JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.60.137

104.207.60.137 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 3%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.60.137

Whois 104.207.60.137

IP Abuse Reports for 104.207.60.137:

This IP address has been reported a total of 141 times from 22 distinct sources. 104.207.60.137 was first reported on June 4th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-24 03:29:08 (5 days ago)	Brute force	Brute-Force
🇩🇪 4server	2026-04-21 12:34:31 (2 months ago)	[TueApr2114:34:29.9067542026][security2:error][pid3025238:tid3025253][client104.207.60.137:0]ModSecu ... show more [TueApr2114:34:29.9067542026][security2:error][pid3025238:tid3025253][client104.207.60.137:0]ModSecurity:Accessdeniedwithcode403$phase1$.Patternmatch\"$\?i$$\?:/\(\?:\^\\|/$\\\\\\\\.$env\\|git\\|svn\\|hg\\|DS_Store$\\|/$\?:wp-config\\|\\\\\\\\.htaccess\\|\\\\\\\\.htpasswd$\\|\\\\\\\\.$\?:sql\\|bak\\|old\\|log$\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"gpwealth.ch\"][uri\"/dump.sql\"][unique_id\"aedu1ZrE_IcxiUza34QemwAAAAU\"] show less	Port Scan Brute-Force Web App Attack
🇫🇮 as211431.net	2026-03-22 14:56:11 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 oncord	2026-02-24 11:27:27 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-19 21:57:30 (4 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-14 02:41:35 (4 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-11 22:13:36 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 17:13:23.725248 2026] [security2:error] [pid 14810:tid 14810] [client 104.207.60.137:57085] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "argun.wine"] [uri "/backend/.env"] [unique_id "aYz_A8leDTODl_zwF7-nsAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 15:25:51 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:25:47.597647 2026] [security2:error] [pid 16476:tid 16511] [client 104.207.60.137:28763] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antidote-it.com"] [uri "/.env.save"] [unique_id "aYtN-09tKsgevCjMBZp6OgAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:13:31 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:13:26.798576 2026] [security2:error] [pid 23199:tid 23210] [client 104.207.60.137:33293] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idwic.com"] [uri "/test/.git/config"] [unique_id "aYq-dn16UGkN-LIDmLr4_gAAAIA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:27:55 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:27:51.627186 2026] [security2:error] [pid 29667:tid 29667] [client 104.207.60.137:18059] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirklandhighlands.org"] [uri "/.env.save"] [unique_id "aYqlt_5hm0SoZH92kI6tuQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 03:11:41 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:11:36.034492 2026] [security2:error] [pid 14705:tid 14705] [client 104.207.60.137:56871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kinnerakhareedu.com"] [uri "/.env"] [unique_id "aYqh6BBf6OjemKxW_Cg8JQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 02:28:35 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 21:28:25.740097 2026] [security2:error] [pid 26884:tid 26884] [client 104.207.60.137:43403] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kimpitchellandassociatesinc.com"] [uri "/.env"] [unique_id "aYqXyZxyY94jlQKm_hZJwAAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-09 22:59:11 (4 months ago)	Auto-ban: >3000 req/min op 2026-02-09	Hacking Web App Attack SSH
🇦🇺 oncord	2026-01-31 09:49:31 (4 months ago)	Form spam	Web Spam
🇨🇭 backslash	2026-01-16 11:50:06 (5 months ago)	block ruleset 6A1105329D233F6F53B9B61CE056BD4DAAE75AB4	Web Spam

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.220.100.243

🇨🇦 148.170.156.248

🇪🇸 45.92.84.49

🇯🇵 43.165.173.149

🇺🇸 216.180.246.247

🇰🇷 211.253.37.225

🇺🇸 172.253.214.115

🇧🇼 168.167.72.132

🇹🇭 110.77.172.183

🇫🇷 85.217.140.27

🇳🇱 51.158.205.203

🇸🇬 47.84.133.68

🇪🇸 45.92.87.195

🇰🇷 34.50.7.220

🇬🇧 5.226.140.65

🇧🇷 168.196.132.34

🇺🇸 147.185.132.179

🇺🇸 147.185.132.50

🇺🇸 134.209.120.216

🇮🇳 122.184.124.46