JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.39

104.207.33.39 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.39

Whois 104.207.33.39

IP Abuse Reports for 104.207.33.39:

This IP address has been reported a total of 156 times from 19 distinct sources. 104.207.33.39 was first reported on June 5th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-03-30 05:30:50 (2 months ago)	Brute force	Brute-Force
🇺🇸 TPI-Abuse	2026-02-11 23:49:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 18:49:16.377780 2026] [security2:error] [pid 2458:tid 2458] [client 104.207.33.39:42303] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arklahomaflooring.com"] [uri "/.env.production"] [unique_id "aY0VfCTxJnP3sgGzKnnpjgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 00:18:19 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 19:18:16.013267 2026] [security2:error] [pid 31419:tid 31419] [client 104.207.33.39:32119] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apropa.org"] [uri "/wp/.git/config"] [unique_id "aYvKyEN7JMGEFO7Zm2KrsQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:13:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:13:48.451861 2026] [security2:error] [pid 9373:tid 9373] [client 104.207.33.39:40063] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ieas.org"] [uri "/.env.save"] [unique_id "aYq-jPWPmGV7hjbpyP_KUwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:54:49 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:54:43.164077 2026] [security2:error] [pid 29043:tid 29043] [client 104.207.33.39:38835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "i-brochures.com"] [uri "/api/.env"] [unique_id "aYqd8ybNPcG7fAW-x1qEFQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:47:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:47:14.630036 2026] [security2:error] [pid 2617883:tid 2617883] [client 104.207.33.39:61733] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keysenterprise.net"] [uri "/config/.env"] [unique_id "aYqAEgefZFxXsAGDI6KllgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:54:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:54:19.439011 2026] [security2:error] [pid 25123:tid 25123] [client 104.207.33.39:35877] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "howardsooley.com"] [uri "/site/.git/config"] [unique_id "aYplmyxma8MUIqQR_bwTXgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:46:05 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:45:54.480885 2026] [security2:error] [pid 3325:tid 3325] [client 104.207.33.39:24361] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honorherwish.org"] [uri "/.env"] [unique_id "aYpHgsVvSLiJNRtZlFEHdAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 18:40:23 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 13:40:16.554908 2026] [security2:error] [pid 8872:tid 8872] [client 104.207.33.39:42389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "serviciosjireh.cl"] [uri "/.env"] [unique_id "aXEdkFu4CfoJh1Jw3RGvAAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 18:19:48 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 13:19:41.742566 2026] [security2:error] [pid 6745:tid 6745] [client 104.207.33.39:26623] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rnance.com"] [uri "/.env"] [unique_id "aXEYvRgghuFJTF1D-hzexwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Swiptly	2026-01-21 14:51:23 (5 months ago)	Bot scanning for environment files .env .env/\* ...	Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 05:56:54 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 00:56:49.401917 2026] [security2:error] [pid 23125:tid 23125] [client 104.207.33.39:38093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "askthetarotcards.com"] [uri "/.git/HEAD"] [unique_id "aXBqof8aUm2V64zhKkz7IAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-28 19:35:50 (6 months ago)	Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.28 is noted in report ti ... show more Attempted brute force login to web vpn 12 time(s); last attempt for 2025.11.28 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 07:17:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 02:17:27.472292 2025] [security2:error] [pid 14012:tid 14012] [client 104.207.33.39:38273] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goarrow.accpp.link"] [uri "/.git/HEAD"] [unique_id "aSVYB6sT0yOiKNH0lneuQgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:15:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:15:21.037609 2025] [security2:error] [pid 24652:tid 24652] [client 104.207.33.39:14713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "easy2surf.com"] [uri "/.svn/wc.db"] [unique_id "aSU7aQLshfl9WuB9jVbnvAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.26

🇧🇷 177.155.103.7

🇧🇬 5.188.206.66

🇲🇽 201.141.24.34

🇨🇦 170.9.40.164

🇭🇰 165.154.41.152

🇮🇹 158.173.77.35

🇨🇳 121.40.151.192

🇳🇱 103.214.5.133

🇺🇸 66.132.195.28

🇳🇱 45.148.10.147

🇩🇪 45.135.141.8

🇺🇸 44.189.92.208

🇩🇪 158.173.155.150

🇰🇷 59.28.78.22

🇳🇱 45.148.10.35

🇺🇸 44.20.37.28

🇮🇹 4.232.80.255

🇨🇳 221.12.37.6

🇦🇷 201.234.106.215