JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.107

104.207.61.107 was found in our database!

This IP was reported 125 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.107

Whois 104.207.61.107

IP Abuse Reports for 104.207.61.107:

This IP address has been reported a total of 125 times from 13 distinct sources. 104.207.61.107 was first reported on June 4th 2024, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-01-05 20:25:54 (5 months ago)	Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-11-27 13:35:47 (6 months ago)	Attempted brute force login to web vpn 2066 time(s); last attempt for 2025.11.27 is noted in report ... show more Attempted brute force login to web vpn 2066 time(s); last attempt for 2025.11.27 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-25 05:44:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:43:43.894977 2025] [security2:error] [pid 14111:tid 14111] [client 104.207.61.107:12755] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.donbullis.com"] [uri "/.svn/wc.db"] [unique_id "aSVCDxccafpa9fPfTo9NmgAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 05:23:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 00:23:21.983267 2025] [security2:error] [pid 28115:tid 28115] [client 104.207.61.107:23157] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ic1.ic1.biz"] [uri "/.git/HEAD"] [unique_id "aSU9SQ2XaNtcKxSunnBg_AAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:28:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:28:40.768944 2025] [security2:error] [pid 16294:tid 16294] [client 104.207.61.107:10071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kerrywood.com"] [uri "/.git/HEAD"] [unique_id "aSUUWJvRCUtASTOuQF9ByQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:12:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:12:37.370113 2025] [security2:error] [pid 23609:tid 23609] [client 104.207.61.107:10787] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dunningtons.com"] [uri "/.env"] [unique_id "aSUQlW2v3rrLZ2T5FjRfsQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:18:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:18:46.646870 2025] [security2:error] [pid 14359:tid 14359] [client 104.207.61.107:32667] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.professionalpartyplanner.org"] [uri "/.git/HEAD"] [unique_id "aSUD9nGTw4zBZGEVWgNBBQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-18 23:57:35 (6 months ago)	Attempted brute force login to web vpn 288 time(s); last attempt for 2025.11.18 is noted in report t ... show more Attempted brute force login to web vpn 288 time(s); last attempt for 2025.11.18 is noted in report timestamp show less	Hacking Brute-Force
🇨🇭 backslash	2025-11-16 07:14:47 (7 months ago)		Bad Web Bot
Anonymous	2025-04-07 08:06:48 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 19:56:16 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-04-06 00:00:41 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE ASN: 200373 (DREI-K-TECH-GMBH) Protocol: HTTP/1.1 (GET method) Timestamp: 2025-04-05T23:02:52Z UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-04-05 05:43:49 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 16:05:37 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 18:22:47 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 125 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 144.22.238.238

🇨🇳 112.81.91.191

🇭🇰 103.155.100.73

🇹🇳 102.159.110.216

🇨🇿 91.224.90.50

🇩🇪 80.150.246.98

🇺🇸 64.62.156.89

🇸🇬 52.237.80.79

🇭🇰 14.136.63.181

🇧🇷 177.200.39.156

🇺🇸 172.58.57.51

🇺🇸 162.216.150.103

🇺🇸 159.89.93.179

🇺🇸 147.182.129.34

🇨🇳 124.16.242.208

🇷🇺 87.250.9.98

🇫🇮 65.109.21.141

🇻🇳 58.186.20.143

🇯🇵 49.212.201.210

🇪🇬 41.128.181.199