JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.59.247

104.207.59.247 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 4%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.59.247

Whois 104.207.59.247

IP Abuse Reports for 104.207.59.247:

This IP address has been reported a total of 132 times from 20 distinct sources. 104.207.59.247 was first reported on June 6th 2024, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-20 02:37:34 (3 days ago)	Web App Attack	Web App Attack
🇮🇹 [email protected]	2026-04-17 22:34:02 (2 months ago)	[Sat Apr 18 00:34:02.273114 2026] [authz_core:error] [pid 560720:tid 560779] [remote 104.207.59.247: ... show more [Sat Apr 18 00:34:02.273114 2026] [authz_core:error] [pid 560720:tid 560779] [remote 104.207.59.247:45065] AH01630: client denied by server configuration: /var/www/html/MyWeb/Wordpress_www/wp-login.php ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-01-07 18:46:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 13:46:28.169234 2026] [security2:error] [pid 21348:tid 21348] [client 104.207.59.247:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thectegroup.net"] [uri "/.env"] [unique_id "aV6qBIVvlTmmTMG2HORfGAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-30 08:27:06 (5 months ago)	"GET /.svn/wc.db HTTP/1.1"	Hacking Web App Attack
🇨🇭 Danny-CH	2025-12-29 13:49:00 (5 months ago)	lots of http requests	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 05:51:44 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 29 00:51:35.230735 2025] [security2:error] [pid 23409:tid 23409] [client 104.207.59.247:44811] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bullsalerts.com"] [uri "/.env"] [unique_id "aVIW56gdtSamUdWkROZpxgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-29 04:19:27 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 23:19:22.551784 2025] [security2:error] [pid 13591:tid 13591] [client 104.207.59.247:51515] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "usoilinc.com"] [uri "/.svn/wc.db"] [unique_id "aVIBSkEmzrLZ-M3-EsOtCQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-29 00:48:16 (5 months ago)	2025-12-29T02:48:16.635017+02:00 zanati wp(www.sahpa.co.za)[398019]: Blocked authentication attempt ... show more 2025-12-29T02:48:16.635017+02:00 zanati wp(www.sahpa.co.za)[398019]: Blocked authentication attempt for [email protected] from 104.207.59.247 ... show less	Web App Attack
🇫🇷 bigorre.org	2025-12-28 11:00:13 (5 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇪🇸 10dencehispahard SL	2025-11-19 07:14:37 (7 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇪🇸 10dencehispahard SL	2025-10-16 06:55:08 (8 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-10-06 21:50:28 (8 months ago)	wordpress-trap	Web App Attack
Anonymous	2025-10-02 00:56:04 (8 months ago)	wordpress-trap	Web App Attack
🇵🇱 sefinek.net	2025-09-29 07:09:24 (8 months ago)	Triggered Cloudflare WAF (firewallCustom) from KR. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from KR. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-04-07 12:47:33 (1 year ago)	Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report tim ... show more Attempted brute force login to web vpn 4 time(s); last attempt for 2025.04.07 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.81

🇺🇸 147.185.132.19

🇨🇦 137.184.170.9

🇦🇹 79.133.43.196

🇩🇪 64.89.163.245

🇺🇸 44.223.116.149

🇬🇧 35.203.211.88

🇳🇱 192.42.116.42

🇧🇷 191.37.229.216

🇲🇴 182.93.50.90

🇺🇸 172.234.199.75

🇧🇷 172.68.19.84

🇸🇪 157.22.45.108

🇨🇳 113.125.165.132

🇺🇸 44.215.242.225

🇰🇷 220.127.148.6

🇺🇸 45.55.186.92

🇺🇸 44.244.129.198

🇺🇸 44.223.115.10

🇳🇱 176.65.139.247