JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.23

104.207.61.23 was found in our database!

This IP was reported 100 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.23

Whois 104.207.61.23

IP Abuse Reports for 104.207.61.23:

This IP address has been reported a total of 100 times from 17 distinct sources. 104.207.61.23 was first reported on June 11th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-02-19 01:26:38 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:26:32.482083 2026] [security2:error] [pid 21124:tid 21124] [client 104.207.61.23:24561] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kampinenlaw.com"] [uri "/wp/.git/config"] [unique_id "aZZmyJmjqm6Ow4QZYVWaZgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-18 18:30:48 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 13:30:40.454549 2026] [security2:error] [pid 2096:tid 2096] [client 104.207.61.23:36393] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thevillageartcenter.com"] [uri "/.git/config"] [unique_id "aZYFUP6GitHS96TMirjfrAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-18 12:05:25 (4 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇳🇱 jjnxpct	2026-02-16 04:54:23 (4 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /wp/.git/config (Rule ID: 930130) - Restricted File Access Attempt show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:45:25 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:45:18.425007 2026] [security2:error] [pid 27796:tid 27796] [client 104.207.61.23:49465] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patdavis.org"] [uri "/site/.git/config"] [unique_id "aZG_3s_8DLQlvuvMgUJxqQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:50:12 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:50:03.118713 2026] [security2:error] [pid 13878:tid 13878] [client 104.207.61.23:51949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paintedoverwhite.com"] [uri "/.env.production"] [unique_id "aZGy675botd3Ht2hlbZHXAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 11:23:44 (4 months ago)	104.207.61.23 - - [15/Feb/2026:11:23:40 +0000] "GET /.env HTTP/1.1" 302 483 "-" "Mozilla/5.0 (Window ... show more 104.207.61.23 - - [15/Feb/2026:11:23:40 +0000] "GET /.env HTTP/1.1" 302 483 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:56:24 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:56:19.898486 2026] [security2:error] [pid 32036:tid 32036] [client 104.207.61.23:38853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seekingthemind.com"] [uri "/.env.staging"] [unique_id "aZGmU37zOY2b42Uw5dZO7QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:56:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:56:35.580171 2026] [security2:error] [pid 17391:tid 17391] [client 104.207.61.23:28115] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "obfetal.com"] [uri "/.env"] [unique_id "aZFSA3qmz0XizzpSzrYaPwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:08:13 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:08:07.903539 2026] [security2:error] [pid 27342:tid 27342] [client 104.207.61.23:48531] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "powerbypage.com"] [uri "/site/.git/config"] [unique_id "aZFGpxzRjtTbm0R0RXTTywAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 04:05:47 (4 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:31:12 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:31:07.350739 2026] [security2:error] [pid 14894:tid 14894] [client 104.207.61.23:61291] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "noisepie.com"] [uri "/site/.git/config"] [unique_id "aZE9-z5akHlLeAVe_Pa14gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 piticu iuli	2026-02-15 02:32:27 (4 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.61.23 (CA/Canada/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 02:29:20 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:29:13.467341 2026] [security2:error] [pid 1350:tid 1350] [client 104.207.61.23:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nextmoon.com"] [uri "/.env"] [unique_id "aZEveWsMIMPEb_OFBKyvzAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:55:39 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:55:33.161868 2026] [security2:error] [pid 4231:tid 4231] [client 104.207.61.23:12697] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "photojeniq.com"] [uri "/api/.env"] [unique_id "aZEZhahgYRCsksovQzsL-QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 100 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.169

🇷🇺 91.211.23.39

🇺🇸 74.82.47.3

🇰🇷 61.76.112.4

🇺🇸 2604:a880:400:d1:0:4:9e7e:3001

🇦🇹 194.96.66.89

🇨🇳 120.48.54.130

🇩🇪 80.253.251.72

🇨🇳 61.145.163.164

🇳🇱 45.148.10.30

🇺🇸 34.61.224.240

🇩🇪 8.209.113.102

🇫🇷 213.199.60.47

🇵🇰 103.164.9.74

🇻🇳 103.75.182.108

🇨🇳 60.13.6.192

🇸🇬 47.128.122.68

🇺🇸 45.130.83.243

🇬🇧 35.203.211.226

🇬🇧 35.203.210.82