JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.59.157

104.207.59.157 was found in our database!

This IP was reported 121 times. Confidence of Abuse is 8%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.59.157

Whois 104.207.59.157

IP Abuse Reports for 104.207.59.157:

This IP address has been reported a total of 121 times from 15 distinct sources. 104.207.59.157 was first reported on July 1st 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 AvonleaConsulting	2026-06-07 23:13:14 (2 days ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-04-03 10:16:52 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.59.157 (CA/Canada/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.59.157 (CA/Canada/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 Packets-Decreaser.NET	2025-12-29 14:00:53 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-12-21 09:43:05 (5 months ago)	Attempted brute force login to web vpn 288 time(s); last attempt for 2025.12.21 is noted in report t ... show more Attempted brute force login to web vpn 288 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 23:07:47 (5 months ago)	Attempted brute force login to web vpn 162 time(s); last attempt for 2025.12.19 is noted in report t ... show more Attempted brute force login to web vpn 162 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
🇨🇴 adalbertoreyes.org	2025-11-29 17:53:44 (6 months ago)	CategoryPortScan	Port Scan
🇺🇸 TPI-Abuse	2025-11-24 08:29:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:29:40.888725 2025] [security2:error] [pid 6751:tid 6751] [client 104.207.59.157:12211] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.frankcgill.com"] [uri "/.git/HEAD"] [unique_id "aSQXdAPr8zq-Z7_LUWCIQgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 06:16:19 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:16:12.602908 2025] [security2:error] [pid 4202:tid 4202] [client 104.207.59.157:34705] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.albrittonmcclain.com"] [uri "/.env"] [unique_id "aSP4LJoT0cXa72m4C5m55AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-24 03:47:41 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.157 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 23 22:47:38.854108 2025] [security2:error] [pid 5540:tid 5540] [client 104.207.59.157:26637] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.realestateinpalmbeachflorida.com"] [uri "/.svn/wc.db"] [unique_id "aSPVWnnMOlqADzloGcb7uwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-04-07 07:29:26 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-06 20:52:57 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.06 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.06 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-05 22:29:39 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.05 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-04 22:35:57 (1 year ago)	Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.04 is noted in report tim ... show more Attempted brute force login to web vpn 6 time(s); last attempt for 2025.04.04 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-03 11:32:41 (1 year ago)	Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.03 is noted in report tim ... show more Attempted brute force login to web vpn 3 time(s); last attempt for 2025.04.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-04-02 11:35:04 (1 year ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.02 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2025.04.02 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 121 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.239.51.109

🇭🇰 154.12.182.123

🇨🇳 101.126.86.90

🇺🇸 64.62.197.22

🇨🇦 20.104.56.95

🇷🇴 2.57.121.112

🇺🇸 2602:80d:1008::4b

🇩🇪 139.19.117.130

🇺🇸 107.150.109.196

🇮🇩 103.59.160.82

🇨🇦 85.217.149.47

🇧🇬 5.188.206.46

🇹🇭 203.154.158.195

🇱🇹 194.165.16.167

🇱🇹 45.227.254.170

🇬🇧 45.43.86.210

🇨🇳 43.248.108.193

🇸🇬 43.156.71.125

🇭🇰 20.205.34.2

🇷🇴 2.57.122.177