JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.60

104.207.36.60 was found in our database!

This IP was reported 156 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.60

Whois 104.207.36.60

IP Abuse Reports for 104.207.36.60:

This IP address has been reported a total of 156 times from 23 distinct sources. 104.207.36.60 was first reported on June 21st 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-03-19 09:57:58 (2 months ago)	Forum/form spam	Web Spam
🇳🇱 jjnxpct	2026-02-16 04:54:58 (4 months ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /app/.env (Rule ID: 930130) - Restricted File Access Attempt [Suspicious: .env found within REQUEST_FILENAME: /app/.env] show less	Hacking Web App Attack
🇺🇸 mnsf	2026-02-16 03:05:15 (4 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:06:30 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:06:23.540982 2026] [security2:error] [pid 4261:tid 4261] [client 104.207.36.60:45125] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sylversheers.com"] [uri "/.git/config"] [unique_id "aZFiX_SVkBMmi9HY-ZOfngAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:20:27 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:20:00.422717 2026] [security2:error] [pid 17152:tid 17152] [client 104.207.36.60:31527] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "strawusa.com"] [uri "/backup/.git/config"] [unique_id "aZFJcEmVcpP4z5_w2FPbwAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 sdos.es	2026-02-15 04:10:34 (4 months ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:57:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:57:37.474631 2026] [security2:error] [pid 819:tid 819] [client 104.207.36.60:56383] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stinnetthomeinspection.com"] [uri "/new/.git/config"] [unique_id "aZFEMX8E8a6foQCJLdDjBwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 myagent.site	2026-02-15 03:44:19 (4 months ago)	Blocking for trying to access an exploit file: /backup/.git/config	Hacking
🇺🇸 TPI-Abuse	2026-02-15 03:15:14 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:15:10.683185 2026] [security2:error] [pid 4983:tid 4983] [client 104.207.36.60:18495] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stantontownship.org"] [uri "/.env.local"] [unique_id "aZE6PsRMzEQMHAEqVfYgqwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:54:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:54:31.399397 2026] [security2:error] [pid 17005:tid 17005] [client 104.207.36.60:31717] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sra-ep.org"] [uri "/admin/.env"] [unique_id "aZE1ZwnorUyaOqqzXyj2awAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mr-Money	2026-02-15 02:44:07 (4 months ago)	scenario: crowdsecurity/http-sensitive-files - events: 5	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:37:09 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:37:04.525459 2026] [security2:error] [pid 303:tid 322] [client 104.207.36.60:60853] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "n5brg.com"] [uri "/.env"] [unique_id "aZExUOTjh-Dl8pGktnWuqwAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:12:16 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:12:12.129181 2026] [security2:error] [pid 25905:tid 25905] [client 104.207.36.60:46205] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mympizzas.com.mx"] [uri "/app/.env"] [unique_id "aZErfNBWXQfAGsAjMCULcwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 02:05:25 (4 months ago)	Too many Status 40X (11) Scanning/Probing (12)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:50:06 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.60 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:49:57.906222 2026] [security2:error] [pid 25829:tid 25829] [client 104.207.36.60:24239] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mrbss.com"] [uri "/.env.save"] [unique_id "aZEYNbetxWsJB6KTbiz6oAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 156 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.181.108.80

🇺🇸 185.180.141.5

🇪🇸 185.120.142.233

🇳🇱 176.65.139.44

🇺🇸 162.216.150.229

🇳🇱 160.119.76.34

🇫🇷 157.173.102.12

🇺🇸 147.185.132.204

🇺🇸 97.210.133.186

🇷🇴 80.94.92.168

🇺🇸 64.225.17.153

🇺🇸 64.62.197.29

🇺🇸 64.62.156.32

🇮🇳 49.204.142.140

🇸🇬 8.222.228.116

🇫🇷 92.205.57.72

🇷🇴 80.94.92.186

🇺🇸 66.132.186.237

🇧🇿 45.227.254.156

🇮🇩 23.40.63.70