JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.202

104.207.33.202 was found in our database!

This IP was reported 131 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.202

Whois 104.207.33.202

IP Abuse Reports for 104.207.33.202:

This IP address has been reported a total of 131 times from 14 distinct sources. 104.207.33.202 was first reported on June 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-05-23 05:12:13 (2 weeks ago)		Bad Web Bot
Anonymous	2025-12-22 15:46:14 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 19:47:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:47:11.883335 2025] [security2:error] [pid 24330:tid 24330] [client 104.207.33.202:25017] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigheartskitchen.com"] [uri "/.svn/wc.db"] [unique_id "aSiqv7x0xzSCfpQ1_E4DyAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 19:27:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 14:27:01.466296 2025] [security2:error] [pid 4294:tid 4294] [client 104.207.33.202:32317] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ashwoodsecurity.com"] [uri "/.svn/wc.db"] [unique_id "aSimBaPtI2wvQqFBXhHPwwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-27 18:58:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 27 13:58:10.591674 2025] [security2:error] [pid 29987:tid 29987] [client 104.207.33.202:18465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abcollie.com"] [uri "/.git/HEAD"] [unique_id "aSifQhVq_QYzlQ-kRiThmAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 07:17:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:17:42.145378 2025] [security2:error] [pid 9011:tid 9011] [client 104.207.33.202:16009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.noelramos.com"] [uri "/.git/HEAD"] [unique_id "aSVYFlH4tWC5MQ5Ayh8A0wAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:18:22 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:18:13.637860 2025] [security2:error] [pid 3460188:tid 3460188] [client 104.207.33.202:59407] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.davidsonmanagement.net"] [uri "/.git/HEAD"] [unique_id "aSQGtTHZCJbOiMQuvbBiCQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:21:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.202 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:21:07.138751 2025] [security2:error] [pid 31553:tid 31553] [client 104.207.33.202:47931] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.atelier92.com"] [uri "/.env"] [unique_id "aSPdMyafI7yyNHUzL9FahAAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 fbarela	2025-11-08 02:01:00 (7 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
Anonymous	2025-10-19 15:33:50 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.19 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.19 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-18 17:37:42 (7 months ago)	Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.18 is noted in report ti ... show more Attempted brute force login to web vpn 36 time(s); last attempt for 2025.10.18 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-17 21:53:29 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.17 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.10.17 is noted in report timestamp show less	Hacking Brute-Force
🇨🇦 wil.com	2025-10-17 12:20:59 (7 months ago)	GlobalProtect login attempts with user bhat.	VPN IP Brute-Force
🇧🇾 lns.bz	2025-10-17 10:32:29 (7 months ago)	Web app attack [BY]	SSH
Anonymous	2025-10-08 03:24:43 (8 months ago)	Attempted brute force login to web vpn 54 time(s); last attempt for 2025.10.08 is noted in report ti ... show more Attempted brute force login to web vpn 54 time(s); last attempt for 2025.10.08 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 131 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 223.181.118.243

🇳🇱 185.242.226.97

🇺🇸 184.105.247.240

🇨🇳 115.190.126.161

🇺🇸 100.50.17.159

🇺🇸 34.73.39.221

🇺🇸 20.171.8.181

🇬🇧 2a09:bac5:385a:23cd::391:24

🇮🇳 223.178.85.21

🇨🇴 201.182.250.218

🇺🇸 165.227.209.27

🇺🇸 162.216.149.175

🇫🇮 147.185.133.68

🇬🇧 118.193.64.235

🇮🇳 117.247.178.81

🇨🇳 113.87.233.216

🇮🇳 106.221.235.159

🇷🇺 104.28.198.248

🇵🇰 103.174.195.50

🇪🇸 90.162.13.50