JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.208.18

104.234.208.18 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 51%: ?

51%

ISP	Internet Utilities NA LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	iana.org
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.208.18

Whois 104.234.208.18

IP Abuse Reports for 104.234.208.18:

This IP address has been reported a total of 19 times from 9 distinct sources. 104.234.208.18 was first reported on June 11th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 shab	2026-06-19 16:18:31 (20 hours ago)	Repeated VPN Brute Force	Brute-Force
🇬🇧 thetomtaylor.co.uk	2026-06-12 14:06:02 (1 week ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-12 13:08:01 (1 week ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03]	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 12:36:59 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 08:36:53.273956 2026] [security2:error] [pid 13650:tid 13668] [client 104.234.208.18:45905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aafm.us"] [uri "/.env"] [unique_id "aiv9ZeWk3wvKOTmYC-g5dgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-12 12:05:18 (1 week ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇩🇪 Bedios GmbH	2026-06-12 12:00:56 (1 week ago)	Login credentials theft attempt	Hacking
🇺🇸 TPI-Abuse	2026-06-12 11:19:05 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:19:01.054759 2026] [security2:error] [pid 13892:tid 13892] [client 104.234.208.18:48977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chameleonpcs.com"] [uri "/.env"] [unique_id "aivrJaXaIJk1C4ynX-lkUgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:20:44 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:20:38.446538 2026] [security2:error] [pid 27482:tid 27482] [client 104.234.208.18:50785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "albrittonmcclain.com"] [uri "/.env"] [unique_id "aivddnMne9K0-dXfncsHHQAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-12 10:07:01 (1 week ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-11 20:00:25 (1 week ago)	Try to access /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 19:16:33 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:16:26.698756 2026] [security2:error] [pid 26679:tid 26679] [client 104.234.208.18:24809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bikelatch.com"] [uri "/.env"] [unique_id "aisJigqDlX3LT8k3GVhNCgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 17:32:59 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 13:32:52.365551 2026] [security2:error] [pid 16602:tid 16602] [client 104.234.208.18:25991] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cyberviews.club"] [uri "/.env"] [unique_id "airxREwif9pD-ggwqpx3BQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 15:20:58 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 11:20:54.401762 2026] [security2:error] [pid 24405:tid 24500] [client 104.234.208.18:62219] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aicsbots.com"] [uri "/.env"] [unique_id "airSVqj6d9Cs1i-WUx0EugAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dklueh79	2026-06-11 14:53:48 (1 week ago)	Probe for vulnerabilities. Path attempted: /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 14:32:54 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 10:32:50.731483 2026] [security2:error] [pid 6437:tid 6458] [client 104.234.208.18:28169] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aliqsha.com"] [uri "/.env"] [unique_id "airHErDg1H8uilNeWeNd1AAAANM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 152.32.148.250

🇺🇸 147.185.132.151

🇨🇳 123.233.238.156

🇮🇳 103.16.30.193

🇪🇸 5.182.83.231

🇺🇸 3.87.27.156

🇺🇸 2620:171:f1:f0:9999::232

🇺🇸 172.202.118.39

🇺🇸 137.184.159.183

🇨🇦 91.245.254.4

🇺🇸 66.132.186.232

🇺🇸 45.132.227.147

🇺🇸 185.199.108.153

🇳🇱 176.65.148.58

🇺🇾 167.58.86.132

🇺🇸 107.175.156.151

🇻🇳 103.176.24.57

🇰🇪 102.209.76.118

🇳🇬 102.88.137.80

🇧🇬 91.191.209.118