JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.121

104.207.61.121 was found in our database!

This IP was reported 149 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.121

Whois 104.207.61.121

IP Abuse Reports for 104.207.61.121:

This IP address has been reported a total of 149 times from 20 distinct sources. 104.207.61.121 was first reported on June 6th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 dynamix	2026-05-25 04:26:49 (2 weeks ago)	WordPress wp-login.php Brute Force Attack	Brute-Force Web App Attack
🇫🇷 dynamix	2026-05-25 04:11:47 (2 weeks ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
Anonymous	2026-02-11 09:01:00 (3 months ago)	SMS pumping	DDoS Attack VPN IP Bad Web Bot Web App Attack
🇯🇵 Valhalla	2025-12-25 16:54:41 (5 months ago)	/old/installer.php	Hacking Web App Attack
🇫🇷 IRISIO	2025-12-18 07:36:45 (5 months ago)	scans/SQL injection/spam posts : 2 queries	SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 18:50:21 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 13:50:16.384432 2025] [security2:error] [pid 30509:tid 30509] [client 104.207.61.121:29419] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brbcash.com"] [uri "/.git/HEAD"] [unique_id "aThvaBBK_f3k1ycLnanzpQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 17:17:50 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 12:17:44.053168 2025] [security2:error] [pid 14421:tid 14421] [client 104.207.61.121:37671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thomasanthonyquinn.com"] [uri "/.git/HEAD"] [unique_id "aThZuDXgxd5YjkT0WeRlEgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 17:59:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 12:59:30.382951 2025] [security2:error] [pid 21208:tid 21208] [client 104.207.61.121:33819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "us-war-crimes-commission.org"] [uri "/.git/HEAD"] [unique_id "aTXAgr-_nzYJ-SlRwYHt5wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 12:05:02 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 07:04:54.436775 2025] [security2:error] [pid 25821:tid 25850] [client 104.207.61.121:54949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aafm.org"] [uri "/.env"] [unique_id "aTVtZmFzg3cGrUb-LHz-JwAAANg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2025-12-06 23:00:44 (6 months ago)	Auto-ban: >3000 req/min op 2025-12-06	Hacking Web App Attack SSH
Anonymous	2025-12-06 21:44:28 (6 months ago)	wordpress-trap	Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 17:27:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 12:27:41.516979 2025] [security2:error] [pid 5791:tid 5791] [client 104.207.61.121:15073] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hometoamerica.com"] [uri "/.git/HEAD"] [unique_id "aTMWDdDq6lYZm2I5UGUeJgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 10:45:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 05:45:48.852191 2025] [security2:error] [pid 2774:tid 2774] [client 104.207.61.121:48095] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "claireashton.com"] [uri "/.svn/wc.db"] [unique_id "aTK33JNOmxzkIREm7hRMKAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 02:02:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 21:02:48.763510 2025] [security2:error] [pid 10053:tid 10053] [client 104.207.61.121:57959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "premiumenterprisessolution.com"] [uri "/.env"] [unique_id "aTI9SDuGMn7nw2KH7PBjvQAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-05 00:40:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.121 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 19:40:35.886398 2025] [security2:error] [pid 20757:tid 20757] [client 104.207.61.121:59919] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jasonmcquain.com"] [uri "/.env"] [unique_id "aTIqAz9C0jW08_u3NvgGEwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 149 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 207.241.172.169

🇳🇱 185.213.174.70

🇨🇦 138.197.164.175

🇮🇳 59.95.182.181

🇷🇺 5.141.129.150

🇺🇸 2602:80d:1008::55

🇮🇳 223.181.127.162

🇸🇬 165.22.104.178

🇻🇳 160.30.20.178

🇺🇸 152.32.208.169

🇺🇬 129.205.2.18

🇺🇸 104.243.46.222

🇮🇩 103.56.148.184

🇫🇷 91.231.89.9

🇳🇱 91.92.243.20

🇱🇹 81.30.98.142

🇳🇱 45.148.10.151

🇳🇱 20.93.194.128

🇦🇷 186.22.19.183

🇬🇧 185.247.137.66