JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.38.61

104.207.38.61 was found in our database!

This IP was reported 163 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.38.61

Whois 104.207.38.61

IP Abuse Reports for 104.207.38.61:

This IP address has been reported a total of 163 times from 24 distinct sources. 104.207.38.61 was first reported on June 6th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nowyouknow	2026-04-16 20:53:33 (1 month ago)	(From [email protected]) Hi Advanced Health Chiropractic, I’ve built and trained an AI ... show more (From [email protected]) Hi Advanced Health Chiropractic, I’ve built and trained an AI employee specifically for Advanced Health Chiropractic. It’s already been trained on 6+ hours worth of your publicly available data — your website, Google Business Profile, and more. It knows how to answer customer questions, capture leads, and even follow up — just like a team member would. This isn’t a sales call. It’s a 20-minute demo where you can actually interact with the AI employee and see what it can do. Would today or tomorrow work for a quick walkthrough? Schedule a time on my calendar to meet the agent I trained for you and see what she can do here: getdandy.com/ff-trained-agent or call me at (949)-755-7782 Talk soon, Thank you, Jennifer O'Brien \| Director of Operations GetDandy getdandy.com/ff-trained-agent Unsubscribe here: bit.ly/42wnUsa show less	Phishing Web Spam
🇪🇸 librebit	2026-04-10 01:01:16 (2 months ago)	Brute force	Brute-Force
🇩🇪 Lino Project	2026-04-09 14:05:06 (2 months ago)	104.207.38.61 - - [09/Apr/2026:16:05:06 +0200] "GET /wp-admin/post-new.php HTTP/1.1" 403 6555 "https ... show more 104.207.38.61 - - [09/Apr/2026:16:05:06 +0200] "GET /wp-admin/post-new.php HTTP/1.1" 403 6555 "https://www.primobio.it/mio-account/?action=register" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36" ... show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-07 04:05:11 (2 months ago)	Forum/form spam	Web Spam
🇪🇸 librebit	2026-03-29 01:10:25 (2 months ago)	Brute force	Brute-Force
Anonymous	2026-03-23 20:11:44 (2 months ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-12 02:24:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 21:24:27.904641 2026] [security2:error] [pid 4241:tid 4241] [client 104.207.38.61:56103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arrowhead30.com"] [uri "/app/.git/config"] [unique_id "aY052wGkKxD953w0hZF3GwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 20:07:47 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 15:07:44.733774 2026] [security2:error] [pid 4133:tid 4133] [client 104.207.38.61:60899] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apfarrell.com"] [uri "/.git/config"] [unique_id "aYuQEJLVUw701NIK9ifjfwAAAC8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 15:10:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:10:06.994305 2026] [security2:error] [pid 1156618:tid 1156618] [client 104.207.38.61:15935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "anthonyvanstyn.com"] [uri "/admin/.git/config"] [unique_id "aYtKTj_bHWnBDWVngHv3DgAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:56:00 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.38.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:55:50.376916 2026] [security2:error] [pid 23198:tid 23233] [client 104.207.38.61:49165] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "htpsocal.com"] [uri "/test/.git/config"] [unique_id "aYp0BrjmpES_aWQ_oSaLKgAAAFM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Jean Valjean	2026-01-04 17:45:50 (5 months ago)	Fail2ban Caboom : xmlrpc.php Abuse	SQL Injection Web App Attack
🇮🇹 VHosting	2026-01-03 16:15:13 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇦🇺 MAGIC	2025-12-28 03:03:32 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2025-12-22 15:22:17 (5 months ago)	This IP was involved in a brute force and password spray attack.	Brute-Force Web App Attack
Anonymous	2025-12-07 17:51:52 (6 months ago)	botnet	DDoS Attack

Showing 1 to 15 of 163 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 43.110.37.217

🇺🇸 199.231.163.19

🇨🇦 199.229.220.185

🇷🇺 193.242.105.32

🇨🇳 182.204.177.101

🇦🇷 181.116.47.106

🇺🇸 162.216.149.125

🇺🇸 147.182.183.153

🇿🇦 102.23.208.77

🇫🇷 91.231.89.251

🇫🇷 91.231.89.114

🇳🇱 91.92.42.61

🇺🇸 66.132.172.153

🇺🇸 64.85.147.243

🇪🇬 62.193.91.121

🇨🇳 61.184.89.221

🇭🇰 45.142.154.10

🇺🇸 2a03:2880:20ff:5::

🇺🇸 2a03:2880:20ff:4::

🇮🇳 206.189.130.156