JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.107

104.207.33.107 was found in our database!

This IP was reported 154 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.107

Whois 104.207.33.107

IP Abuse Reports for 104.207.33.107:

This IP address has been reported a total of 154 times from 25 distinct sources. 104.207.33.107 was first reported on June 5th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2026-03-22 15:27:38 (3 months ago)	IM360 WAF: Laravel .env file access	Web App Attack
🇫🇮 as211431.net	2026-03-18 22:31:26 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 windowsforum	2026-03-10 09:36:06 (3 months ago)	Spam bot registration: triggers=timing, js_challenge, inv_honeypot, pow_fail, username=TroyLeddy	Web Spam Bad Web Bot
🇩🇪 stinpriza	2026-01-30 16:13:56 (4 months ago)	Web App Attack	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-20 06:39:43 (5 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇺🇸 myagent.site	2026-01-15 08:39:45 (5 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇩🇪 Vegascosmetics	2026-01-13 22:50:49 (5 months ago)	Kingcopy(AI-IDS):IP does Multiple AWS Environment Abuse	Hacking Web App Attack
Anonymous	2026-01-13 11:40:01 (5 months ago)	www.informatikaiallasok.com:80 104.207.33.107 - - [13/Jan/2026:12:33:14 +0100] "GET /.git/HEAD HTTP/ ... show more www.informatikaiallasok.com:80 104.207.33.107 - - [13/Jan/2026:12:33:14 +0100] "GET /.git/HEAD HTTP/1.1" 302 590 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Edg/119.0.0.0" show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-13 10:49:18 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 05:49:12.066278 2026] [security2:error] [pid 21378:tid 21378] [client 104.207.33.107:9091] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "berlatinc.com"] [uri "/.git/HEAD"] [unique_id "aWYjKICesYeeiuY1fKYyQgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-08 21:13:59 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-11-25 05:31:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:31:19.015033 2025] [security2:error] [pid 5444:tid 5444] [client 104.207.33.107:55961] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.directoryofdrugs.com"] [uri "/.git/HEAD"] [unique_id "aSU_JyMCI_JrYrYfzwggcQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:37:05 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:36:57.170911 2025] [security2:error] [pid 2138:tid 2138] [client 104.207.33.107:11851] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.victorvictor.biz"] [uri "/.env"] [unique_id "aSUyafhf92FVDbkVQJjazgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:23:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:23:30.895384 2025] [security2:error] [pid 27585:tid 27585] [client 104.207.33.107:31115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.bella-vista.com"] [uri "/.svn/wc.db"] [unique_id "aSUhMjcVD0v5TKPZdHkK-gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:05:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:05:44.507280 2025] [security2:error] [pid 23783:tid 23783] [client 104.207.33.107:26459] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.maverickhousellc.com"] [uri "/.svn/wc.db"] [unique_id "aSUdCKQrjtR-0J9meTiA9wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:28:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:28:49.210597 2025] [security2:error] [pid 13443:tid 13443] [client 104.207.33.107:52175] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.winformation.us"] [uri "/.env"] [unique_id "aSUUYf6wrtRffikWpTJ7DgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 154 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 180.76.202.69

🇺🇸 103.168.67.253

🇩🇪 85.215.155.231

🇺🇸 65.110.40.90

🇲🇺 197.225.146.23

🇦🇪 139.185.55.154

🇳🇬 102.90.103.181

🇺🇸 100.29.192.98

🇺🇸 66.132.172.222

🇰🇷 14.63.196.175

🇰🇷 121.169.119.186

🇻🇳 103.176.24.57

🇺🇸 20.65.194.175

🇮🇳 103.59.75.184

🇳🇱 91.92.241.196

🇳🇱 45.148.10.141

🇳🇿 45.133.7.153

🇸🇪 213.65.190.48

🇺🇸 173.252.87.150

🇨🇳 112.31.109.13