JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 3.68.196.78

3.68.196.78 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 22%: ?

22%

ISP	A100 ROW GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-3-68-196-78.eu-central-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 3.68.196.78

Whois 3.68.196.78

IP Abuse Reports for 3.68.196.78:

This IP address has been reported a total of 6 times from 4 distinct sources. 3.68.196.78 was first reported on March 27th 2022, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 ConsulHosting	2026-06-16 23:19:06 (3 days ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 22:02:39 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 3.68.196.78 (ec2-3-68-196-78.eu-central-1.compu ... show more (mod_security) mod_security (id:210492) triggered by 3.68.196.78 (ec2-3-68-196-78.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 18:02:31.386223 2026] [security2:error] [pid 13467:tid 13467] [client 3.68.196.78:34136] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bernsteinip.com"] [uri "/.git/config"] [unique_id "ajHH9082MJ5R3m2V_woM1QAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-16 21:30:26 (3 days ago)	(caddyscan) Scanner path probe from 3.68.196.78 (DE/Germany/ec2-3-68-196-78.eu-central-1.compute.ama ... show more (caddyscan) Scanner path probe from 3.68.196.78 (DE/Germany/ec2-3-68-196-78.eu-central-1.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:21:30:25 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:21:30:25 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:21:30:26 +0000] "GET /.env.local HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:21:30:26 +0000] "GET /.env.production HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:21:30:26 +0000] "GET /.env.staging HTTP/1.1" show less	Port Scan
Anonymous	2026-06-16 20:23:12 (3 days ago)	(caddyscan) Scanner path probe from 3.68.196.78 (DE/Germany/ec2-3-68-196-78.eu-central-1.compute.ama ... show more (caddyscan) Scanner path probe from 3.68.196.78 (DE/Germany/ec2-3-68-196-78.eu-central-1.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:20:23:09 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:20:23:09 +0000] "GET /.env HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:20:23:09 +0000] "GET /.env.local HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:20:23:09 +0000] "GET /.env.production HTTP/1.1" [REDACTED] 200 2627 3.68.196.78 - - [16/Jun/2026:20:23:10 +0000] "GET /.env.staging HTTP/1.1" show less	Port Scan
🇺🇸 TPI-Abuse	2026-06-16 18:41:06 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 3.68.196.78 (ec2-3-68-196-78.eu-central-1.compu ... show more (mod_security) mod_security (id:210492) triggered by 3.68.196.78 (ec2-3-68-196-78.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 14:40:58.534440 2026] [security2:error] [pid 14997:tid 14997] [client 3.68.196.78:46292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bernescobar.com"] [uri "/.git/config"] [unique_id "ajGYup5av0K5n1sW9dU2gwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2022-03-27 01:18:45 (4 years ago)	bad bot: ignores robots.txt	Bad Web Bot

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.231.37.221

🇨🇦 85.217.149.71

🇩🇪 77.22.211.47

🇩🇪 69.5.169.83

🇧🇷 20.206.88.164

🇨🇳 222.222.73.70

🇨🇳 218.25.89.208

🇧🇷 177.136.35.79

🇺🇸 170.187.165.219

🇺🇸 156.232.13.218

🇨🇳 120.48.11.36

🇫🇷 85.217.140.26

🇳🇱 45.148.10.157

🇮🇳 42.104.226.53

🇺🇸 35.252.188.133

🇨🇳 211.149.134.60

🇨🇷 190.113.110.109

🇷🇴 92.118.39.145

🇰🇪 41.215.121.142

🇮🇩 36.82.37.177