JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.59.244

104.207.59.244 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.59.244

Whois 104.207.59.244

IP Abuse Reports for 104.207.59.244:

This IP address has been reported a total of 130 times from 15 distinct sources. 104.207.59.244 was first reported on June 4th 2024, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-02-16 02:06:15 (3 months ago)	Too many Status 40X (12) Scanning/Probing (13)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-02-15 12:50:03 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 12:15:56 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:15:51.951613 2026] [security2:error] [pid 25823:tid 25823] [client 104.207.59.244:25511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teknna.com"] [uri "/.env.production"] [unique_id "aZG498rwN3mu1ok9x88qgAAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:26:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:26:32.911971 2026] [security2:error] [pid 10534:tid 10534] [client 104.207.59.244:30683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thewaywework.com"] [uri "/.env.save"] [unique_id "aZGtaDqGlWxwI1RYknk4_gAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mario Silber	2026-02-15 02:26:56 (3 months ago)	(mod_security) mod_security triggered on hostname [redacted] 104.207.59.244 (CA/Canada/-)	SQL Injection
🇺🇸 TPI-Abuse	2026-02-15 01:21:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:21:13.976349 2026] [security2:error] [pid 13979:tid 13979] [client 104.207.59.244:58983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mundanestudies.org"] [uri "/backup/.git/config"] [unique_id "aZEfiZ8_CowpStllLO9e-QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-02-15 01:06:31 (3 months ago)	Scanning/Probing (27)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:52:35 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:52:30.451444 2026] [security2:error] [pid 27032:tid 27032] [client 104.207.59.244:52555] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mrgutierrezshow.com"] [uri "/test/.git/config"] [unique_id "aZEYzm3UGbJtVwMGAw-lNgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:00:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:00:52.268919 2026] [security2:error] [pid 23286:tid 23299] [client 104.207.59.244:14169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "longevityworkout.com"] [uri "/.git/config"] [unique_id "aZEMtJO6c80OtUPzKnO_nwAAAUU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 22:45:26 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 17:43:33.365316 2026] [security2:error] [pid 17108:tid 17108] [client 104.207.59.244:11949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "limolaketahoe.com"] [uri "/dev/.git/config"] [unique_id "aZD6lSvMT8zbfvKc5O_qBwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Carsten	2026-02-14 22:05:53 (3 months ago)	GET [api/.git/config]	Port Scan
🇺🇸 TPI-Abuse	2026-02-14 21:24:50 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.244 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 16:24:46.478778 2026] [security2:error] [pid 746329:tid 746329] [client 104.207.59.244:42243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "leevardaman.com"] [uri "/.env.local"] [unique_id "aZDoHlL_eL664iWqv-UqHAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2026-01-23 07:38:44 (4 months ago)	Wordpress probing for vulnerabilities	Hacking Exploited Host
Anonymous	2026-01-05 20:06:18 (5 months ago)	Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report tim ... show more Attempted brute force login to web vpn 9 time(s); last attempt for 2026.01.05 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-21 11:02:06 (5 months ago)	Attempted brute force login to web vpn 162 time(s); last attempt for 2025.12.21 is noted in report t ... show more Attempted brute force login to web vpn 162 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:8c01:d001

🇳🇱 145.14.151.221

🇹🇷 45.158.14.124

🇺🇸 23.239.12.52

🇺🇸 23.239.4.120

🇷🇺 213.234.11.10

🇺🇸 196.51.184.116

🇺🇸 170.106.119.153

🇭🇰 152.32.211.69

🇺🇸 146.190.154.100

🇵🇰 137.59.230.170

🇺🇸 43.166.172.248

🇸🇬 43.156.122.143

🇧🇷 187.120.107.227

🇨🇳 101.76.248.214

🇺🇸 54.237.16.113

🇬🇧 35.203.210.196

🇰🇷 222.236.155.146

🇦🇷 190.181.90.48

🇸🇦 141.179.20.71