JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.60.97

104.207.60.97 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.60.97

Whois 104.207.60.97

IP Abuse Reports for 104.207.60.97:

This IP address has been reported a total of 142 times from 19 distinct sources. 104.207.60.97 was first reported on June 11th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 oncord	2026-02-24 06:25:11 (3 months ago)	Form spam	Web Spam
🇺🇸 oncord	2026-02-15 14:54:29 (3 months ago)	Form spam	Web Spam
🇦🇺 oncord	2026-02-13 12:44:42 (3 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-11 21:16:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 16:16:52.141179 2026] [security2:error] [pid 10802:tid 10802] [client 104.207.60.97:11497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "areaware-archive.com"] [uri "/admin/.env"] [unique_id "aYzxxBLwRsKPROgAQSjXawAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-11 15:42:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 11 10:42:19.215114 2026] [security2:error] [pid 32418:tid 32418] [client 104.207.60.97:37973] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apsni.net"] [uri "/.env.staging"] [unique_id "aYyjWyPDr3YkaTvGO9uuIwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 15:39:02 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 10 10:38:55.148413 2026] [security2:error] [pid 1925282:tid 1925298] [client 104.207.60.97:38939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "antinats.com"] [uri "/admin/.env"] [unique_id "aYtRDyB2t-c004y6kBgSAAAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 04:33:47 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 23:33:42.591332 2026] [security2:error] [pid 16435:tid 16435] [client 104.207.60.97:23665] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icwcruisersguide.com"] [uri "/.env"] [unique_id "aYq1JiuoDIpEs68RtQTkigAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-10 04:31:22 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-10 03:39:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 22:39:26.823934 2026] [security2:error] [pid 26171:tid 26171] [client 104.207.60.97:18211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ibcountn.com"] [uri "/new/.git/config"] [unique_id "aYqobuX6inVbWAwo958ZKQAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-10 00:49:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 19:49:32.841456 2026] [security2:error] [pid 30536:tid 30536] [client 104.207.60.97:59497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "keystroke.info"] [uri "/.env.save"] [unique_id "aYqAnJrBbfm0M-3J3FdAAgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 22:47:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 17:47:52.059374 2026] [security2:error] [pid 3556:tid 3556] [client 104.207.60.97:42155] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "houstoun.me"] [uri "/admin/.env"] [unique_id "aYpkGGxxsgSuVHtzDOR1WwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 20:32:06 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.60.97 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 15:31:57.556476 2026] [security2:error] [pid 16134:tid 16134] [client 104.207.60.97:27423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "honeybeeplace.com"] [uri "/.env.production"] [unique_id "aYpEPdIIGA3I7OpjUE6ZrwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2026-02-02 05:52:40 (4 months ago)	Form spam	Web Spam
🇬🇧 oncord	2026-01-27 01:50:38 (4 months ago)	Form spam	Web Spam
Anonymous	2026-01-19 18:43:50 (4 months ago)	Sending spam-mails via forms/direct PHP Execution/SQL injection from email:gilberto.mackinolty@gmail ... show more Sending spam-mails via forms/direct PHP Execution/SQL injection from email:[email protected] show less	Email Spam Bad Web Bot

Showing 1 to 15 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.94.115.164

🇺🇸 216.24.210.233

🇳🇱 204.76.203.221

🇳🇱 204.76.203.212

🇧🇪 198.235.24.217

🇧🇪 198.235.24.207

🇧🇪 198.235.24.206

🇬🇧 195.140.214.27

🇬🇧 188.240.59.44

🇮🇶 185.24.60.183

🇮🇳 182.95.87.133

🇩🇪 167.94.145.19

🇸🇬 101.47.155.9

🇹🇿 41.59.16.221

🇬🇧 35.203.211.92

🇮🇪 34.242.200.10

🇳🇱 34.91.255.174

🇬🇧 31.14.254.67

🇺🇸 18.222.230.185

🇧🇪 198.235.24.205