JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.32.16

104.207.32.16 was found in our database!

This IP was reported 103 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.32.16

Whois 104.207.32.16

IP Abuse Reports for 104.207.32.16:

This IP address has been reported a total of 103 times from 19 distinct sources. 104.207.32.16 was first reported on June 5th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-01-11 01:26:07 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:02:10 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 inspectorgdgt	2025-12-26 22:00:33 (5 months ago)	Credential brute-force login attempts observed (e.g., SSLVPN/auth failures).	Brute-Force
🇦🇺 MAGIC	2025-12-12 01:06:23 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 omc	2025-12-11 15:02:24 (5 months ago)	Web form exploit	Spoofing
Anonymous	2025-12-04 07:32:36 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 07:42:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 02:42:05.764601 2025] [security2:error] [pid 23313:tid 23313] [client 104.207.32.16:47551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.frelsburg.com.cajunfriedturkey.com"] [uri "/.git/HEAD"] [unique_id "aSavTaS9UopQnWHduL7B9AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:08:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:07:56.623706 2025] [security2:error] [pid 22336:tid 22336] [client 104.207.32.16:17079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.numberonerealtors.com"] [uri "/.git/HEAD"] [unique_id "aSaZPOj69B9yt4SsfZr4mwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:34:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:34:47.251572 2025] [security2:error] [pid 24930:tid 24930] [client 104.207.32.16:28711] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.grampys.toys"] [uri "/.git/HEAD"] [unique_id "aSUVxwFcQHvyFVKqmlS6zgAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:39:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:38:55.730349 2025] [security2:error] [pid 28827:tid 28920] [client 104.207.32.16:33045] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "losersoftheyear.ceol.us"] [uri "/.svn/wc.db"] [unique_id "aST6n_bnrbvsbZk6Ob4_DAAAAJY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:46:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:46:12.408073 2025] [security2:error] [pid 24361:tid 24361] [client 104.207.32.16:14663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.timbrazier.com"] [uri "/.git/HEAD"] [unique_id "aSQpZJkup3X3DMJtNRuG1wAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:54:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:54:34.662594 2025] [security2:error] [pid 25293:tid 25293] [client 104.207.32.16:53485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.wendykim.com"] [uri "/.env"] [unique_id "aSQPOjMNoitD5lywwqb86AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:25:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:25:43.322179 2025] [security2:error] [pid 22758:tid 22758] [client 104.207.32.16:20713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.berntson.org"] [uri "/.env"] [unique_id "aSPeR4dEolP6v6ADQh_NwgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:50:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:50:03.335618 2025] [security2:error] [pid 21935:tid 21935] [client 104.207.32.16:57587] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rotarymagnetics.com"] [uri "/.svn/wc.db"] [unique_id "aSPV68NZT29GywuBYpQT2AAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:35:04 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:34:45.735397 2025] [security2:error] [pid 25434:tid 25434] [client 104.207.32.16:19639] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.freedomforcefive.com"] [uri "/.env"] [unique_id "aSPSVQzrOimpfuWLS9YoZAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 103 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.68

🇧🇷 170.247.40.247

🇳🇱 160.119.71.12

🇦🇺 149.118.68.211

🇨🇳 113.218.223.175

🇧🇬 81.177.213.165

🇷🇴 80.94.92.187

🇫🇷 3.165.136.121

🇨🇳 1.94.214.157

🇬🇧 217.154.38.181

🇨🇴 186.146.235.58

🇨🇳 175.147.222.119

🇭🇰 152.32.132.28

🇨🇳 43.226.39.182

🇸🇴 197.231.202.201

🇲🇰 185.56.250.202

🇫🇷 181.215.94.6

🇺🇸 162.216.149.220

🇵🇪 161.132.50.236

🇺🇸 156.232.13.218