JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.60.16

104.207.60.16 was found in our database!

This IP was reported 93 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.60.16

Whois 104.207.60.16

IP Abuse Reports for 104.207.60.16:

This IP address has been reported a total of 93 times from 18 distinct sources. 104.207.60.16 was first reported on June 4th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-02-26 13:23:21 (3 months ago)	git/env leak probe	Web App Attack
Anonymous	2025-12-27 13:06:54 (5 months ago)	2025-12-27T15:06:54.383573+02:00 zanati wp(www.sahpa.co.za)[193657]: Blocked authentication attempt ... show more 2025-12-27T15:06:54.383573+02:00 zanati wp(www.sahpa.co.za)[193657]: Blocked authentication attempt for [email protected] from 104.207.60.16 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 23:11:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:11:11.117796 2025] [security2:error] [pid 4780:tid 4780] [client 104.207.60.16:45749] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "russellzone.com"] [uri "/.svn/wc.db"] [unique_id "aS9yD7OJ9wjLlOIvIoCsYQAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 12:39:31 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:39:23.999393 2025] [security2:error] [pid 424354:tid 424417] [client 104.207.60.16:43701] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "conceptsinammunition.com"] [uri "/.svn/wc.db"] [unique_id "aS7d-0Ex8a5AyelV2PFQ2AAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:58:33 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:58:29.580132 2025] [security2:error] [pid 27790:tid 27790] [client 104.207.60.16:45975] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cidv.com"] [uri "/.svn/wc.db"] [unique_id "aS6ABZgsv1V2hGgHgSqkpgAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 04:50:38 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:50:32.466528 2025] [security2:error] [pid 17363:tid 17363] [client 104.207.60.16:17171] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "harwoodmechanical.com"] [uri "/.svn/wc.db"] [unique_id "aS5wGC4fg74rpuvWaZyc-gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 09:46:17 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 04:46:09.448248 2025] [security2:error] [pid 13520:tid 13520] [client 104.207.60.16:22031] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.kreechers.com"] [uri "/.env"] [unique_id "aSQpYdYqb6Z9dUMIPCTuqAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 08:28:28 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:28:23.107664 2025] [security2:error] [pid 27424:tid 27424] [client 104.207.60.16:50097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.notaryfunding.com"] [uri "/.git/HEAD"] [unique_id "aSQXJ6lXTM4hsNR6AZpASQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 07:20:25 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 02:20:20.579195 2025] [security2:error] [pid 21308:tid 21308] [client 104.207.60.16:14457] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.ikutabukkyokai.com"] [uri "/.env"] [unique_id "aSQHNJqeNZGCCJjkWsvtOwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 04:59:52 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 23:59:46.104782 2025] [security2:error] [pid 28735:tid 28735] [client 104.207.60.16:57357] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.takemehomedogrescue.org"] [uri "/.svn/wc.db"] [unique_id "aSPmQqcEqQYeAtmpqO9RcQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-11-19 06:48:30 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇨🇭 backslash	2025-11-16 07:14:47 (7 months ago)		Bad Web Bot
🇺🇸 nowyouknow	2025-11-14 04:28:31 (7 months ago)	(From [email protected]) Are you searching for a job that can be done right away? If so, coun ... show more (From [email protected]) Are you searching for a job that can be done right away? If so, countless businesses are hiring website chat support agents - no experience is needed, as full training will be provided. Click here to complete your application if you are interested. -----> THEmoneyfromhome.com show less	Phishing Web Spam
Anonymous	2025-11-12 10:24:20 (7 months ago)	Attempted brute force login to web vpn 72 time(s); last attempt for 2025.11.12 is noted in report ti ... show more Attempted brute force login to web vpn 72 time(s); last attempt for 2025.11.12 is noted in report timestamp show less	Hacking Brute-Force
🇹🇷 rtbh.com.tr	2025-11-09 20:09:50 (7 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force

Showing 1 to 15 of 93 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4002:c11::125

🇧🇬 78.128.113.46

🇲🇾 61.4.110.108

🇷🇺 217.195.94.243

🇺🇿 213.230.111.64

🇮🇩 192.25.205.17

🇳🇱 188.166.54.221

🇩🇪 185.242.3.195

🇹🇭 152.32.245.196

🇧🇩 103.86.198.162

🇺🇸 91.230.168.22

🇫🇮 65.21.193.51

🇸🇪 13.62.82.34

🇸🇬 206.189.158.96

🇭🇰 152.32.129.236

🇩🇪 138.68.69.250

🇺🇸 128.203.204.199

🇫🇷 91.196.152.32

🇸🇬 84.75.155.120

🇧🇬 78.128.60.18