JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.32

104.207.37.32 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.32

Whois 104.207.37.32

IP Abuse Reports for 104.207.37.32:

This IP address has been reported a total of 156 times from 25 distinct sources. 104.207.37.32 was first reported on June 7th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 BlueWire Hosting	2026-05-07 08:55:27 (1 month ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
🇨🇳 ThreatBook.io	2026-04-23 22:59:48 (1 month ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/104.207.37.32 2026-04-23 06 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/104.207.37.32 2026-04-23 06:36:08 /bc4j.jsp 2026-04-23 06:41:51 / 2026-04-23 06:40:14 /twiki 2026-04-23 06:41:56 / 2026-04-23 06:41:59 /code 2026-04-23 06:41:41 /static/images/ 2026-04-23 06:42:02 / 2026-04-23 06:41:53 / 2026-04-23 06:42:01 / 2026-04-23 06:41:49 / show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 00:42:49 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 19:42:46.554301 2026] [security2:error] [pid 4453:tid 4453] [client 104.207.37.32:33727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "srtmgmt.com.srtmanagementservices.com"] [uri "/.git/config"] [unique_id "aZz0BnsnF7dflcaC2R3WKgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 18:09:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 13:09:53.197596 2026] [security2:error] [pid 23901:tid 23901] [client 104.207.37.32:12857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brunswickcemeteries.org.johnpritchett.com"] [uri "/.git/config"] [unique_id "aZyX8avKwvDs6Sl39tdyWwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 15:46:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 10:46:46.720184 2026] [security2:error] [pid 30595:tid 30641] [client 104.207.37.32:21017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chronotar.maxelon.com"] [uri "/.git/config"] [unique_id "aZx2Zj_FDTRdPd2WsgWU0AAAAYY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 14:37:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 09:37:01.635081 2026] [security2:error] [pid 1282:tid 1282] [client 104.207.37.32:32781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "genevaatlantic.com.somehand.com"] [uri "/.git/config"] [unique_id "aZxmDZhWNoCz75FcFbGIYAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 COMAITE	2026-02-05 23:01:31 (4 months ago)	Common web attack from 104.207.37.32.	Web App Attack
Anonymous	2026-01-08 19:38:32 (4 months ago)	08-01-2026 20:38:31.1 ERROR util.AccessViolations - 104.207.37.32 report to fail2ban - action: block ... show more 08-01-2026 20:38:31.1 ERROR util.AccessViolations - 104.207.37.32 report to fail2ban - action: block ... show less	Hacking Brute-Force Bad Web Bot
🇩🇪 HandyTreff.de	2026-01-06 05:35:18 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -38.704 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -38.704 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0 show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 20:11:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 15:11:04.469151 2025] [security2:error] [pid 9222:tid 9222] [client 104.207.37.32:12523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.foros2cn.vientodelevante.es"] [uri "/.git/HEAD"] [unique_id "aSde2KhSf-81KdP4vVliEgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 13:20:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 08:20:12.656515 2025] [security2:error] [pid 23948:tid 23948] [client 104.207.37.32:47063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dyckia.fritsknuf.com"] [uri "/.env"] [unique_id "aSb-jLGBbHgL3RXc1c6gZwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 06:16:39 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:16:33.642022 2025] [security2:error] [pid 11416:tid 11416] [client 104.207.37.32:44743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.erinrusso.com"] [uri "/.env"] [unique_id "aSVJwZ9PqI_hjxY1zy3CyQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:53:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:52:56.236571 2025] [security2:error] [pid 27529:tid 27529] [client 104.207.37.32:32235] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.antech.net"] [uri "/.git/HEAD"] [unique_id "aSVEOPjXTlhrVR0pxdfyvwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:28:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:28:46.629934 2025] [security2:error] [pid 29009:tid 29009] [client 104.207.37.32:57285] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.syconline.com"] [uri "/.svn/wc.db"] [unique_id "aSU-jtdXazhk04t6eYyBNAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:21:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.32 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:21:20.419469 2025] [security2:error] [pid 18263:tid 18263] [client 104.207.37.32:23199] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.portraitgalleria.vittariadesign.com"] [uri "/.env"] [unique_id "aSUuwMB-epMkly4IfskDcAAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.160.220.149

🇺🇦 194.44.78.189

🇩🇪 193.228.139.227

🇨🇦 192.53.123.118

🇯🇵 167.179.84.244

🇹🇼 165.154.227.158

🇺🇸 147.185.132.15

🇨🇳 111.26.106.117

🇺🇸 104.168.4.239

🇭🇰 103.20.223.56

🇸🇬 94.231.206.8

🇳🇱 91.92.42.147

🇷🇴 80.94.92.186

🇯🇵 52.103.43.86

🇯🇵 34.146.174.150

🇩🇪 34.107.14.201

🇰🇷 34.64.91.35

🇩🇪 213.209.159.231

🇩🇪 212.132.127.66

🇨🇳 171.212.115.69