JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.144

104.207.61.144 was found in our database!

This IP was reported 134 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.144

Whois 104.207.61.144

IP Abuse Reports for 104.207.61.144:

This IP address has been reported a total of 134 times from 18 distinct sources. 104.207.61.144 was first reported on June 6th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 jjnxpct	2026-03-28 04:48:56 (2 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /contact (Rule ID: 942540) - SQL Authentication bypass (split query) [Suspicious: '; found within ARGS:catid: ';] show less	Web App Attack SQL Injection Brute-Force
🇩🇪 F242	2026-01-30 06:04:40 (4 months ago)	Wordpress Login or XMLRPC abuse	Web App Attack
Anonymous	2026-01-05 20:26:30 (5 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.05 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 nowyouknow	2026-01-01 16:44:37 (5 months ago)	(From [email protected]) Hello, Most businesses spend more than $250/month on tools a ... show more (From [email protected]) Hello, Most businesses spend more than $250/month on tools alone. For the same amount, you can have a full-time Digital Marketing Assistant handling SEO, Google & Meta Ads, Email Marketing, Social Media, and day-to-day operations. The first month costs you nothing. Fill the form below to start your free first month Direct Google link: https://docs.google.com/forms/d/e/1FAIpQLSdfVsEbHZ8ONCILtiWxC8Nz4dMDX4XytsWbDm9ZehvJq0dshA/viewform GLE Link to Google Forms: https://forms.gle/hUcK6pGk3DeYNonL7 Short link: https://shorturl.at/sIc0l show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-24 07:22:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:22:00.311982 2025] [security2:error] [pid 24763:tid 24763] [client 104.207.61.144:31397] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artichokedesign.net"] [uri "/.git/HEAD"] [unique_id "aSQHmNLkcE6feSssgP2aBwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:04:43 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:04:36.935950 2025] [security2:error] [pid 20456:tid 20456] [client 104.207.61.144:40525] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.scothart.com"] [uri "/.env"] [unique_id "aSQDhBS7lEDbuttNSLmvgwAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:19:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:19:23.676995 2025] [security2:error] [pid 15351:tid 15351] [client 104.207.61.144:44001] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.bethbornsteindunnington.com"] [uri "/.env"] [unique_id "aSP465CuCYSK4A7nX-btfwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:08:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:07:55.459967 2025] [security2:error] [pid 3965258:tid 3965276] [client 104.207.61.144:45197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "phpbb2.hkyiquan.org"] [uri "/.svn/wc.db"] [unique_id "aSPaG8hgZFlRjqvFbohywAAAAQU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-16 00:13:18 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 104.207.61.144 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 15 19:13:13.563561 2025] [security2:error] [pid 2619:tid 2619] [client 104.207.61.144:43395] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|karishma.byles.net\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "karishma.byles.net"] [uri "/s3cmd.ini"] [unique_id "aRkXGeXl-jCQe9cRQ86LpwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-12 08:26:27 (7 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force
🇵🇱 sefinek.net	2025-10-26 02:43:38 (7 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 relianoid.com	2025-10-24 04:33:37 (7 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇱🇻 garmtech.com	2025-10-18 11:02:23 (8 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-02.104.207.61.144.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 14-02.104.207.61.144.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
Anonymous	2025-10-11 03:20:14 (8 months ago)	Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.11 is noted in report ti ... show more Attempted brute force login to web vpn 72 time(s); last attempt for 2025.10.11 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-10-10 23:12:30 (8 months ago)	Attempted brute force login to web vpn 146 time(s); last attempt for 2025.10.10 is noted in report t ... show more Attempted brute force login to web vpn 146 time(s); last attempt for 2025.10.10 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 134 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 213.66.196.11

🇧🇷 200.204.243.202

🇺🇸 172.191.171.80

🇨🇦 159.203.15.139

🇹🇭 159.192.228.46

🇺🇸 147.93.144.116

🇭🇰 118.193.40.88

🇹🇭 110.164.193.195

🇺🇸 107.167.34.125

🇮🇳 103.209.222.245

🇻🇳 103.173.154.45

🇨🇳 101.96.200.56

🇫🇷 88.142.46.185

🇺🇸 66.132.195.18

🇮🇩 49.0.24.107

🇸🇬 47.84.141.183

🇸🇬 43.134.96.24

🇬🇭 41.204.63.118

🇬🇧 35.203.210.125

🇳🇱 5.187.35.142