JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.206.98.154

104.206.98.154 was found in our database!

This IP was reported 56 times. Confidence of Abuse is 0%: ?

ISP	ServerHub Dallas
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62904
Hostname(s)	fulfup.com
Domain Name	serverhub.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.206.98.154

Whois 104.206.98.154

IP Abuse Reports for 104.206.98.154:

This IP address has been reported a total of 56 times from 31 distinct sources. 104.206.98.154 was first reported on October 24th 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2025-12-29 12:05:19 (5 months ago)	Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoin ... show more Triggered Cloudflare WAF (l7ddos) from US. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇺🇸 Vano Ganzzz	2025-12-28 03:52:37 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 62904 (AS62904) Protocol ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK ASN: 62904 (AS62904) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2025-12-28T03:52:37Z Ray ID: 9b4e1b2429de1bcb UA: f47x5krlWGIrDtH show less	Bad Web Bot
Anonymous	2025-12-26 14:05:45 (5 months ago)	SMTP AUTH 104.206.98.154 (SMTP_LOGIN_ATTEMPT)	Brute-Force
🇬🇧 Silly Development	2025-12-25 21:03:46 (5 months ago)	Malicious activity detected from 62904 AS62904 towards host sillydev.co.uk (GET HTTP/2) @ 2025-12-25 ... show more Malicious activity detected from 62904 AS62904 towards host sillydev.co.uk (GET HTTP/2) @ 2025-12-25T21:03:46Z (6 occurrences) show less	DDoS Attack Exploited Host
🇦🇱 Lungu Stefan Gabriel	2025-12-18 18:22:22 (5 months ago)	[http-port-80] Rate-Limit (Port <port>) - Abuse attack detected. Reported by fail2ban.	Web Spam Bad Web Bot Web App Attack
🇧🇪 cmbplf	2025-12-18 00:20:15 (5 months ago)	541 limiting connections by zone (3mos3w21h)	DDoS Attack
🇸🇬 Fn4ticHz	2025-12-15 19:54:46 (5 months ago)	repeated ddos targeted zeroguard.space -- ZeroGuard	DDoS Attack
🇸🇬 Fn4ticHz	2025-12-15 12:44:20 (5 months ago)	repeated ddos targeted rate.rapidreset.net -- ZeroGuard	DDoS Attack
🇸🇬 Fn4ticHz	2025-12-14 19:12:56 (5 months ago)	repeated ddos targeted load.rapidreset.net -- ZeroGuard	DDoS Attack
🇺🇸 SuperEvilLuke	2025-12-14 13:36:46 (5 months ago)	Malicious activity detected from 62904 AS62904 towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12 ... show more Malicious activity detected from 62904 AS62904 towards host panel.embotic.xyz (GET HTTP/2) @ 2025-12-14T13:36:46Z (15 occurrences) show less	DDoS Attack Exploited Host
🇺🇦 URAN Publishing Service	2025-12-13 17:16:06 (5 months ago)	104.206.98.154 - - [13/Dec/2025:19:14:38 +0200] "GET /.env HTTP/1.1" 404 2850 "-" "Go-http-client/1. ... show more 104.206.98.154 - - [13/Dec/2025:19:14:38 +0200] "GET /.env HTTP/1.1" 404 2850 "-" "Go-http-client/1.1" 104.206.98.154 - - [13/Dec/2025:19:16:05 +0200] "GET /wp-config.php HTTP/1.1" 404 2849 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇿🇦 maximonline.co.za	2025-12-12 21:10:27 (5 months ago)	Brute Force SMTP AUTH Attack	Brute-Force
🇫🇮 as211431.net	2025-12-12 20:10:10 (5 months ago)	Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET meth ... show more Triggered Cloudflare WAF (firewallManaged) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-config.php UA: Go-http-client/1.1 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-12 20:01:04 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.206.98.154 (fulfup.com): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 104.206.98.154 (fulfup.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 12 15:00:34.989854 2025] [security2:error] [pid 23968:tid 23968] [client 104.206.98.154:57514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "justkoolit.com"] [uri "/.env.local"] [unique_id "aTx0YiMYuAszFoD6yc5-1wAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-12 07:15:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 104.206.98.154 (fulfup.com): 1 in the last 300 ... show more (mod_security) mod_security (id:210492) triggered by 104.206.98.154 (fulfup.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Dec 12 02:15:49.528768 2025] [security2:error] [pid 28019:tid 28019] [client 104.206.98.154:58176] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trucksystems.com.mx"] [uri "/.env"] [unique_id "aTvBJaX4Wcq8FzhKwR7DlQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 56 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.90.232.71

🇵🇰 72.255.33.84

🇺🇸 20.49.13.176

🇪🇸 2a00:1d24:409:94:9999::9

🇳🇱 185.223.235.30

🇨🇳 183.142.36.52

🇨🇳 153.36.138.199

🇻🇳 103.200.25.198

🇧🇩 103.141.201.106

🇩🇪 46.224.160.234

🇲🇽 143.105.17.80

🇩🇪 130.12.181.102

🇿🇦 105.233.64.145

🇺🇸 66.132.195.58

🇺🇸 54.165.169.15

🇳🇱 45.198.224.5

🇺🇸 162.216.150.235

🇺🇸 161.35.10.119

🇨🇳 123.178.210.244

🇮🇹 95.242.115.89