JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.168.8.14

104.168.8.14 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.168.8.14

Whois 104.168.8.14

IP Abuse Reports for 104.168.8.14:

This IP address has been reported a total of 7 times from 6 distinct sources. 104.168.8.14 was first reported on March 21st 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ne1for23	2026-05-09 19:52:36 (1 month ago)	Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" ... show more Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" resources improperly exposed externally and "protected" only by a lack of external DNS resolution. 104.168.8.14 - - [09/May/2026:19:52:36 +0000] "GET /.env HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.5845.140 Safari/537.36" "-" show less	Hacking
Anonymous	2025-11-05 03:42:31 (7 months ago)	$f2bV_matches	Brute-Force
🇮🇩 securejdprop	2025-10-19 23:23:08 (7 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO Request to ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET INFO Request to Hidden Environment File - Inbound). Ip 104.168.8.14 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2025-10-19 23:23:06.400386954 +0000 UTC show less	Web App Attack
🇳🇱 i-turnradio.nl	2025-09-18 23:01:12 (8 months ago)	2025-09-19 @ 01:01:12 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇺🇸 TPI-Abuse	2025-09-18 12:28:14 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 104.168.8.14 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 104.168.8.14 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 18 08:28:11.364616 2025] [security2:error] [pid 321794:tid 321799] [client 104.168.8.14:42219] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|unitedonegroup.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "unitedonegroup.com"] [uri "/base.sql"] [unique_id "aMv62-bHhBiHiKI8SW-YXwAAAEM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-17 14:32:37 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 104.168.8.14 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 104.168.8.14 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 17 10:32:29.693943 2025] [security2:error] [pid 32115:tid 32115] [client 104.168.8.14:40127] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|alsdepot.com\|F\|2"] [data ".sql"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "alsdepot.com"] [uri "/public.sql"] [unique_id "aMrGfaT11XvUT-oisqgd_wAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 nyuuzyou	2025-03-21 17:24:28 (1 year ago)	Intensive scraping: /web?s=BJJ%20private%20instruction%20Starbuck&country=tg&scraper=yep	Bad Web Bot

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇳 213.154.77.61

🇩🇪 167.94.146.36

🇨🇦 104.255.152.19

🇺🇸 104.236.53.110

🇩🇪 46.249.99.46

🇦🇺 20.227.130.11

🇨🇳 183.36.179.7

🇮🇳 117.205.2.250

🇧🇩 103.179.198.19

🇨🇳 101.126.81.213

🇺🇸 91.230.168.111

🇳🇱 91.92.40.37

🇨🇳 49.235.28.219

🇮🇳 203.100.66.90

🇲🇽 189.203.190.153

🇺🇸 91.230.168.206

🇺🇸 64.62.156.118

🇰🇷 61.32.68.66

🇭🇰 40.81.16.211

🇨🇳 36.138.134.121