JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.60.231

104.207.60.231 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.60.231

Whois 104.207.60.231

IP Abuse Reports for 104.207.60.231:

This IP address has been reported a total of 142 times from 16 distinct sources. 104.207.60.231 was first reported on June 11th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-15 17:34:26 (3 weeks ago)	Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy ... show more Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy — zero tolerance for exploit scanning. Banned May 15, 17:34 UTC. Origin: Canada, Toronto. show less	Hacking Bad Web Bot Web App Attack
🇫🇷 pm33	2026-02-11 19:45:33 (3 months ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 17:59:04 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 12:58:57.421237 2026] [security2:error] [pid 11650:tid 11650] [client 104.207.60.231:44441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "arabou.co"] [uri "/backend/.env"] [unique_id "aYzDYR73okGU2LflDQzwHwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 05:04:40 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 00:04:36.524997 2026] [security2:error] [pid 21434:tid 21434] [client 104.207.60.231:10821] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kmp.net"] [uri "/frontend/.env"] [unique_id "aYq8ZDNtHRdv1jIuE8jOXQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:00:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:59:55.082594 2026] [security2:error] [pid 18351:tid 18351] [client 104.207.60.231:39425] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icansayit.com"] [uri "/wp/.git/config"] [unique_id "aYqtOxgb4cyY2zL13qn62gAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:50:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:50:24.201058 2026] [security2:error] [pid 32208:tid 32222] [client 104.207.60.231:61337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "humaehealth.com"] [uri "/app/.env"] [unique_id "aYqA0DLjGA96x6QIS84OFgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:06:11 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:06:03.486003 2026] [security2:error] [pid 2124703:tid 2124703] [client 104.207.60.231:64153] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kentsavagelaw.com"] [uri "/app/.git/config"] [unique_id "aYp2a49MmcVID2PJa0DyMwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:37:05 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:36:53.943355 2026] [security2:error] [pid 2752:tid 2752] [client 104.207.60.231:14341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hshs82.com"] [uri "/.env.production"] [unique_id "aYpvlTl2UN25ZoYk7wSNFAAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 23:11:38 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 18:10:56.638251 2026] [security2:error] [pid 3914:tid 3914] [client 104.207.60.231:28911] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hppagewideflorida.com"] [uri "/config/.env"] [unique_id "aYppgDE2r98ouUAuKlp3cgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:51:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:51:33.425548 2026] [security2:error] [pid 1443981:tid 1443981] [client 104.207.60.231:61135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hookedupfishing.net"] [uri "/app/.env"] [unique_id "aYpI1Wbj7CPg0gVgZmb_5wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:16:37 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:16:27.540080 2026] [security2:error] [pid 13149:tid 13149] [client 104.207.60.231:14337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hometechllc.com"] [uri "/dev/.git/config"] [unique_id "aYpAm0GCzS6aHzh2cPWZ2gAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 22:22:18 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 17:22:10.702795 2025] [security2:error] [pid 30802:tid 30802] [client 104.207.60.231:26857] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "diepeveen.com"] [uri "/.git/HEAD"] [unique_id "aS9mkm6-a5T62ZnIUSC9lAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 19:58:56 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:58:52.054567 2025] [security2:error] [pid 31434:tid 31434] [client 104.207.60.231:23057] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarawatt.com"] [uri "/.svn/wc.db"] [unique_id "aS9E_COg7DcA1an7cdc_bgAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 19:20:50 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 14:20:46.721240 2025] [security2:error] [pid 2660:tid 2660] [client 104.207.60.231:42813] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "georgelaceysales.com"] [uri "/.svn/wc.db"] [unique_id "aS88DjLUkZRiIFpCct0_NQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 12:03:14 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 07:03:07.970642 2025] [security2:error] [pid 24922:tid 24922] [client 104.207.60.231:27941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avanticaffe.com"] [uri "/.git/HEAD"] [unique_id "aS7Vew-p1mdc2leGJRzXGwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.202.112.76

🇬🇧 195.96.139.211

🇳🇱 193.187.128.214

🇮🇳 168.220.237.171

🇮🇩 143.20.49.38

🇩🇪 130.12.181.101

🇨🇳 123.96.5.172

🇨🇳 112.94.189.208

🇺🇸 20.62.204.17

🇺🇸 207.241.173.115

🇬🇧 194.50.235.148

🇺🇸 185.149.26.71

🇸🇬 128.199.216.54

🇺🇦 45.12.3.48

🇩🇪 43.165.6.182

🇮🇳 34.93.128.179

🇳🇱 195.178.110.30

🇺🇸 192.178.119.148

🇩🇪 167.94.145.30

🇺🇸 104.42.121.220