JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.59.113

104.207.59.113 was found in our database!

This IP was reported 145 times. Confidence of Abuse is 45%: ?

45%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.59.113

Whois 104.207.59.113

IP Abuse Reports for 104.207.59.113:

This IP address has been reported a total of 145 times from 23 distinct sources. 104.207.59.113 was first reported on June 4th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 pm33	2026-06-17 13:50:40 (1 day ago)	Wordpress login attempts	Brute-Force
🇫🇷 ELYAZ	2026-06-17 02:17:44 (2 days ago)	(y4) Failed scan -byebye- from 104.207.59.113 (CA/Canada/-): (CF_ENABLE)	Hacking
🇲🇹 Malta	2026-06-16 23:16:41 (2 days ago)	104.207.59.113 - - [17/Jun/2026:01:16:41 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 104.207.59.113 - - [17/Jun/2026:01:16:41 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.1 Safari/605.1.15" show less	Hacking Web App Attack VPN IP
🇫🇷 ELYAZ	2026-06-15 20:13:16 (3 days ago)	(y4) Failed scan -byebye- from 104.207.59.113 (CA/Canada/-): (CF_ENABLE)	Hacking
🇩🇪 FeG Deutschland	2026-06-15 09:06:13 (3 days ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇭🇺 bcsaba	2026-06-12 23:19:53 (6 days ago)	CMS (WordPress or Joomla) login attempt. 104.207.59.113 - - [13/Jun/2026:01:19:51 +0200] "POST /wp-l ... show more CMS (WordPress or Joomla) login attempt. 104.207.59.113 - - [13/Jun/2026:01:19:51 +0200] "POST /wp-login.php HTTP/1.1" 200 3521 "https://REDACTED/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:121.0) Gecko/20100101 Firefox/121.0" show less	Hacking Brute-Force Web App Attack
🇺🇸 dtorrer	2026-06-11 18:10:42 (1 week ago)	Brute-force general attack.	Brute-Force
🇲🇹 Malta	2026-06-11 15:54:55 (1 week ago)	104.207.59.113 - - [11/Jun/2026:17:54:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintos ... show more 104.207.59.113 - - [11/Jun/2026:17:54:55 +0200] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.2 Safari/605.1.15" Brute-force password attempt show less	Hacking Web App Attack Brute-Force
Anonymous	2026-06-11 01:20:01 (1 week ago)	Web attack blocked by Wordfence on helenehoenjet.nl (1 hit). Reported by CRMON.	Web App Attack
🇫🇷 pm33	2026-06-10 16:21:05 (1 week ago)	Wordpress login attempts	Brute-Force
🇺🇸 TPI-Abuse	2026-02-09 21:38:15 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 16:38:08.002678 2026] [security2:error] [pid 10643:tid 10643] [client 104.207.59.113:43785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "garnersystems.com"] [uri "/test/.git/config"] [unique_id "aYpTwB2W6pjbO0Xa35209gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 10:38:52 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 05:38:44.062868 2026] [security2:error] [pid 174437:tid 174527] [client 104.207.59.113:16447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gafm.org"] [uri "/wp/.git/config"] [unique_id "aYm5NJ6BO_Ujr-6P95I4gQAAAU0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-09 07:56:26 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.113 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 09 02:56:20.893773 2026] [security2:error] [pid 8365:tid 8365] [client 104.207.59.113:39195] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fwa51.com"] [uri "/.env.staging"] [unique_id "aYmTJGZpccSiojzyvkKZnQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 afleventoffice.com.au	2026-02-09 01:57:54 (4 months ago)	GET /admin/.env HTTP/1.1	Web App Attack
🇩🇪 F242	2026-01-30 07:01:27 (4 months ago)	Wordpress soft lock	Web App Attack

Showing 1 to 15 of 145 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.155.90.118

🇷🇺 185.245.184.230

🇫🇷 146.70.194.238

🇳🇱 81.19.216.84

🇺🇸 74.48.56.130

🇳🇱 50.7.233.211

🇳🇱 45.148.10.240

🇺🇸 16.58.56.214

🇳🇱 195.178.110.30

🇫🇷 195.154.211.56

🇬🇧 188.240.59.59

🇧🇷 187.62.87.27

🇧🇷 187.6.7.138

🇵🇭 161.49.89.39

🇫🇮 147.185.133.78

🇨🇳 106.12.18.199

🇺🇸 103.234.62.58

🇭🇰 101.36.106.89

🇹🇷 95.70.234.68

🇩🇪 69.5.169.14