JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.63.169.59

66.63.169.59 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 36%: ?

36%

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Domain Name	hostpapa.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.63.169.59

Whois 66.63.169.59

IP Abuse Reports for 66.63.169.59:

This IP address has been reported a total of 17 times from 5 distinct sources. 66.63.169.59 was first reported on June 23rd 2026, and the most recent report was 1 minute ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-26 08:37:00 (1 minute ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 04:36:55.341477 2026] [security2:error] [pid 18164:tid 18164] [client 66.63.169.59:17202] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "frankcgill.com"] [uri "/sftp-config.json"] [unique_id "aj46J2zlDdpjvDIBliC9yAAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 19:03:17 (13 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 15:03:11.765883 2026] [security2:error] [pid 24015:tid 24015] [client 66.63.169.59:41612] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "formationone.com"] [uri "/sftp-config.json"] [unique_id "aj17bxoTIHu_IheQhG__JwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 17:11:02 (15 hours ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 13:10:56.519990 2026] [security2:error] [pid 21173:tid 21183] [client 66.63.169.59:43654] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.biblewriter.com"] [uri "/sftp-config.json"] [unique_id "aj1hIIyEvd9K-4xg40siCAAAAEY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 02:07:26 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 22:07:21.240428 2026] [security2:error] [pid 22864:tid 22864] [client 66.63.169.59:60936] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ryszardwycisk.com"] [uri "/sftp-config.json"] [unique_id "ajyNWdQ7toT8qdxxloWbywAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 15:00:40 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 11:00:36.341405 2026] [security2:error] [pid 5966:tid 5966] [client 66.63.169.59:52868] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ruizpuche.com"] [uri "/sftp-config.json"] [unique_id "ajvxFKW7z95dh9X28ZZZOAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-24 07:52:08 (2 days ago)	[WedJun2409:52:04.9463332026][security2:error][pid1737247:tid1737448][client66.63.169.59:0]ModSecuri ... show more [WedJun2409:52:04.9463332026][security2:error][pid1737247:tid1737448][client66.63.169.59:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\\\\\\\\.vscode/\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"1189\"][id\"350593\"][rev\"1\"][msg\"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessstoredvscodepasswords\"][severity\"CRITICAL\"][hostname\"rs-solution.ch\"][uri\"/.vscode/sftp.json\"][unique_id\"ajuMpJ3igUP_Ol6LsHaG-AAAAFY\"] show less	Hacking Web App Attack
🇺🇸 mccsoft.io	2026-06-24 07:11:29 (2 days ago)	Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ... show more Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received). show less	Bad Web Bot Web App Attack
🇫🇷 Baking333	2026-06-24 05:21:08 (2 days ago)	[redacted] 66.63.169.59 - - [24/Jun/2026:06:21:06 +0100] "GET /.vscode/[redacted] HTTP/1.1" 302 6853 ... show more [redacted] 66.63.169.59 - - [24/Jun/2026:06:21:06 +0100] "GET /.vscode/[redacted] HTTP/1.1" 302 6853 0/292452 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" [redacted] 66.63.169.59 - - [24/Jun/2026:06:21:07 +0100] "GET /.vscode/[redacted] HTTP/1.1" 302 6763 0/58917 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36" show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 03:26:52 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 23:26:46.823225 2026] [security2:error] [pid 5631:tid 5631] [client 66.63.169.59:20882] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "royalchess.net"] [uri "/sftp-config.json"] [unique_id "ajtOdgOFjEoNdnkBfVmRCQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 02:06:26 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:06:17.873200 2026] [security2:error] [pid 22777:tid 22777] [client 66.63.169.59:62108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rdsparts.com"] [uri "/sftp-config.json"] [unique_id "ajs7mSmORzFwcFqFpnueMgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 22:24:06 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 18:23:59.130889 2026] [security2:error] [pid 28776:tid 28800] [client 66.63.169.59:16944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rosicruciansociety.com"] [uri "/sftp-config.json"] [unique_id "ajsHf4fHprWHP9tB4SjwEgAAAVY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 19:50:11 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 15:49:59.985287 2026] [security2:error] [pid 30112:tid 30112] [client 66.63.169.59:26728] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rootsofwellnessayurveda.com"] [uri "/sftp-config.json"] [unique_id "ajrjZ7-bs_a2K05lbG07VQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 15:01:06 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 11:01:00.509481 2026] [security2:error] [pid 31711:tid 31711] [client 66.63.169.59:41110] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "americanlegion935.com"] [uri "/sftp-config.json"] [unique_id "ajqfrEC4vM94qMp-CKcgZAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 12:47:14 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 66.63.169.59 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 08:47:06.139864 2026] [security2:error] [pid 4780:tid 4780] [client 66.63.169.59:23496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "victorvictor.biz"] [uri "/sftp-config.json"] [unique_id "ajqASgO8nlufmm3e9yV9JwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-06-23 11:44:31 (2 days ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇭 117.20.119.70

🇻🇳 113.162.26.82

🇨🇳 106.75.239.166

🇫🇷 91.231.89.79

🇳🇱 86.54.31.32

🇺🇸 65.49.1.79

🇩🇪 46.4.146.13

🇨🇳 36.32.104.124

🇺🇸 2607:f8b0:4001:c19::12d

🇨🇳 223.109.252.161

🇺🇸 162.216.149.13

🇹🇭 101.109.183.73

🇳🇱 91.92.40.7

🇺🇸 47.251.121.130

🇭🇰 45.249.244.136

🇺🇸 44.255.23.189

🇺🇸 20.65.195.58

🇸🇬 188.166.246.68

🇬🇧 152.89.64.17

🇭🇰 103.70.77.102