JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 107.174.68.244

107.174.68.244 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	107-174-68-244-host.colocrossing.com
Domain Name	hostpapa.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 107.174.68.244

Whois 107.174.68.244

IP Abuse Reports for 107.174.68.244:

This IP address has been reported a total of 29 times from 9 distinct sources. 107.174.68.244 was first reported on November 15th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 valryx	2026-01-25 03:40:05 (5 months ago)	🛡️ Cloudflare WAF - 7 malicious requests Actions: block Sources: firewallCustom Country: US Attacked ... show more 🛡️ Cloudflare WAF - 7 malicious requests Actions: block Sources: firewallCustom Country: US Attacked paths: • /2021.backup • /Site.backup • /2019.backup User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.12 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-23 21:50:50 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 23 16:50:44.482102 2026] [security2:error] [pid 11783:tid 11783] [client 107.174.68.244:45094] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|mail.oualie.com\|F\|2"] [data ".oualie.com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "mail.oualie.com"] [uri "/mail.oualie.com.backup"] [unique_id "aXPtNBf_WqhayFb759i7LwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-23 17:00:36 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 23 12:00:33.169828 2026] [security2:error] [pid 15252:tid 15252] [client 107.174.68.244:38112] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kalvannastudios.com\|F\|2"] [data ".com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kalvannastudios.com"] [uri "/kalvannastudios.com.backup"] [unique_id "aXOpMUzl_I92WoP8R35YmgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-23 15:22:31 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 23 10:22:26.664247 2026] [security2:error] [pid 21052:tid 21121] [client 107.174.68.244:58398] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|indigowampum.philacentric.com\|F\|2"] [data ".philacentric.com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "indigowampum.philacentric.com"] [uri "/indigowampum.philacentric.com.backup"] [unique_id "aXOSMokg8pJVKzrzxXamdAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-23 07:06:36 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 23 02:06:33.110445 2026] [security2:error] [pid 2544730:tid 2544730] [client 107.174.68.244:52698] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|forgetfoo.cathrynn.com\|F\|2"] [data ".cathrynn.com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "forgetfoo.cathrynn.com"] [uri "/forgetfoo.cathrynn.com.backup"] [unique_id "aXMd-WVcGN1Kz98Iw23UTAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 WizardsToolkit	2026-01-23 04:44:52 (5 months ago)	attempted to access /backup.rar	Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 22:56:55 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 17:56:48.635540 2026] [security2:error] [pid 632426:tid 632426] [client 107.174.68.244:39948] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|slimlaw.com\|F\|2"] [data ".com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "slimlaw.com"] [uri "/slimlaw.com.backup"] [unique_id "aXKrMEFPyh77vvWpzx19jgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 14:47:28 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 09:47:23.649498 2026] [security2:error] [pid 1379:tid 1379] [client 107.174.68.244:37086] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.theledman.com\|F\|2"] [data ".theledman.com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.theledman.com"] [uri "/www.theledman.com.backup"] [unique_id "aXI4e_5q29GtYsnwwTH08AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 07:46:11 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 02:46:05.061235 2026] [security2:error] [pid 11068:tid 11068] [client 107.174.68.244:36842] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.aguaflot.aguasolar.com\|F\|2"] [data ".aguaflot.aguasolar.com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.aguaflot.aguasolar.com"] [uri "/www.aguaflot.aguasolar.com.backup"] [unique_id "aXHVvZpwNsbFhj5gC1_gRQAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 05:38:14 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 00:38:08.056956 2026] [security2:error] [pid 768:tid 768] [client 107.174.68.244:45570] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|herrell.net.utilis.net\|F\|2"] [data ".net.utilis.net.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "herrell.net.utilis.net"] [uri "/herrell.net.utilis.net.backup"] [unique_id "aXG3wGK1aFhpEqT_Vt09-gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 22:03:16 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 21 17:03:11.192424 2026] [security2:error] [pid 3801:tid 3801] [client 107.174.68.244:49424] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|whenfoodmatters.com.salsberggroup.com\|F\|2"] [data ".com.salsberggroup.com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "whenfoodmatters.com.salsberggroup.com"] [uri "/whenfoodmatters.com.salsberggroup.com.backup"] [unique_id "aXFNH3LMVbc-4q89vxfx2wAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-21 04:20:40 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 23:20:33.500284 2026] [security2:error] [pid 9674:tid 9674] [client 107.174.68.244:39818] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|stoveclockrepair.com\|F\|2"] [data ".com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "stoveclockrepair.com"] [uri "/stoveclockrepair.com.backup"] [unique_id "aXBUEaq4KNoKP3Q7KHojUwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-20 06:57:43 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 20 01:57:35.663236 2026] [security2:error] [pid 10136:tid 10136] [client 107.174.68.244:52152] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|photoboothtogo.com\|F\|2"] [data ".com.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "photoboothtogo.com"] [uri "/photoboothtogo.com.backup"] [unique_id "aW8nXz-JOxPFbp8BLk4RMQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-19 00:59:46 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossin ... show more (mod_security) mod_security (id:210730) triggered by 107.174.68.244 (107-174-68-244-host.colocrossing.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 18 19:59:39.831580 2026] [security2:error] [pid 23039:tid 23039] [client 107.174.68.244:55594] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|cashforjunkcars.info\|F\|2"] [data ".info.backup"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "cashforjunkcars.info"] [uri "/cashforjunkcars.info.backup"] [unique_id "aW2B-1HAsvQGB_eJGt8z0AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 eacontent	2026-01-18 12:14:00 (5 months ago)		Web App Attack

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.243

🇺🇸 205.210.31.77

🇺🇸 205.210.31.73

🇺🇸 192.155.90.118

🇲🇽 189.203.101.213

🇲🇾 121.120.32.64

🇭🇰 43.132.193.237

🇬🇧 35.203.211.190

🇺🇸 20.245.71.147

🇧🇪 198.235.24.192

🇳🇱 176.65.139.92

🇮🇩 143.20.49.93

🇨🇳 118.145.242.127

🇳🇱 82.39.86.153

🇨🇦 57.134.215.133

🇳🇱 34.178.194.243

🇨🇱 34.176.50.180

🇺🇸 34.42.236.238

🇮🇪 18.201.179.98

🇺🇸 2602:80d:1007::f