JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.218

104.207.61.218 was found in our database!

This IP was reported 136 times. Confidence of Abuse is 2%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.218

Whois 104.207.61.218

IP Abuse Reports for 104.207.61.218:

This IP address has been reported a total of 136 times from 17 distinct sources. 104.207.61.218 was first reported on June 6th 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 rh24	2026-05-29 08:03:00 (2 weeks ago)	(wordpress) Failed wordpress login from 104.207.61.218 (CA/Canada/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-02-09 20:09:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:09:04.617840 2026] [security2:error] [pid 5997:tid 5997] [client 104.207.61.218:57485] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galengetting.com"] [uri "/app/.git/config"] [unique_id "aYo-4O1g9WKuqHfa0zDmhQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 02:19:18 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 08 21:19:08.332894 2026] [security2:error] [pid 11024:tid 11024] [client 104.207.61.218:54311] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fsmfl.com"] [uri "/wp/.git/config"] [unique_id "aYlEHKeqFCto2Qp3QwjUIAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-12-28 19:55:05 (5 months ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam
🇦🇺 oncord	2025-12-18 05:58:27 (5 months ago)	Form spam	Web Spam
🇺🇸 nowyouknow	2025-12-16 11:01:00 (5 months ago)	(From [email protected]) Want to see a method where emails generate consistent profits? Visi ... show more (From [email protected]) Want to see a method where emails generate consistent profits? Visit https://rb.gy/uxe0l2 show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-12-02 22:03:03 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:02:55.519274 2025] [security2:error] [pid 32671:tid 32671] [client 104.207.61.218:24935] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sheargrafix.com"] [uri "/.svn/wc.db"] [unique_id "aS9iD83M7TmcRyM6PnpsgwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 06:37:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 01:36:57.242802 2025] [security2:error] [pid 5355:tid 5355] [client 104.207.61.218:9769] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "duhcathlon.com"] [uri "/.svn/wc.db"] [unique_id "aS6JCTeZIM6MUnPH0sljJQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-12-01 13:25:37 (6 months ago)	(From [email protected]) Curious how adirondackchiropractic.com can boost traf ... show more (From [email protected]) Curious how adirondackchiropractic.com can boost traffic fast? Launch now: https://rb.gy/p82gvr show less	Phishing Web Spam
🇺🇸 TPI-Abuse	2025-11-26 06:43:47 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:43:39.600268 2025] [security2:error] [pid 24181:tid 24181] [client 104.207.61.218:37197] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.ukpensionservicesasia.com"] [uri "/.git/HEAD"] [unique_id "aSahmzaJPcAckocLR4mxHQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 06:00:15 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 01:00:06.142706 2025] [security2:error] [pid 20567:tid 20567] [client 104.207.61.218:58247] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.45northoliveoil.com"] [uri "/.svn/wc.db"] [unique_id "aSaXZmtocxT6GhUED-clTgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 03:46:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 22:46:03.046070 2025] [security2:error] [pid 29917:tid 29917] [client 104.207.61.218:28169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.livingwaterresortandspa.com"] [uri "/.svn/wc.db"] [unique_id "aSUmezZHDFTVC8DpEF185QAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 02:58:09 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 21:58:02.583147 2025] [security2:error] [pid 1668:tid 1668] [client 104.207.61.218:12287] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.paguilar.com"] [uri "/.env"] [unique_id "aSUbOlHkcOw0RBOpr7jOSwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-25 01:30:00 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.218 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 20:29:54.182202 2025] [security2:error] [pid 16531:tid 16531] [client 104.207.61.218:16345] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.r-390a.net"] [uri "/.env"] [unique_id "aSUGknozB0W4Q1VAX1my3wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nowyouknow	2025-11-21 03:39:05 (6 months ago)	(From mck.eeknight85065+heike.chin [email protected]) Ready to strengthen adjusttohealthaz.com’s search ... show more (From mck.eeknight85065+heike.chin [email protected]) Ready to strengthen adjusttohealthaz.com’s search presence? Get your Free Backlink Strategy. show less	Phishing Web Spam

Showing 1 to 15 of 136 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇪 197.248.15.98

🇮🇳 180.151.254.218

🇧🇷 168.197.245.90

🇱🇹 62.60.130.237

🇮🇳 20.204.136.58

🇺🇸 216.25.89.85

🇧🇪 198.235.24.162

🇧🇬 193.24.211.107

🇧🇩 160.22.18.220

🇹🇭 110.164.228.242

🇿🇦 102.129.52.174

🇩🇪 213.209.159.227

🇧🇴 190.129.122.185

🇮🇹 151.54.200.209

🇺🇸 107.172.250.235

🇳🇱 104.23.168.115

🇦🇫 74.118.81.170

🇧🇪 198.235.24.227

🇧🇷 187.0.238.211

🇲🇽 186.96.145.241