JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.61.3

104.207.61.3 was found in our database!

This IP was reported 70 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.61.3

Whois 104.207.61.3

IP Abuse Reports for 104.207.61.3:

This IP address has been reported a total of 70 times from 13 distinct sources. 104.207.61.3 was first reported on June 7th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-02-11 09:01:00 (3 months ago)	SMS pumping	DDoS Attack VPN IP Bad Web Bot Web App Attack
Anonymous	2025-12-21 22:46:14 (5 months ago)	Attempted brute force login to web vpn 90 time(s); last attempt for 2025.12.21 is noted in report ti ... show more Attempted brute force login to web vpn 90 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 18:27:29 (5 months ago)	Attempted brute force login to web vpn 54 time(s); last attempt for 2025.12.19 is noted in report ti ... show more Attempted brute force login to web vpn 54 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-11-26 09:19:55 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:19:47.973475 2025] [security2:error] [pid 25338:tid 25338] [client 104.207.61.3:23645] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.stlouisdave.com"] [uri "/.svn/wc.db"] [unique_id "aSbGM4xPh54bmyUY6t73xwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 09:00:53 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 04:00:49.663834 2025] [security2:error] [pid 25870:tid 25870] [client 104.207.61.3:10413] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.bikiniadvice.com"] [uri "/.git/HEAD"] [unique_id "aSbBwXWJm9mFvolAboR2awAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 05:46:44 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 26 00:46:38.239109 2025] [security2:error] [pid 23975:tid 23975] [client 104.207.61.3:24383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.boardingatthewedge.com"] [uri "/.env"] [unique_id "aSaUPr6trvyZ3qneUsH2rwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-26 03:39:29 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 25 22:39:22.552035 2025] [security2:error] [pid 25085:tid 25085] [client 104.207.61.3:51563] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.chrismonty.com"] [uri "/.svn/wc.db"] [unique_id "aSZ2asFKuY8LnNVcu9ynEwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:07:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:07:04.346329 2025] [security2:error] [pid 26932:tid 26932] [client 104.207.61.3:48663] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.flybits.org"] [uri "/.svn/wc.db"] [unique_id "aSQSKPJ5WHovfv3SqbC4LgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:19:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:19:26.909376 2025] [security2:error] [pid 9742:tid 9742] [client 104.207.61.3:16319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.yarbro.org"] [uri "/.svn/wc.db"] [unique_id "aSQG_hWOyUqK8DUiDldbkgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 05:57:34 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:57:30.016787 2025] [security2:error] [pid 25486:tid 25486] [client 104.207.61.3:20065] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.topnotchupholstery.com"] [uri "/.svn/wc.db"] [unique_id "aSPzyiEaUzmWcZ_zF-0lKwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 05:22:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 104.207.61.3 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 00:22:41.607551 2025] [security2:error] [pid 2339625:tid 2339625] [client 104.207.61.3:40179] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.groux.net"] [uri "/config.php%7C/.env%7Csettings.py"] [unique_id "aRQZoZGRE6ng3SSN6YrIKgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 EGP Abuse Dept	2025-10-27 02:18:15 (7 months ago)	Unauthorized connection to SSH port 22	Port Scan Hacking SSH
Anonymous	2025-04-07 10:28:50 (1 year ago)	Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 5 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 07:44:04 (1 year ago)	Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 7 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
🇦🇺 oncord	2025-04-05 19:49:21 (1 year ago)	Form spam	Web Spam

Showing 1 to 15 of 70 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.13.86.90

🇲🇽 187.190.35.163

🇺🇸 172.253.244.145

🇻🇳 171.231.194.143

🇨🇦 89.149.52.89

🇬🇧 35.203.210.83

🇺🇸 135.237.125.195

🇨🇳 124.251.110.186

🇸🇬 118.194.235.16

🇨🇭 104.244.74.201

🇳🇱 89.21.67.179

🇸🇬 47.84.160.216

🇨🇳 36.150.236.49

🇮🇳 223.181.54.16

🇧🇷 205.210.31.198

🇺🇸 185.180.141.45

🇺🇸 162.216.149.131

🇸🇬 148.72.213.43

🇺🇸 147.185.132.193

🇧🇷 147.93.14.26