JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.207.37.56

104.207.37.56 was found in our database!

This IP was reported 158 times. Confidence of Abuse is 1%: ?

ISP	3xK Tech GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS200373
Domain Name	3xktech.cloud
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.207.37.56

Whois 104.207.37.56

IP Abuse Reports for 104.207.37.56:

This IP address has been reported a total of 158 times from 24 distinct sources. 104.207.37.56 was first reported on June 3rd 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-05-17 04:22:51 (3 weeks ago)	Brute force	Brute-Force
🇺🇸 mnsf	2026-02-15 23:05:43 (3 months ago)	Scanning/Probing (23)	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-02-15 22:59:09 (3 months ago)	Auto-ban: >3000 req/min op 2026-02-15	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-02-15 12:48:51 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 07:48:48.021985 2026] [security2:error] [pid 17892:tid 17892] [client 104.207.37.56:14967] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toddgoranson.com"] [uri "/new/.git/config"] [unique_id "aZHAsK4oFw79z__1XigXIQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 11:33:20 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 06:33:16.484815 2026] [security2:error] [pid 31940:tid 31940] [client 104.207.37.56:21557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tausiet.com"] [uri "/app/.git/config"] [unique_id "aZGu_MBdyZ8_VRs6ilhsQAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 05:01:28 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 00:01:22.618627 2026] [security2:error] [pid 4702:tid 4702] [client 104.207.37.56:14123] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "summithost.com"] [uri "/api/.env"] [unique_id "aZFTIu3LLCtOpVjOvgYxygAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 04:00:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 23:00:23.646093 2026] [security2:error] [pid 314087:tid 314090] [client 104.207.37.56:58111] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stoborough.com"] [uri "/.env.save"] [unique_id "aZFE1-YxiADdM-D-ZqVIHAAAAEA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 03:38:17 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 22:38:11.539827 2026] [security2:error] [pid 14007:tid 14007] [client 104.207.37.56:39097] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stefchild.com"] [uri "/app/.git/config"] [unique_id "aZE_o4dyQCLPAwglqw_5HQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Aetherweb Ark	2026-02-15 03:27:44 (3 months ago)	(mod_security) mod_security (id:949110) triggered by 104.207.37.56 (US/United States/-): N in the la ... show more (mod_security) mod_security (id:949110) triggered by 104.207.37.56 (US/United States/-): N in the last X secs show less	Web App Attack
🇮🇩 Burayot	2026-02-15 02:46:40 (3 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.37.56 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 104.207.37.56 (US/United States/-): 1 in the last 3600 secs show less	Web App Attack
🇪🇸 masterguru	2026-02-15 02:45:40 (3 months ago)	. Matched phrase "/.env" at REQUEST_URI. (210492-123)	Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 02:42:18 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 21:42:14.052157 2026] [security2:error] [pid 26132:tid 26132] [client 104.207.37.56:38257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sporttaekwondo.net"] [uri "/admin/.env"] [unique_id "aZEyhgP_-IvOpLyYPo3KmAAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 01:20:22 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 20:20:17.133472 2026] [security2:error] [pid 17993:tid 17993] [client 104.207.37.56:11675] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mundanestudies.org"] [uri "/admin/.env"] [unique_id "aZEfUWPRCKSIurqTZwye5AAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-15 00:40:55 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.207.37.56 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 19:40:50.421377 2026] [security2:error] [pid 17206:tid 17206] [client 104.207.37.56:56433] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lucasabrahamsen.org"] [uri "/.env.staging"] [unique_id "aZEWEpxMQdB1SObL9VuGaAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-02-15 00:32:17 (3 months ago)	157 requests with url.path */.git/config	Brute-Force Bad Web Bot

Showing 1 to 15 of 158 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 117.102.4.138

🇵🇰 110.37.66.198

🇺🇦 195.138.73.243

🇳🇱 192.253.248.169

🇲🇽 189.150.56.8

🇮🇳 122.187.39.178

🇱🇾 102.38.3.184

🇷🇴 92.118.39.236

🇩🇪 78.47.58.222

🇺🇸 66.132.195.94

🇺🇸 52.188.231.113

🇨🇱 34.176.84.53

🇬🇧 217.146.80.99

🇺🇸 198.2.174.46

🇧🇷 131.161.249.165

🇨🇳 123.145.29.5

🇮🇩 103.148.100.146

🇿🇦 102.129.61.91

🇭🇰 101.32.1.25

🇫🇷 91.231.89.110