JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.229

104.207.33.229 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.229

Whois 104.207.33.229

IP Abuse Reports for 104.207.33.229:

This IP address has been reported a total of 156 times from 17 distinct sources. 104.207.33.229 was first reported on June 13th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 CBJ	2026-06-01 22:30:37 (1 week ago)	fail2ban: apache-proxy ...	Web App Attack
🇬🇧 SilverZippo	2026-03-04 11:49:00 (3 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 23:49:33 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:49:26.400235 2026] [security2:error] [pid 2473:tid 2473] [client 104.207.33.229:49389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arklatexds.com"] [uri "/api/.env"] [unique_id "aY0Vhlndv_07LL_Mx0n3eAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-10 23:00:35 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-10	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-10 03:59:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:59:05.995636 2026] [security2:error] [pid 9829:tid 9850] [client 104.207.33.229:47477] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiwimagic.net"] [uri "/api/.git/config"] [unique_id "aYqtCU2gXiz6axLwsMS9UgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 01:41:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 20:41:23.030748 2026] [security2:error] [pid 12788:tid 12788] [client 104.207.33.229:57195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiahunahawaii.com"] [uri "/admin/.git/config"] [unique_id "aYqMw9GVI-hWN9TpqveJWAAAACY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:01:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:01:43.487075 2026] [security2:error] [pid 30094:tid 30094] [client 104.207.33.229:10437] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "katharinanitzpon.com"] [uri "/test/.git/config"] [unique_id "aYpZR7kUuOc6nhW-OiMYGgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-02-07 00:25:21 (4 months ago)	Brute force	Brute-Force
🇺🇸 OceanTreasure	2025-12-29 09:05:04 (5 months ago)	tcp/80; Environment file access attempt: "GET /.env" @ 2025-12-29T09:04:12Z [proxy]	Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:15:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:15:16.684312 2025] [security2:error] [pid 8539:tid 8539] [client 104.207.33.229:38461] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "woahmanatee.com"] [uri "/.git/HEAD"] [unique_id "aVI4lNn6odteFWl9Qi9VswAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 06:38:15 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 01:38:07.887871 2025] [security2:error] [pid 23310:tid 23310] [client 104.207.33.229:44101] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "redwingboot.com"] [uri "/.env"] [unique_id "aVIhzx2c2oyZMCdWdCdqcgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:48:13 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:48:07.580890 2025] [security2:error] [pid 11714:tid 11714] [client 104.207.33.229:49615] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sidegigfab.com"] [uri "/.git/HEAD"] [unique_id "aVIWF0Hg1eNpRJ-OABHnxgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:56:05 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:55:56.950585 2025] [security2:error] [pid 21487:tid 21487] [client 104.207.33.229:21759] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "customgraduationnapkins.com"] [uri "/.env"] [unique_id "aVIJ3KWYxTvODrA9HtHopQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-11-22 03:06:21 (6 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-11-13 22:40:30 (6 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 210.14.142.89

🇺🇸 204.44.67.103

🇺🇸 203.88.119.100

🇪🇹 196.188.187.205

🇦🇷 181.116.57.245

🇹🇼 165.154.227.8

🇺🇸 162.216.150.226

🇩🇪 91.217.249.30

🇲🇦 81.192.46.45

🇪🇸 79.116.228.18

🇩🇪 69.5.169.210

🇳🇱 45.142.193.53

🇬🇧 35.203.211.186

🇧🇪 34.156.112.99

🇺🇸 20.65.201.12

🇺🇸 20.65.192.150

🇺🇸 2001:470:1:c84::f7

🇭🇰 199.45.154.178

🇧🇪 198.235.24.223

🇳🇱 193.176.31.157