JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.226

104.207.33.226 was found in our database!

This IP was reported 143 times. Confidence of Abuse is 10%: ?

10%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.226

Whois 104.207.33.226

IP Abuse Reports for 104.207.33.226:

This IP address has been reported a total of 143 times from 22 distinct sources. 104.207.33.226 was first reported on June 4th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-05-31 15:18:16 (2 weeks ago)	Web vulnerability probing: /website/wp-includes/wlwmanifest.xml	Web App Attack
🇮🇩 Burayot	2026-05-12 05:24:05 (1 month ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.33.226 (US/United States/-) ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.33.226 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
Anonymous	2026-03-24 09:02:34 (2 months ago)	Forum/form spam	Web Spam
🇪🇸 masterguru	2026-02-19 04:04:28 (3 months ago)	Restricted File Access Attempt. Matched phrase "/.git/" at REQUEST_FILENAME. (930130-122)	Hacking Web App Attack
🇺🇸 myagent.site	2026-02-19 01:45:40 (3 months ago)	Blocking for trying to access an exploit file: /.env.staging	Hacking
🇺🇸 TPI-Abuse	2026-02-18 22:45:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 17:45:02.837617 2026] [security2:error] [pid 29689:tid 29689] [client 104.207.33.226:51451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "valarien.com"] [uri "/test/.git/config"] [unique_id "aZZA7tfghLfol5dI3kKv0wAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 20:06:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 15:06:43.488464 2026] [security2:error] [pid 21536:tid 21536] [client 104.207.33.226:64871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trademartghana.com"] [uri "/test/.git/config"] [unique_id "aZYb07jqXpyXM_WZfCmWkgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:51:07 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:50:52.044392 2026] [security2:error] [pid 5890:tid 5890] [client 104.207.33.226:34123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "threewild.com"] [uri "/v2/.git/config"] [unique_id "aZYKDI2Wf5xxnP3zZ8zO1gAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:34:24 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:34:19.375141 2026] [security2:error] [pid 17675:tid 17675] [client 104.207.33.226:34251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thewhitedfamily.com"] [uri "/api/.git/config"] [unique_id "aZYGK09dfOyaoopW0d5a9QAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 13:19:44 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 08:19:41.241574 2026] [security2:error] [pid 28845:tid 28845] [client 104.207.33.226:31683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "williammaderas.com"] [uri "/test/.git/config"] [unique_id "aZW8bUEJdHY0gq-PAH0DWAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 webanyone	2026-02-18 12:30:30 (3 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 12:08:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.226 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 07:08:09.617411 2026] [security2:error] [pid 3582:tid 3582] [client 104.207.33.226:14669] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waxjet510.com"] [uri "/.env.staging"] [unique_id "aZWrqaLxi30PE6g6FnlfsQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 12:05:30 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 fbarela	2026-01-25 04:00:16 (4 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
Anonymous	2026-01-23 22:43:58 (4 months ago)	Forum/form spam	Web Spam

Showing 1 to 15 of 143 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇦 217.147.171.54

🇧🇷 177.92.162.240

🇭🇰 165.154.41.152

🇩🇪 164.92.186.144

🇫🇷 146.59.236.147

🇰🇷 119.198.231.11

🇨🇳 111.26.177.216

🇹🇷 89.252.131.17

🇩🇪 69.5.169.27

🇳🇱 45.142.193.10

🇺🇸 45.33.42.25

🇧🇷 45.5.102.93

🇸🇬 43.160.204.7

🇺🇸 35.254.175.187

🇰🇷 1.222.192.112

🇳🇱 204.76.203.219

🇺🇸 199.33.99.53

🇷🇺 195.211.39.144

🇷🇺 193.232.203.117

🇨🇴 190.131.227.123