JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.59.39

104.207.59.39 was found in our database!

This IP was reported 129 times. Confidence of Abuse is 16%: ?

16%

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.59.39

Whois 104.207.59.39

IP Abuse Reports for 104.207.59.39:

This IP address has been reported a total of 129 times from 16 distinct sources. 104.207.59.39 was first reported on June 7th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 wlt-blocker	2026-05-28 20:09:15 (1 week ago)	Unauthorized access to webpage admin	Web App Attack
🇫🇷 tecnicorioja	2026-05-15 22:00:15 (3 weeks ago)	wp-login attack [15/May/2026:20:53:37	Brute-Force Web App Attack
🇫🇷 masterguru	2026-04-06 10:43:27 (1 month ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.59.39 (CA/Canada/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.59.39 (CA/Canada/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇵🇱 sefinek.net	2026-04-02 15:22:19 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from CA. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from CA. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: /genshin-stella-mod \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 OPR/89.0.4447.51 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 masterguru	2026-03-30 07:42:33 (2 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.59.39 (CA/Canada/-): 1 in the last 360 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 104.207.59.39 (CA/Canada/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇮🇹 VHosting	2026-03-09 20:00:13 (2 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2026-01-03 13:40:39 (5 months ago)	Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.03 is noted in report ti ... show more Attempted brute force login to web vpn 18 time(s); last attempt for 2026.01.03 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-21 11:57:24 (5 months ago)	Attempted brute force login to web vpn 92 time(s); last attempt for 2025.12.21 is noted in report ti ... show more Attempted brute force login to web vpn 92 time(s); last attempt for 2025.12.21 is noted in report timestamp show less	Hacking Brute-Force
Anonymous	2025-12-19 13:57:48 (5 months ago)	Attempted brute force login to web vpn 108 time(s); last attempt for 2025.12.19 is noted in report t ... show more Attempted brute force login to web vpn 108 time(s); last attempt for 2025.12.19 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-12-02 23:00:40 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 18:00:33.970416 2025] [security2:error] [pid 15224:tid 15224] [client 104.207.59.39:56299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pavlounis.com"] [uri "/.env"] [unique_id "aS9vkb6QIX-2hFokOphEuwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ut-addicted.com	2025-12-02 21:23:54 (6 months ago)	\[Tue Dec 02 22:23:50.960455 2025\] \[:error\] \[pid 27033:tid 140546129512192\] \[client 104.207.59 ... show more \[Tue Dec 02 22:23:50.960455 2025\] \[:error\] \[pid 27033:tid 140546129512192\] \[client 104.207.59.39:56213\] \[client 104.207.59.39\] ModSecurity: Access denied with code 403 \(phase 2\). Operator GE matched 5 at TX:anomaly_score. \[file "/usr/local/apache/modsecurity-owasp-latest/rules/REQUEST-949-BLOCKING-EVALUATION.conf"\] \[line "57"\] \[id "949110"\] \[msg "Inbound Anomaly Score Exceeded \(Total Score: 10\)"\] \[severity "CRITICAL"\] \[tag "application-multi"\] \[tag "language-multi"\] \[tag "platform-multi"\] \[tag "attack-generic"\] \[hostname "ut-addicted.com"\] \[uri "/.svn/wc.db"\] \[unique_id "aS9Y5umKImzThKKJzSUj-gAAAMM"\] show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 11:59:01 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 06:58:57.965111 2025] [security2:error] [pid 22004:tid 22004] [client 104.207.59.39:27243] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jacksonconstructiongroup.com"] [uri "/.svn/wc.db"] [unique_id "aS7UgU0u1F_kBrwVduiP2QAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:58:49 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:58:44.431107 2025] [security2:error] [pid 8200:tid 8200] [client 104.207.59.39:11141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "directoryofbikes.com"] [uri "/.svn/wc.db"] [unique_id "aS6AFNMSw35wQ6EBq2wEhwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-02 05:42:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.59.39 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:42:33.749244 2025] [security2:error] [pid 13178:tid 13178] [client 104.207.59.39:47435] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "despojosocial.com"] [uri "/.git/HEAD"] [unique_id "aS58SbQ0N9r8ZKkQbDtUeAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-12-01 23:28:34 (6 months ago)	Attempted brute force login to web vpn 1044 time(s); last attempt for 2025.12.01 is noted in report ... show more Attempted brute force login to web vpn 1044 time(s); last attempt for 2025.12.01 is noted in report timestamp show less	Hacking Brute-Force

Showing 1 to 15 of 129 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.244.66.239

🇺🇸 195.184.76.98

🇸🇬 74.114.31.150

🇩🇪 69.5.169.223

🇯🇵 2600:1900:41d0:cf8b:0:1::

🇺🇸 195.184.76.126

🇩🇪 193.124.20.249

🇩🇪 185.220.101.174

🇺🇸 156.239.253.250

🇺🇸 147.185.132.24

🇮🇳 143.110.177.177

🇧🇷 118.26.105.144

🇨🇳 115.191.73.24

🇺🇸 113.20.4.9

🇮🇹 93.92.78.177

🇺🇸 65.49.20.66

🇳🇱 64.89.162.78

🇺🇸 52.203.216.101

🇮🇳 46.28.45.200

🇺🇸 20.172.240.136