JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.60.13

104.207.60.13 was found in our database!

This IP was reported 89 times. Confidence of Abuse is 39%: ?

39%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.60.13

Whois 104.207.60.13

IP Abuse Reports for 104.207.60.13:

This IP address has been reported a total of 89 times from 24 distinct sources. 104.207.60.13 was first reported on June 11th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-01 21:59:03 (4 days ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-31. show less	Web App Attack SSH Hacking
🇳🇱 homeshowdomain.nl	2026-05-31 21:59:34 (5 days ago)	Auto-ban: >3000 req/min op 2026-05-31	Web App Attack SSH Hacking
🇳🇴 Abuse Buster	2026-05-31 03:45:19 (6 days ago)	104.207.60.13 - - [31/May/2026:05:45:16 +0200] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (L ... show more 104.207.60.13 - - [31/May/2026:05:45:16 +0200] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Linux; Android 6.0.1; OPPO A57 Build/MMB29M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/66.0.3359.126 MQQBrowser/6.2 TBS/044813 Mobile Safari/537.36 MMWEBID/6886 MicroMessenger/7.0.6.1460(0x27000634) Process/tools NetType/WIFI Language/zh_CN" 104.207.60.13 - - [31/May/2026:05:45:17 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.80 Safari/537.36" ... show less	Web App Attack
🇩🇪 FeG Deutschland	2026-05-31 03:41:22 (6 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 mnsf	2026-05-31 00:05:24 (6 days ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 00:01:33 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.13 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.13 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 20:01:29.901184 2026] [security2:error] [pid 29622:tid 29622] [client 104.207.60.13:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "luisguacache.com"] [uri "/.git/config"] [unique_id "aht6WWo24gdRSLpePAAWdQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-30 23:37:59 (6 days ago)	[30/May/2026:23:37:59 +0000] host=lovelyrender.app server=lovelyrender.app ip=104.207.60.13 method=G ... show more [30/May/2026:23:37:59 +0000] host=lovelyrender.app server=lovelyrender.app ip=104.207.60.13 method=GET req=/.git/config uri=/index.php status=302 bytes=5 rt=0.039 urt=0.039 ref="-" ua="Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3864.0 Safari/537.36" ... show less	Web App Attack Bad Web Bot
🇩🇪 FeG Deutschland	2026-05-12 20:22:39 (3 weeks ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇩🇪 4server	2026-05-01 04:48:21 (1 month ago)	[FriMay0106:48:19.2471442026][security2:error][pid3710738:tid3710756][client104.207.60.13:0]ModSecur ... show more [FriMay0106:48:19.2471442026][security2:error][pid3710738:tid3710756][client104.207.60.13:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:10\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"residence.chesasilva.ch\"][uri\"/.aws/credentials\"][unique_id\"afQwk_AswC50bL3Y_JsMqQAAAM8\"] show less	Port Scan Brute-Force Web App Attack
🇫🇷 masterguru	2026-04-06 01:58:27 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.60.13 (CA/Canada/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.60.13 (CA/Canada/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2026-03-24 08:20:55 (2 months ago)	IM360 WAF: WordPress plugin/theme auto install block	Web App Attack
🇱🇻 garmtech.com	2026-03-15 18:26:55 (2 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇩🇪 stinpriza	2026-02-07 21:57:26 (3 months ago)	Web App Attack	Web App Attack
🇪🇸 10dencehispahard SL	2026-01-26 07:48:12 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
🇵🇱 sefinek.net	2026-01-14 01:55:14 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 89 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.37.174.62

🇺🇸 205.210.31.57

🇿🇦 197.185.158.68

🇪🇪 196.196.253.20

🇮🇪 185.192.16.86

🇳🇱 176.65.148.242

🇺🇸 166.151.48.109

🇩🇪 155.117.127.214

🇺🇸 66.132.172.157

🇺🇸 20.15.163.245

🇨🇩 196.250.95.175

🇬🇧 193.163.125.156

🇺🇸 142.248.80.49

🇮🇳 103.241.232.93

🇺🇸 66.132.195.66

🇬🇧 35.203.210.183

🇺🇸 17.241.75.183

🇰🇪 196.250.210.33

🇯🇵 183.180.127.59

🇩🇪 165.227.129.77