JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.32.40

104.207.32.40 was found in our database!

This IP was reported 153 times. Confidence of Abuse is 12%: ?

12%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.32.40

Whois 104.207.32.40

IP Abuse Reports for 104.207.32.40:

This IP address has been reported a total of 153 times from 19 distinct sources. 104.207.32.40 was first reported on June 7th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-05-29 21:06:10 (1 week ago)	Form spam	Web Spam
🇦🇺 oncord	2026-05-21 18:02:25 (2 weeks ago)	Form spam	Web Spam
🇪🇸 librebit	2026-05-17 04:21:19 (2 weeks ago)	Brute force	Brute-Force
Anonymous	2026-03-05 12:39:36 (3 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-01-06 14:43:10 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 06 09:43:06.601000 2026] [security2:error] [pid 25828:tid 25828] [client 104.207.32.40:13927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grabagame.com"] [uri "/wp-config.php"] [unique_id "aV0fepWXqTYtMrTDCx8BaAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-01-01 11:15:35 (5 months ago)	WP Login Scan Activities	Web App Attack
🇮🇹 Rosh	2025-12-27 14:17:28 (5 months ago)	[12/27/25 15:17:28] 1 attack: /wp-json/wp/v2/users (severity 6);	Web App Attack
🇫🇷 dynamix	2025-12-21 09:19:55 (5 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2025-12-20 15:16:10 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 20 10:16:04.395515 2025] [security2:error] [pid 10085:tid 10085] [client 104.207.32.40:13053] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.zezel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.zezel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aUa9tPtpp3YEr3Loy3dMEAAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 13:33:22 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 08:33:15.647749 2025] [security2:error] [pid 4949:tid 4949] [client 104.207.32.40:31315] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "velocity40.com"] [uri "/.env"] [unique_id "aTl2m97IQ6x96kUPOSMILQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 05:34:14 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 00:34:07.125798 2025] [security2:error] [pid 25981:tid 25981] [client 104.207.32.40:57265] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jaynawilliamsrealty.com"] [uri "/.svn/wc.db"] [unique_id "aTe0z1Kx_Bn5eoE8w04vdQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 00:03:26 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 19:03:18.070279 2025] [security2:error] [pid 21577:tid 21577] [client 104.207.32.40:19335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abstractorangemusic.com"] [uri "/.git/HEAD"] [unique_id "aTdnRrwhKGUmdFcwgrYXUwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 13:59:49 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 08:59:41.848890 2025] [security2:error] [pid 16820:tid 16820] [client 104.207.32.40:15777] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stthomastrainer.com"] [uri "/.git/HEAD"] [unique_id "aTbZzc8K4O0o1_qB867gGQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 03:25:11 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 22:24:58.260828 2025] [security2:error] [pid 25626:tid 25626] [client 104.207.32.40:45971] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "commonwealthcateringky.com"] [uri "/.env"] [unique_id "aTZFChAmUNoJvizgsU20DAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 20:16:10 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.32.40 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 15:16:04.653410 2025] [security2:error] [pid 21725:tid 21725] [client 104.207.32.40:29079] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ayudaclic.com"] [uri "/.git/HEAD"] [unique_id "aTXghM8O66T0YJ7EhBE-0gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 153 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇾 167.56.198.173

🇦🇷 148.222.222.120

🇵🇰 144.48.134.251

🇲🇦 45.219.99.133

🇻🇳 27.79.1.84

🇿🇦 197.184.170.121

🇺🇸 185.238.231.32

🇳🇱 185.223.235.25

🇳🇱 156.253.1.96

🇫🇮 147.185.133.183

🇺🇸 147.185.132.97

🇮🇳 147.93.23.148

🇩🇿 105.99.218.32

🇲🇦 105.77.199.181

🇳🇱 104.194.133.247

🇮🇳 103.100.7.193

🇱🇹 81.30.98.49

🇩🇪 78.111.67.47

🇬🇧 35.203.211.194

🇺🇸 34.135.200.178