JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.212

104.207.33.212 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 20%: ?

20%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.212

Whois 104.207.33.212

IP Abuse Reports for 104.207.33.212:

This IP address has been reported a total of 149 times from 22 distinct sources. 104.207.33.212 was first reported on June 6th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-06-23 01:51:02 (1 day ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12	Exploited Host Web App Attack
🇫🇷 Sklurk	2026-06-11 11:32:14 (1 week ago)	Web App Attack	Web App Attack
🇩🇪 Bedios GmbH	2026-06-10 04:57:46 (2 weeks ago)	SQL backup theft attempt	Hacking
🇱🇻 garmtech.com	2026-04-11 21:41:07 (2 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-41.104.207.33.212.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 00-41.104.207.33.212.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2026-03-21 06:40:44 (3 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2025-12-30 18:36:11 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 13:35:16.260904 2025] [security2:error] [pid 31470:tid 31470] [client 104.207.33.212:59187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.lsd36.com"] [uri "/.git/HEAD"] [unique_id "aVQbZA0ahbsHp7CSXGt0RgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 conseilgouz	2025-12-29 09:55:01 (5 months ago)	cow-Joomla User : try to access forms...	Hacking
🇺🇸 TPI-Abuse	2025-12-29 04:22:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:22:44.004797 2025] [security2:error] [pid 7046:tid 7046] [client 104.207.33.212:32385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kathiekate.com"] [uri "/.svn/wc.db"] [unique_id "aVICFPmqj43CKGbDZqhLqQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-11-25 18:11:17 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-11-25 05:04:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:04:46.767092 2025] [security2:error] [pid 827634:tid 827634] [client 104.207.33.212:29125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.sharkfamily.com"] [uri "/.git/HEAD"] [unique_id "aSU47nIVV5pXorwdg07ahwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:07:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:07:22.727885 2025] [security2:error] [pid 29704:tid 29704] [client 104.207.33.212:38515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.hostingdemo.net"] [uri "/.git/HEAD"] [unique_id "aSUreqTJqGQDb5b0YvDGJgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:21:12 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:21:06.032545 2025] [security2:error] [pid 4252:tid 4252] [client 104.207.33.212:9909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.pleasefixmycomputer.com"] [uri "/.env"] [unique_id "aSUEgvUHAQDIAolBGrZGNAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:06:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:06:14.612332 2025] [security2:error] [pid 6292:tid 6292] [client 104.207.33.212:21897] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.canaldumidi360.com"] [uri "/.git/HEAD"] [unique_id "aSTy9kSxvcqyOQE-5Z5cTAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2025-11-20 11:32:09 (7 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-11-14 19:43:47 (7 months ago)	(From [email protected]) Ready to see more real visitors on advancedchirosol ... show more (From [email protected]) Ready to see more real visitors on advancedchirosolutions.com? Get your Free Demo. show less	Phishing Web Spam

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 223.123.42.233

🇵🇱 194.180.49.54

🇳🇱 91.92.40.237

🇧🇩 27.147.156.74

🇺🇸 20.102.40.205

🇮🇱 2.55.75.176

🇻🇳 103.153.254.96

🇷🇴 80.94.92.109

🇺🇸 205.210.31.96

🇩🇪 165.227.159.13

🇨🇳 124.115.65.228

🇺🇸 52.165.80.115

🇭🇰 20.24.84.174

🇳🇱 176.65.149.201

🇹🇭 159.192.144.206

🇫🇷 151.80.133.171

🇵🇭 124.6.178.98

🇩🇪 64.226.94.31

🇺🇸 35.252.119.232

🇺🇸 8.235.117.52