JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.36.92

104.207.36.92 was found in our database!

This IP was reported 146 times. Confidence of Abuse is 0%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.36.92

Whois 104.207.36.92

IP Abuse Reports for 104.207.36.92:

This IP address has been reported a total of 146 times from 22 distinct sources. 104.207.36.92 was first reported on June 11th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-07 19:11:03 (1 month ago)	Forum/form spam	Web Spam
🇺🇸 TPI-Abuse	2026-02-15 12:44:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:44:15.766565 2026] [security2:error] [pid 27012:tid 27012] [client 104.207.36.92:25467] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "patanthony.com"] [uri "/test/.git/config"] [unique_id "aZG_n4DzL4utA73E3Z3cWwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇴 INTEQ	2026-02-15 11:48:08 (3 months ago)	Web attack from 104.207.36.92	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:47:33 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:47:28.434751 2026] [security2:error] [pid 24321:tid 24321] [client 104.207.36.92:63341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "paguilar.com"] [uri "/.env"] [unique_id "aZGyUNI9vQXrYvIJthhFwwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 DZBOT	2026-02-15 11:30:58 (3 months ago)	Website Scanning / Scraping	Bad Web Bot Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 10:56:34 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 05:56:31.678047 2026] [security2:error] [pid 32036:tid 32036] [client 104.207.36.92:43523] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seekingthemind.com"] [uri "/.env.save"] [unique_id "aZGmX37zOY2b42Uw5dZO8QAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 06:58:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 01:58:45.568187 2026] [security2:error] [pid 11072:tid 11072] [client 104.207.36.92:62793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "seapens.org"] [uri "/backup/.git/config"] [unique_id "aZFupfgZhWM-t6gaMETaFQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-02-15 06:28:48 (3 months ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:48:12 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:48:04.421195 2026] [security2:error] [pid 12932:tid 12932] [client 104.207.36.92:62995] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prodivediving.com"] [uri "/backup/.git/config"] [unique_id "aZFeFA4B8x4S5732thr3xQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:58:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:58:19.853671 2026] [security2:error] [pid 21218:tid 21218] [client 104.207.36.92:10313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sarahpeebles.net"] [uri "/app/.git/config"] [unique_id "aZFSa-KjJKMn3cyuLyRdngAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:34:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:34:07.196215 2026] [security2:error] [pid 32168:tid 32168] [client 104.207.36.92:18337] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "prcs.biz"] [uri "/backend/.env"] [unique_id "aZFMv7e5C6V_7AHNVk6g4QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 04:31:20 (3 months ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇺🇸 TPI-Abuse	2026-02-15 03:32:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.36.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:32:03.055814 2026] [security2:error] [pid 12562:tid 12562] [client 104.207.36.92:64835] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "safwalu.com"] [uri "/api/.env"] [unique_id "aZE-M48SWoBDLQm1QfKq4QAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-15 03:30:02 (3 months ago)	Bot / scanning and/or hacking attempts: GET /.env.local HTTP/1.1, GET /admin/.git/config HTTP/1.1, G ... show more Bot / scanning and/or hacking attempts: GET /.env.local HTTP/1.1, GET /admin/.git/config HTTP/1.1, GET /.env.save HTTP/1.1, GET /.git/config HTTP/1.1, GET /wp/.git/config HTTP/1.1, GET /api/.env HTTP/1.1, GET /backend/.env HTTP/1.1 show less	Hacking Web App Attack
🇩🇪 big-cloud.nl	2026-02-15 03:23:39 (3 months ago)	Try to access /dev/.git/config	Web App Attack

Showing 1 to 15 of 146 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 182.92.215.81

🇸🇬 47.84.160.127

🇸🇬 43.156.13.205

🇲🇲 37.111.53.110

🇺🇸 162.216.150.82

🇺🇸 162.216.149.231

🇧🇩 103.183.62.3

🇷🇴 92.118.39.236

🇸🇬 47.84.144.110

🇸🇬 47.82.13.128

🇳🇱 45.148.10.152

🇷🇺 2a09:bac1:61c0::388:59

🇳🇱 185.223.235.48

🇸🇬 159.223.50.237

🇮🇳 122.187.251.73

🇮🇩 103.112.5.7

🇫🇷 91.231.89.229

🇩🇪 91.108.199.64

🇱🇹 81.30.98.75

🇩🇪 69.5.169.199