
Anonymous	2025-11-14 21:19:19 (7 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇩🇪 london2038.com	2025-10-27 12:13:07 (7 months ago)	Connection atttempts against closed TCP ports Oct 27 13:13:04 BLOCK SRC=104.207.32.113 LEN=60 TOS=0x ... show more Connection atttempts against closed TCP ports Oct 27 13:13:04 BLOCK SRC=104.207.32.113 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=25511 DF PROTO=TCP SPT=28371 DPT=22 WINDOW=64240 RES=0x00 SYN Oct 27 13:13:05 BLOCK SRC=104.207.32.113 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=25512 DF PROTO=TCP SPT=28371 DPT=22 WINDOW=64240 RES=0x00 SYN Oct 27 13:13:06 BLOCK SRC=104.207.32.113 LEN=60 TOS=0x00 PREC=0x00 TTL=54 ID=25513 DF PROTO=TCP SPT=28371 DPT=22 WINDOW=64240 RES=0x00 SYN show less	Port Scan
🇺🇸 nowyouknow	2025-10-25 03:13:02 (7 months ago)	(From [email protected]) Welcome from BonusBacklinks Forget about expensive seo servic ... show more (From [email protected]) Welcome from BonusBacklinks Forget about expensive seo services and backlinks. With BonusBacklinks we build daily backlinks and bring website traffic to your page EVERY DAY! + Take 85% SALE + Trusted daily seo backlinks + Real website visits + Prices start from $1 + Bonus discount codes Use short link - https://tiny.cc/BonusBacklinks-Deal Or enter directly - BonusBacklinks.com BonusBacklinks - daily backlinks and website visits to grow your webpage everyday show less	Phishing Web Spam
🇩🇪 ps-center	2025-10-23 03:39:07 (7 months ago)	MYH-W: TCP-Scanner. Port: 22	Port Scan

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.41

🇺🇸 147.185.132.83

🇳🇱 83.168.106.26

🇺🇸 20.29.116.172

🇷🇴 2.57.121.25

🇺🇸 208.109.52.213

🇺🇸 205.210.31.80

🇨🇳 183.202.251.135

🇺🇸 162.216.150.137

🇺🇸 172.202.117.125

🇩🇪 167.94.146.47

🇰🇷 112.216.129.27

🇳🇱 51.158.248.122

🇧🇷 43.164.192.38

🇳🇱 195.178.110.113

🇨🇳 182.138.158.109

🇨🇳 120.216.220.14

🇫🇮 80.223.192.112

🇺🇸 66.132.195.80

🇨🇳 223.107.233.71