JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.229

104.207.61.229 was found in our database!

This IP was reported 128 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.229

Whois 104.207.61.229

IP Abuse Reports for 104.207.61.229:

This IP address has been reported a total of 128 times from 13 distinct sources. 104.207.61.229 was first reported on June 7th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 voormedia	2026-02-26 00:52:11 (3 months ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇺🇸 TPI-Abuse	2025-12-30 18:53:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 13:52:49.264438 2025] [security2:error] [pid 5414:tid 5414] [client 104.207.61.229:35329] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.allcostaricarentals.com"] [uri "/.env"] [unique_id "aVQfgZKJooPvXC25CAzMvwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:01:25 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇺🇸 TPI-Abuse	2025-12-29 09:44:03 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 04:43:56.303790 2025] [security2:error] [pid 4187:tid 4187] [client 104.207.61.229:24335] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "solarhorsepower.com"] [uri "/.svn/wc.db"] [unique_id "aVJNXCUXe5HdepjpagOV-AAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:50:51 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:50:44.206061 2025] [security2:error] [pid 1421420:tid 1421420] [client 104.207.61.229:37547] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hawarcenter.com"] [uri "/.git/HEAD"] [unique_id "aVJA5KVO7R0AbSkTfJVWFwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 08:24:19 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 03:24:12.370862 2025] [security2:error] [pid 4878:tid 4878] [client 104.207.61.229:39867] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "drumez.com"] [uri "/.git/HEAD"] [unique_id "aVI6rF9RUc6QW7u49nEdtQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:49:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:49:28.162561 2025] [security2:error] [pid 9876:tid 9876] [client 104.207.61.229:37921] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatcaverecords.com"] [uri "/.env"] [unique_id "aVIWaGgLVguWJpBHcou6XAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-09 08:12:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 09 03:12:04.075771 2025] [security2:error] [pid 516:tid 516] [client 104.207.61.229:46585] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "veneerdent.com"] [uri "/.git/HEAD"] [unique_id "aTfZ1HfmUpLnXIq-bQMXDgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-08 18:35:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 08 13:35:06.183695 2025] [security2:error] [pid 31688:tid 31688] [client 104.207.61.229:50543] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "omintara.com"] [uri "/.svn/wc.db"] [unique_id "aTcaWk4XaHARi9Koy0ADnAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 15:51:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 10:51:26.568652 2025] [security2:error] [pid 25093:tid 25093] [client 104.207.61.229:32599] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rjabramsonfoundation.org"] [uri "/.env"] [unique_id "aTWifqPPCuqk8TthJBYaMwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-07 13:09:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 07 08:09:16.591908 2025] [security2:error] [pid 1787:tid 1787] [client 104.207.61.229:45819] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fatparrots.org"] [uri "/.git/HEAD"] [unique_id "aTV8fG4__2rMVLc7aCwSrAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 jjnxpct	2025-12-07 04:54:49 (6 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /.env] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-12-06 11:40:07 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 06 06:40:01.533026 2025] [security2:error] [pid 26999:tid 26999] [client 104.207.61.229:47065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "charityroast.net"] [uri "/.git/HEAD"] [unique_id "aTQWEUcoZQoFCt9KK1sOAQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 Shaik Sai Meera	2025-12-06 02:20:12 (6 months ago)	IM360 WAF: Hidden file access	Brute-Force
🇺🇸 TPI-Abuse	2025-12-05 06:35:10 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.229 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 05 01:35:05.034315 2025] [security2:error] [pid 32686:tid 32691] [client 104.207.61.229:9879] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rwabutaza.com"] [uri "/.git/HEAD"] [unique_id "aTJ9GYy_rIQt22vJqtqgnAAAAMM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 128 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.242

🇩🇪 165.227.134.83

🇨🇳 118.81.204.64

🇺🇸 104.37.86.14

🇸🇬 101.32.242.137

🇺🇸 66.132.172.239

🇺🇸 44.220.188.35

🇨🇳 39.162.168.190

🇺🇸 35.237.177.114

🇺🇸 2604:a880:400:d1:0:4:9e88:7001

🇨🇭 209.99.189.70

🇪🇬 197.161.189.249

🇰🇷 121.185.89.74

🇵🇰 72.255.18.197

🇺🇸 63.135.161.39

🇺🇸 52.146.90.217

🇪🇸 46.6.124.216

🇸🇬 43.173.181.119

🇺🇸 18.189.170.10

🇺🇸 16.58.56.214