JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 174.136.204.40

174.136.204.40 was found in our database!

This IP was reported 59 times. Confidence of Abuse is 0%: ?

ISP	DMIT Cloud Services
Usage Type	Data Center/Web Hosting/Transit
ASN	AS906
Hostname(s)	Host-By.DMIT.com
Domain Name	dmit.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 174.136.204.40

Whois 174.136.204.40

IP Abuse Reports for 174.136.204.40:

This IP address has been reported a total of 59 times from 22 distinct sources. 174.136.204.40 was first reported on November 13th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 GunsawianHosting	2026-03-12 17:08:57 (2 months ago)	Open Proxy	Open Proxy
🇦🇱 cheatmaster.store	2026-02-27 01:34:23 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: United States Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇵🇱 cheatmaster.store	2026-02-25 23:26:04 (3 months ago)	Automated report: This IP address has been identified as an active high anonymity/private proxy. Cla ... show more Automated report: This IP address has been identified as an active high anonymity/private proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: United States Threat level: High. This host is listed across multiple private proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. show less	Web Spam Port Scan Web App Attack
🇮🇹 cheatmaster.store	2026-02-25 10:23:50 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: United States Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇦🇺 MAGIC	2026-02-23 01:05:35 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-21 00:13:44 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 174.136.204.40 (Host-By.DMIT.com): 1 in the las ... show more (mod_security) mod_security (id:210730) triggered by 174.136.204.40 (Host-By.DMIT.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Feb 20 19:13:38.138476 2026] [security2:error] [pid 17514:tid 17514] [client 174.136.204.40:31886] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|thevillageartcenter.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "thevillageartcenter.com"] [uri "/mailto:[email protected]"] [unique_id "aZj4stdH2d_UbFIlyAKHxgAAAAU"], referer: http://thevillageartcenter.com/contact.html show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Murazaki	2026-02-19 23:39:21 (3 months ago)	lemmy.balamb.fr 174.136.204.40 - - [19/Feb/2026:23:41:34 +0100] "CONNECT lemmy.balamb.fr:443 HTTP/1. ... show more lemmy.balamb.fr 174.136.204.40 - - [19/Feb/2026:23:41:34 +0100] "CONNECT lemmy.balamb.fr:443 HTTP/1.1" 405 150 "-" "-" "-" ... show less	Hacking
🇺🇸 TPI-Abuse	2026-02-18 09:29:31 (3 months ago)	(mod_security) mod_security (id:211170) triggered by 174.136.204.40 (Host-By.DMIT.com): 1 in the las ... show more (mod_security) mod_security (id:211170) triggered by 174.136.204.40 (Host-By.DMIT.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 04:29:27.803182 2026] [security2:error] [pid 2015:tid 2015] [client 174.136.204.40:29512] ModSecurity: Access denied with code 403 (phase 2). Match of "contains %{SERVER_NAME}" against "REQUEST_HEADERS:Referer" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "45"] [id "211170"] [rev "6"] [msg "COMODO WAF: Session Fixation: SessionID Parameter Name with Off-Domain Referer\|\|www.thecrimsonpirate.com\|F\|2"] [data "Matched Data: 174.136.204.40 found within ARGS_NAMES:PHPSESSID: http://thecrimsonpirate.com/forum/index.php"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thecrimsonpirate.com"] [uri "/forum/index.php"] [unique_id "aZWGd8oRWd_3bQsPhbf8HgAAAAc"], referer: http://thecrimsonpirate.com/forum/index.php show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 madeit	2026-02-15 09:33:36 (3 months ago)		Web App Attack
🇧🇪 DrLex0	2026-02-10 21:03:00 (4 months ago)	BnL002: GET with absolute URL, obvious botnet minion; either attempt to find exploitable proxy, or j ... show more BnL002: GET with absolute URL, obvious botnet minion; either attempt to find exploitable proxy, or just plain stupidity from whomever wrote this piece of crap show less	Hacking Bad Web Bot Exploited Host
🇺🇸 TPI-Abuse	2026-02-08 06:43:39 (4 months ago)	(mod_security) mod_security (id:210740) triggered by 174.136.204.40 (Host-By.DMIT.com): 1 in the las ... show more (mod_security) mod_security (id:210740) triggered by 174.136.204.40 (Host-By.DMIT.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 01:43:32.110304 2026] [security2:error] [pid 29422:tid 29422] [client 174.136.204.40:18716] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy\|\|my-pitch.org:443\|F\|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "my-pitch.org"] [uri "/"] [unique_id "aYgwlGf6UNpR4WafWz5kiQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Murazaki	2026-02-07 23:17:17 (4 months ago)	lemmy.balamb.fr 174.136.204.40 - - [07/Feb/2026:16:05:29 +0100] "CONNECT lemmy.balamb.fr:443 HTTP/1. ... show more lemmy.balamb.fr 174.136.204.40 - - [07/Feb/2026:16:05:29 +0100] "CONNECT lemmy.balamb.fr:443 HTTP/1.1" 405 150 "-" "-" "-" ... show less	Hacking
🇨🇭 Origon	2026-02-07 22:45:53 (4 months ago)	http-open-proxy - IP: 174.136.204.40 - time="2026-02-07T23:45:53+01:00" level=info msg="(555f66b4f6 ... show more http-open-proxy - IP: 174.136.204.40 - time="2026-02-07T23:45:53+01:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-open-proxy by ip 174.136.204.40 (US/906) : 4h ban on Ip 174.136.204.40" module=db show less	Web App Attack
🇧🇪 madeit	2026-02-07 00:50:09 (4 months ago)		Web App Attack
🇧🇪 DrLex0	2026-02-01 06:32:41 (4 months ago)	BnL002: GET with absolute URL, obvious botnet minion; either attempt to find exploitable proxy, or j ... show more BnL002: GET with absolute URL, obvious botnet minion; either attempt to find exploitable proxy, or just plain stupidity from whomever wrote this piece of crap show less	Hacking Bad Web Bot Exploited Host

Showing 1 to 15 of 59 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.233.111.246

🇩🇪 141.11.45.97

🇮🇳 117.247.108.24

🇺🇸 107.175.108.23

🇺🇸 104.243.35.34

🇫🇷 91.231.89.207

🇨🇳 42.193.141.153

🇨🇳 202.105.98.252

🇺🇸 162.216.150.114

🇻🇳 113.190.40.93

🇱🇹 45.227.254.170

🇳🇱 45.148.10.157

🇳🇱 45.142.193.35

🇸🇬 43.134.35.72

🇲🇽 187.140.79.156

🇩🇪 178.105.239.140

🇫🇷 164.68.103.226

🇺🇸 162.216.150.201

🇷🇺 82.208.107.215

🇨🇳 60.220.241.50