JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.215

104.207.33.215 was found in our database!

This IP was reported 174 times. Confidence of Abuse is 14%: ?

14%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.215

Whois 104.207.33.215

IP Abuse Reports for 104.207.33.215:

This IP address has been reported a total of 174 times from 26 distinct sources. 104.207.33.215 was first reported on June 4th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-17 04:56:00 (3 days ago)	Web App Attack	Web App Attack
🇪🇸 librebit	2026-06-14 01:10:01 (6 days ago)	Brute force	Brute-Force
🇩🇪 LRob.fr	2026-03-29 02:00:31 (2 months ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇺🇸 oncord	2026-01-08 01:35:34 (5 months ago)	Form spam	Web Spam
🇬🇧 gurnip	2026-01-04 04:07:13 (5 months ago)	Contact form spam of type 'other'.	Web Spam
🇨🇭 backslash	2025-12-30 22:15:01 (5 months ago)		Web Spam
Anonymous	2025-12-12 14:47:16 (6 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-11 01:38:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 20:38:41.596940 2025] [security2:error] [pid 9121:tid 9128] [client 104.207.33.215:14947] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "barstowstationtoo.com"] [uri "/.svn/wc.db"] [unique_id "aTogobv2pVnQa_SLFsFJMAAAAEU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 11:59:57 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 06:59:49.389697 2025] [security2:error] [pid 998:tid 998] [client 104.207.33.215:29057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gfsprod.com"] [uri "/.svn/wc.db"] [unique_id "aTlgtbniymOUSsqtIlAAKQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 08:17:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 10 03:17:54.190284 2025] [security2:error] [pid 17378:tid 17378] [client 104.207.33.215:59093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "namadiscount.com"] [uri "/.svn/wc.db"] [unique_id "aTksslAFv0In9cRuCTCQAQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-10 00:14:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 19:13:55.807758 2025] [security2:error] [pid 26741:tid 26741] [client 104.207.33.215:14891] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "otraes.com"] [uri "/.git/HEAD"] [unique_id "aTi7Q2AfB1tyJMiMXu1wkAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2025-12-08 18:53:16 (6 months ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇺🇸 TPI-Abuse	2025-12-06 16:47:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 11:47:15.863303 2025] [security2:error] [pid 8009:tid 8009] [client 104.207.33.215:32085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jbservicesinc.net"] [uri "/.svn/wc.db"] [unique_id "aTReE_lmTd23BPKRDSsERAAAACM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 17:17:58 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 12:17:51.216592 2025] [security2:error] [pid 10207:tid 10207] [client 104.207.33.215:49339] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "restaurantfurnituremart.com"] [uri "/.svn/wc.db"] [unique_id "aTMTv-I6AHMx4l2K_IMF2AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 15:54:54 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 10:54:46.929461 2025] [security2:error] [pid 12872:tid 12872] [client 104.207.33.215:60085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "acsellsre.com"] [uri "/.env"] [unique_id "aTMARslKtSnOFXOtN4hz1wAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 174 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.155

🇸🇬 128.199.225.7

🇺🇸 45.43.57.53

🇭🇰 219.78.37.206

🇹🇼 198.235.24.84

🇺🇸 162.216.149.28

🇺🇸 147.185.132.179

🇨🇭 146.70.226.22

🇮🇳 139.59.59.165

🇫🇷 85.217.140.45

🇫🇷 85.217.140.26

🇱🇹 77.90.185.16

🇨🇳 47.113.107.234

🇨🇳 39.144.130.8

🇨🇳 27.155.92.28

🇨🇳 14.116.219.149

🇳🇱 175.110.115.227

🇻🇳 171.244.39.95

🇩🇪 167.94.146.34

🇲🇾 161.142.118.146