JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.33.51

104.207.33.51 was found in our database!

This IP was reported 144 times. Confidence of Abuse is 18%: ?

18%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.33.51

Whois 104.207.33.51

IP Abuse Reports for 104.207.33.51:

This IP address has been reported a total of 144 times from 21 distinct sources. 104.207.33.51 was first reported on June 22nd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-05-20 17:27:40 (3 weeks ago)	Form spam	Web Spam
🇪🇸 librebit	2026-05-17 04:08:58 (4 weeks ago)	Brute force	Brute-Force
🇩🇪 Hazzard	2026-05-16 08:18:40 (4 weeks ago)	(wordpress) Failed wordpress login from 104.207.33.51 (US/United States/Virginia/Ashburn/-/[redacted ... show more (wordpress) Failed wordpress login from 104.207.33.51 (US/United States/Virginia/Ashburn/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇱🇻 garmtech.com	2026-04-24 00:52:50 (1 month ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-52.104.207.33.51.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 03-52.104.207.33.51.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇳🇱 jjnxpct	2026-02-16 04:55:10 (3 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /api/.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /api/.env] show less	Hacking Web App Attack
🇬🇧 seniorlinuxadmin	2026-02-15 11:35:08 (3 months ago)	104.207.33.51 - - [15/Feb/2026:11:35:05 +0000] "GET /.aws/credentials HTTP/1.1" 404 158 "-" "Mozilla ... show more 104.207.33.51 - - [15/Feb/2026:11:35:05 +0000] "GET /.aws/credentials HTTP/1.1" 404 158 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" show less	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:06:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:06:29.678361 2026] [security2:error] [pid 8095:tid 8095] [client 104.207.33.51:51353] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seizethisseason.com"] [uri "/.env.production"] [unique_id "aZGota9Wc1epqD1O6tDRegAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:27:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:27:44.299231 2026] [security2:error] [pid 23428:tid 23428] [client 104.207.33.51:50743] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "scoretopicturenetwork.com"] [uri "/app/.git/config"] [unique_id "aZFnYATSv2jCpiCStWy5mgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 04:31:30 (4 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 04:27:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:27:29.967516 2026] [security2:error] [pid 18187:tid 18187] [client 104.207.33.51:16885] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "numeralla.com"] [uri "/config/.env"] [unique_id "aZFLMXCfGtuJFkQI2Wj4UgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:43:39 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:43:34.795074 2026] [security2:error] [pid 6707:tid 6707] [client 104.207.33.51:40413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noreservationslocations.com"] [uri "/admin/.env"] [unique_id "aZFA5r6cSfvh1OPf7HSxzQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:17:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:17:21.675673 2026] [security2:error] [pid 777215:tid 777215] [client 104.207.33.51:24985] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nmorganist.org"] [uri "/frontend/.env"] [unique_id "aZE6wXIBwJ4XQDRz_BlAJAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:52:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:52:14.278039 2026] [security2:error] [pid 1211998:tid 1211998] [client 104.207.33.51:22105] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pobanz.com"] [uri "/.env.staging"] [unique_id "aZE03hsSdVnBpjYrC2rEEwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:20:57 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.33.51 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:20:53.332373 2026] [security2:error] [pid 184121:tid 184186] [client 104.207.33.51:29871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "newtrendmag.org"] [uri "/app/.env"] [unique_id "aZEthTQWjcuk3jEODCUy2wAAAcI"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 lns.bz	2026-02-15 02:12:49 (4 months ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack

Showing 1 to 15 of 144 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 82.51.158.253

🇳🇱 78.142.18.172

🇺🇸 205.210.31.79

🇺🇸 205.210.31.29

🇧🇪 198.235.24.196

🇮🇩 108.136.131.13

🇺🇸 34.82.109.224

🇨🇳 1.192.61.19

🇺🇸 2604:a880:400:d1:0:4:963b:9001

🇺🇸 198.74.56.46

🇱🇹 195.12.191.130

🇬🇧 185.253.98.75

🇸🇪 185.246.130.20

🇹🇼 185.213.82.143

🇱🇹 185.169.4.11

🇨🇳 180.113.157.229

🇧🇷 177.54.62.68

🇺🇸 172.172.23.203

🇨🇳 171.112.140.14

🇧🇷 170.231.25.47