JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.32.136

104.207.32.136 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.32.136

Whois 104.207.32.136

IP Abuse Reports for 104.207.32.136:

This IP address has been reported a total of 149 times from 19 distinct sources. 104.207.32.136 was first reported on June 22nd 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-23 05:12:12 (2 weeks ago)		Bad Web Bot
🇦🇺 RedBear IT	2026-03-26 10:00:37 (2 months ago)	"DDoS against public endpoint"	DDoS Attack
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:38 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-15 12:25:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:25:45.544752 2026] [security2:error] [pid 30969:tid 30969] [client 104.207.32.136:58007] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "parkhan.com"] [uri "/admin/.env"] [unique_id "aZG7SUyXXlIkUziV4_2H5QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:44:52 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:44:48.597320 2026] [security2:error] [pid 25876:tid 25876] [client 104.207.32.136:28853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "qcyprus.com"] [uri "/backend/.env"] [unique_id "aZGxsDWGkdoZGsKEuu5C3wAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:59:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:59:16.670102 2026] [security2:error] [pid 1809:tid 1809] [client 104.207.32.136:63673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ospectra.com"] [uri "/v2/.git/config"] [unique_id "aZGnBIgXrNxjMtNSvkHbdwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:19:54 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:19:51.375857 2026] [security2:error] [pid 25507:tid 25507] [client 104.207.32.136:28063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "onlineteacher.info"] [uri "/dev/.git/config"] [unique_id "aZFlh2vOvtRr7K_RsAhPsAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:00:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:00:26.910036 2026] [security2:error] [pid 3971:tid 3971] [client 104.207.32.136:46675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarawagnergrants.com"] [uri "/.env.staging"] [unique_id "aZFS6hF7mY2W1hZHG7BT_wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:27:21 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:27:13.903497 2026] [security2:error] [pid 314087:tid 314102] [client 104.207.32.136:21723] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "number1synthetic.com"] [uri "/admin/.git/config"] [unique_id "aZFLIeYxiADdM-D-ZqVShgAAAEw"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-02-15 04:13:36 (3 months ago)	(modsecurity) srv104 ModSecurity 104.207.32.136 (US/United States/-): 5 in the last 3600 secs; Ports ... show more (modsecurity) srv104 ModSecurity 104.207.32.136 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:10:16 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:10:09.838337 2026] [security2:error] [pid 12415:tid 12415] [client 104.207.32.136:39319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerkiteforum.com"] [uri "/v2/.git/config"] [unique_id "aZFHIS-1Hm8W1ohXxSIP2gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 ddw	2026-02-15 04:05:00 (3 months ago)	Multiple ModSecurity detections - Rules: 930130(Restricted File Access Attempt)	Web App Attack
🇩🇪 paissangroup	2026-02-15 03:44:07 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:39:43 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:39:39.439376 2026] [security2:error] [pid 29682:tid 29682] [client 104.207.32.136:36219] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noramsg.com"] [uri "/.env.save"] [unique_id "aZE_-7qJGe0eshswlQhRkQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:39:25 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.136 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:39:17.508946 2026] [security2:error] [pid 14122:tid 14122] [client 104.207.32.136:34497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nhglassmakers.org"] [uri "/api/.env"] [unique_id "aZEx1VjmSWHsgUbCz-odowAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.177.179.79

🇨🇴 181.48.39.89

🇳🇱 178.16.55.161

🇲🇦 154.144.225.226

🇮🇩 103.173.138.151

🇫🇷 85.204.70.112

🇺🇸 2605:6400:20:ff9::1

🇺🇸 205.210.31.43

🇳🇱 204.76.203.206

🇨🇳 139.155.126.16

🇮🇹 130.25.4.132

🇵🇭 120.28.194.248

🇸🇾 109.224.242.13

🇮🇩 103.244.107.93

🇸🇬 103.20.122.54

🇺🇸 67.241.132.98

🇲🇽 38.194.231.66

🇺🇸 23.98.142.186

🇦🇪 20.203.42.204

🇬🇧 2a00:23c8:9857:f601:ed91:fe0d:7132:62a3