JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.124

104.207.61.124 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.124

Whois 104.207.61.124

IP Abuse Reports for 104.207.61.124:

This IP address has been reported a total of 121 times from 10 distinct sources. 104.207.61.124 was first reported on June 20th 2024, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-11-25 06:21:51 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 01:21:47.845727 2025] [security2:error] [pid 23826:tid 23826] [client 104.207.61.124:17577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.crochetfreepatterns.com"] [uri "/.env"] [unique_id "aSVK-0aqltOp0SK4drCq1wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 04:37:45 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 23:37:36.982784 2025] [security2:error] [pid 32110:tid 32110] [client 104.207.61.124:17209] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.networthbuilding.com"] [uri "/.git/HEAD"] [unique_id "aSUykMmRH7Cv77sW2W2-EQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:27:35 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:27:28.137203 2025] [security2:error] [pid 728154:tid 728154] [client 104.207.61.124:21801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.aholsniffsglue.com"] [uri "/.svn/wc.db"] [unique_id "aSUiICYAYHQpTqxYtgNELAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:09:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:09:08.711517 2025] [security2:error] [pid 31803:tid 31803] [client 104.207.61.124:18545] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.gkerby.com"] [uri "/.svn/wc.db"] [unique_id "aSUd1PazjiqQSGn-vwwD2QAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:11:13 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:11:08.064506 2025] [security2:error] [pid 16121:tid 16121] [client 104.207.61.124:31069] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.stricklinphotography.com"] [uri "/.svn/wc.db"] [unique_id "aSUCLHq7ERAbn4ZCmTs54wAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 00:22:26 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 19:22:20.511546 2025] [security2:error] [pid 29726:tid 29726] [client 104.207.61.124:34071] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.g-peopleland.com"] [uri "/.svn/wc.db"] [unique_id "aST2vGoIBhGYDM3u4QXPpQAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-12 09:34:08 (6 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-10-10 18:31:51 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 104.207.61.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 10 14:31:46.484942 2025] [security2:error] [pid 14918:tid 14918] [client 104.207.61.124:29031] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ucommsi.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ucommsi.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aOlREvzCSkh_79uNOqzHiwAAAAI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-06 18:45:07 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 00:39:48 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 23:59:47 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 22:18:52 (1 year ago)	Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 2 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-02 13:40:07 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.02 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.02 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-01 16:19:51 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.01 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.01 is noted in report timestamp show less	Hacking Brute-Force
🇦🇺 oncord	2025-04-01 11:26:43 (1 year ago)	Form spam	Web Spam

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 72.76.249.219

🇬🇧 2a05:d01c:8c7:6802:c825:fd2f:2af7:d16b

🇯🇵 163.44.101.215

🇫🇮 144.31.152.139

🇷🇴 92.118.39.236

🇮🇷 85.204.222.69

🇧🇬 78.128.112.30

🇺🇸 66.132.224.94

🇭🇰 47.239.240.68

🇱🇹 45.227.254.170

🇧🇷 205.210.31.173

🇮🇷 188.214.185.171

🇸🇪 155.4.209.51

🇰🇷 118.37.214.187

🇬🇧 87.115.211.6

🇧🇪 34.76.198.103

🇺🇸 20.65.195.23

🇸🇪 13.51.166.203

🇸🇬 8.219.252.93

🇧🇷 187.20.23.2