JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.230

104.207.33.230 was found in our database!

This IP was reported 166 times. Confidence of Abuse is 67%: ?

67%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.230

Whois 104.207.33.230

IP Abuse Reports for 104.207.33.230:

This IP address has been reported a total of 166 times from 32 distinct sources. 104.207.33.230 was first reported on June 7th 2024, and the most recent report was 34 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 poundawebsiteltd	2026-06-15 02:15:29 (34 minutes ago)	WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.207.33.230 - - [15/Jun/2026:03:15:19 +0100] ... show more WP Exploit attempt. Evidence: [REDACTED_DOMAIN]:443 104.207.33.230 - - [15/Jun/2026:03:15:19 +0100] POST /wp-login.php HTTP/1.1 200 6800 https://[REDACTED_DOMAIN]/wp-login.php Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:120.0) Gecko/20100101 Firefox/120.0 show less	Web App Attack
🇩🇪 4server	2026-06-13 05:19:23 (1 day ago)	[SatJun1307:19:21.3284182026][security2:error][pid617806:tid617902][client104.207.33.230:0]ModSecuri ... show more [SatJun1307:19:21.3284182026][security2:error][pid617806:tid617902][client104.207.33.230:0]ModSecurity:Accessdeniedwithcode403$phase2$.OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded$TotalScore:5$\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"beyondsecurity.ch\"][uri\"/wp-login.php\"][unique_id\"aizoWbOcqtdYqr_XwT8ZRwAAAQg\"]\,referer:https://beyondsecurity.ch/wp-login.php show less	Port Scan Brute-Force Web App Attack
🇫🇷 pm33	2026-06-12 14:06:29 (2 days ago)	Wordpress login attempts	Brute-Force
🇬🇷 setupgr	2026-06-12 01:09:23 (3 days ago)	(mod_security) mod_security (id:900001) triggered by 104.207.33.230: 1 in the last 86400 secs; Ports ... show more (mod_security) mod_security (id:900001) triggered by 104.207.33.230: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 12 04:09:22.646461 2026] [security2:error] [pid 52863:tid 53045] [client 104.207.33.230:53697] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr\|alloweddomain2\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: tavernadimitris.com"] [severity "CRITICAL"] [tag "security"] [hostname "tavernadimitris.com"] [uri "/wp-login.php"] [unique_id "aitcQhJWFl-XeyyYvI7AzAAAANg"], referer: https://tavernadimitris.com/wp-login.php show less	Port Scan
🇺🇸 lostswordfish.com	2026-06-11 18:34:04 (3 days ago)	Wordfence waf block on pameganslaw	Web App Attack
Anonymous	2026-06-10 17:19:44 (4 days ago)	Web attack blocked by Wordfence on vestingstadvalkenburg.nl (1 hit). Reported by CRMON.	Web App Attack
🇫🇷 ELYAZ	2026-06-09 18:09:17 (5 days ago)	(y4) Failed scan -byebye- from 104.207.33.230 (US/United States/-): (CF_ENABLE)	Hacking
🇬🇧 spamverify.com	2026-06-03 15:19:31 (1 week ago)	Honeypot Hit: WordPress Login	Web Spam Blog Spam Bad Web Bot Web App Attack
Anonymous	2026-05-31 13:00:31 (2 weeks ago)	wordpress authentication brute force	Brute-Force Web App Attack
🇫🇷 ELYAZ	2026-05-31 07:49:02 (2 weeks ago)	(wordpress) Failed wordpress login from 104.207.33.230 (US/United States/-): (CF_ENABLE)	Brute-Force
🇲🇹 Malta	2026-05-31 06:19:30 (2 weeks ago)	104.207.33.230 - - [31/May/2026:08:19:30 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows ... show more 104.207.33.230 - - [31/May/2026:08:19:30 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 11.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
🇨🇿 ddw	2026-05-31 04:42:47 (2 weeks ago)	WordPress Brute Force Attack.	Hacking Brute-Force Web App Attack
Anonymous	2026-05-30 19:21:47 (2 weeks ago)	[ssd5.kdns.gr] httpd-login-spray-site: sites=e-anastasiadis.gr; logs=/var/log/httpd/domains/e-anasta ... show more [ssd5.kdns.gr] httpd-login-spray-site: sites=e-anastasiadis.gr; logs=/var/log/httpd/domains/e-anastasiadis.gr.log; samples=site_wide=true \| distinct_ips=64 \| /wp-login.php show less	Hacking Web App Attack
🇫🇷 tilellit.pro	2026-05-30 03:38:17 (2 weeks ago)	Fail2Ban banned 104.207.33.230 for security violations in jail wp-armour. Log: 2026/05/30 03:38:17 [ ... show more Fail2Ban banned 104.207.33.230 for security violations in jail wp-armour. Log: 2026/05/30 03:38:17 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 104.207.33.230 \| Target: wplogin" , client: 104.207.33.230, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇷🇴 INTEQ	2026-05-29 11:08:42 (2 weeks ago)	Web attack from 104.207.33.230	Web App Attack

Showing 1 to 15 of 166 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.107.156.227

🇩🇪 212.227.140.112

🇺🇸 207.90.244.20

🇧🇷 205.210.31.255

🇻🇪 190.120.252.223

🇪🇸 185.9.193.111

🇫🇮 178.20.210.151

🇳🇱 176.65.149.201

🇬🇧 159.65.53.32

🇸🇬 139.180.136.127

🇹🇷 78.135.73.70

🇹🇷 78.135.73.8

🇺🇸 65.49.1.22

🇺🇸 64.62.197.192

🇨🇦 51.161.65.168

🇺🇸 8.230.122.62

🇺🇸 8.230.102.96

🇨🇳 220.202.112.11

🇩🇪 193.124.20.254

🇸🇬 185.200.116.76