JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.232

104.207.38.232 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.232

Whois 104.207.38.232

IP Abuse Reports for 104.207.38.232:

This IP address has been reported a total of 136 times from 17 distinct sources. 104.207.38.232 was first reported on June 6th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-02-23 20:38:23 (3 months ago)	Form spam	Web Spam
🇮🇹 Progetto1	2026-01-30 15:25:02 (4 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:27:24 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 nowyouknow	2026-01-01 12:52:15 (5 months ago)	(From [email protected]) Hi, Are you currently looking for a reliable Digital Market ... show more (From [email protected]) Hi, Are you currently looking for a reliable Digital Marketing Assistant to support your business with tasks like SEO, Google & Meta Ads, Email Marketing, Social Media Management, Order Management, and more? We provide trained, dedicated personnel who work a minimum of 8 hours per day for only $250/month + and your first month is completely free. If you’re interested to afford a full time VA at $250/month after the free month, kindly fill out the form below to get started: Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
Anonymous	2025-12-12 07:44:54 (5 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-26 05:05:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:05:19.519129 2025] [security2:error] [pid 5711:tid 5711] [client 104.207.38.232:32175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.highspringtradingpost.com"] [uri "/.git/HEAD"] [unique_id "aSaKj1zqKKYQANqq4lcwqgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:57:32 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:57:27.521079 2025] [security2:error] [pid 22413:tid 22413] [client 104.207.38.232:50791] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.millergrain.com"] [uri "/.git/HEAD"] [unique_id "aSVFRx0TPB_pyRaO7gFUUgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:34:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:34:37.786061 2025] [security2:error] [pid 28440:tid 28440] [client 104.207.38.232:26325] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.mprise.com"] [uri "/.git/HEAD"] [unique_id "aSU_7c-ui_OcdHAKsiOvZgAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:04:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:04:09.444824 2025] [security2:error] [pid 17429:tid 17429] [client 104.207.38.232:36191] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.brazilianbottom.com"] [uri "/.git/HEAD"] [unique_id "aSUquS_C40NHgllR6WFScQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:58:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:58:37.323802 2025] [security2:error] [pid 23606:tid 23606] [client 104.207.38.232:53521] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.innolympics.com"] [uri "/.svn/wc.db"] [unique_id "aSUbXeCuldYnq2_xs8KNIAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:27:59 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.232 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:27:37.919512 2025] [security2:error] [pid 29071:tid 29071] [client 104.207.38.232:41829] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.avrknives.com"] [uri "/.svn/wc.db"] [unique_id "aSUUGckz6Uxgd31NoaYapgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 techboy117	2025-11-14 00:11:07 (6 months ago)	Blocking due to password spraying.	Brute-Force
🇨🇦 wil.com	2025-10-17 10:52:29 (7 months ago)	GlobalProtect login attempts with user rfannell.	VPN IP Brute-Force
Anonymous	2025-10-17 10:30:44 (7 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-15 19:40:50 (7 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 163.5.241.46

🇺🇸 147.182.219.203

🇨🇳 117.34.85.168

🇱🇹 81.30.98.144

🇫🇷 2a02:4780:27:1888:0:207a:6412:1

🇭🇰 199.45.154.114

🇺🇸 85.208.96.208

🇧🇪 78.21.151.21

🇺🇸 35.232.242.69

🇺🇸 2607:f8b0:4001:c0a::122

🇫🇷 185.177.72.52

🇳🇱 160.119.76.32

🇩🇪 213.209.159.175

🇺🇸 185.180.141.9

🇰🇷 121.142.87.218

🇺🇸 85.208.96.207

🇳🇱 45.148.10.152

🇨🇳 42.100.144.56

🇬🇧 35.203.211.175

🇵🇰 203.124.60.46