JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.32.200.76

89.32.200.76 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	trafficforce, UAB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	trafficforce.lt
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.32.200.76

Whois 89.32.200.76

IP Abuse Reports for 89.32.200.76:

This IP address has been reported a total of 4 times from 3 distinct sources. 89.32.200.76 was first reported on December 1st 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-03-27 00:22:26 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 89.32.200.76 (LT/Lithuania/-): 1 in ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 89.32.200.76 (LT/Lithuania/-): 1 in the last 3600 secs show less	Web App Attack
Anonymous	2025-12-08 01:10:01 (6 months ago)	\| Common web attack.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 21:54:30 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 89.32.200.76 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 89.32.200.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 16:54:22.501826 2025] [security2:error] [pid 27633:tid 27633] [client 89.32.200.76:41519] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.farmers123.com"] [uri "/.git/config"] [unique_id "aS9gDtGpVQApbq6nIhRmNwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 06:20:07 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 89.32.200.76 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 89.32.200.76 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 01:19:57.851115 2025] [security2:error] [pid 27471:tid 27506] [client 89.32.200.76:51423] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.net\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.net"] [uri "/...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\...\\\\windows\\\\win.ini"] [unique_id "aS0zjXLXOKC0tXS7y0knqgAAAJI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.96.139.71

🇩🇪 194.164.203.46

🇺🇸 154.83.197.108

🇮🇳 152.59.153.202

🇳🇬 152.32.143.189

🇩🇪 139.19.117.197

🇨🇳 106.75.141.181

🇯🇴 91.186.252.47

🇺🇸 38.110.4.150

🇬🇧 35.203.210.57

🇳🇱 34.6.153.109

🇮🇳 223.233.85.174

🇷🇴 193.46.255.86

🇩🇪 144.76.23.77

🇭🇰 103.146.159.173

🇹🇷 78.182.199.4

🇬🇧 51.89.129.225

🇱🇹 45.227.254.170

🇭🇰 45.114.125.24

🇨🇳 36.24.183.201