JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.32.195

104.207.32.195 was found in our database!

This IP was reported 160 times. Confidence of Abuse is 13%: ?

13%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.32.195

Whois 104.207.32.195

IP Abuse Reports for 104.207.32.195:

This IP address has been reported a total of 160 times from 24 distinct sources. 104.207.32.195 was first reported on June 11th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 05:09:49 (3 weeks ago)	Brute force	Brute-Force
🇬🇧 PeravixGroup	2026-05-06 13:42:11 (1 month ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 oncord	2026-04-21 10:49:40 (1 month ago)	Form spam	Web Spam
🇫🇷 pm33	2026-02-13 08:05:05 (3 months ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇷🇺 DZBOT	2026-02-13 06:16:35 (3 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 mnsf	2026-02-13 06:05:33 (3 months ago)	Too many Status 50X (14) Scanning/Probing (13)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:45:36 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:45:31.367901 2026] [security2:error] [pid 30974:tid 30974] [client 104.207.32.195:41399] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kikopoke.com"] [uri "/api/.git/config"] [unique_id "aY6eW2iUMpGYeFfjPhhYvAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 paissangroup	2026-02-13 03:43:16 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-13 03:14:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 22:14:30.572128 2026] [security2:error] [pid 16080:tid 16080] [client 104.207.32.195:18143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kfraser.com"] [uri "/backup/.git/config"] [unique_id "aY6XFsakxXLWI409B26IxAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2026-02-13 02:44:35 (3 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-02-12 14:29:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 12 09:29:32.116855 2026] [security2:error] [pid 4337:tid 4337] [client 104.207.32.195:17391] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apfarrell.com"] [uri "/.git/config"] [unique_id "aY3jzPOwIrDeKMlT6djyDQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 22:06:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 17:06:43.626491 2026] [security2:error] [pid 11280:tid 11280] [client 104.207.32.195:64849] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cozydesignae.com"] [uri "/.git/config"] [unique_id "aYz9c7t021HQC8liL_wCkgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 23:29:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 18:29:22.902534 2026] [security2:error] [pid 2781000:tid 2781000] [client 104.207.32.195:48533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coolingsprings.org"] [uri "/wp/.git/config"] [unique_id "aYu_UrcdaGsjGBhA3lzdZgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 21:46:54 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 16:46:47.620502 2026] [security2:error] [pid 25346:tid 25346] [client 104.207.32.195:27815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eccentric-illusions.com"] [uri "/.env.production"] [unique_id "aYunR8Kh5QSTPOg3PxAhOgAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 06:11:59 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 01:11:50.967171 2026] [security2:error] [pid 11745:tid 11745] [client 104.207.32.195:37431] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gfsprod.com"] [uri "/.env.staging"] [unique_id "aYrMJn3vMGDgBx3JhgdhSAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 160 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 204.168.191.223

🇸🇦 145.82.190.231

🇧🇷 43.164.197.117

🇺🇸 34.162.243.95

🇰🇷 222.239.251.12

🇸🇪 213.21.235.179

🇩🇪 193.124.20.252

🇲🇽 187.243.206.89

🇲🇩 95.153.106.96

🇫🇷 92.205.184.118

🇬🇧 89.37.172.153

🇷🇴 80.94.92.164

🇺🇸 77.220.195.146

🇫🇷 51.68.65.117

🇺🇸 43.153.26.165

🇿🇦 41.181.156.205

🇷🇴 2.57.122.177

🇸🇦 142.154.27.230

🇰🇷 113.131.177.231

🇮🇳 98.70.3.41