JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.208.195

104.234.208.195 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 41%: ?

41%

ISP	Internet Utilities NA LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	iana.org
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.208.195

Whois 104.234.208.195

IP Abuse Reports for 104.234.208.195:

This IP address has been reported a total of 22 times from 8 distinct sources. 104.234.208.195 was first reported on June 12th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 shab	2026-06-16 20:24:31 (1 week ago)	Repeated VPN Brute Force	Brute-Force
🇺🇸 TPI-Abuse	2026-06-15 00:57:00 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 20:56:54.188963 2026] [security2:error] [pid 9909:tid 9909] [client 104.234.208.195:61905] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advantage-plus.net"] [uri "/.env"] [unique_id "ai9N1iMAvymxniqXvxbF8gAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-15 00:06:39 (2 weeks ago)	Scanning/Probing (31)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 21:13:14 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 17:13:09.492982 2026] [security2:error] [pid 23761:tid 23761] [client 104.234.208.195:28033] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gegraphics.biz"] [uri "/.env"] [unique_id "ai8ZZZapZJ4EZQlqnXEmBQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 17:58:08 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 13:58:01.586916 2026] [security2:error] [pid 32349:tid 32349] [client 104.234.208.195:57673] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avmarep.com"] [uri "/.env"] [unique_id "ai7rqa5dFMIcD5vRyIcJ2QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 14:49:55 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 10:49:49.492290 2026] [security2:error] [pid 30149:tid 30149] [client 104.234.208.195:24055] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jboomergrenier.com"] [uri "/.env"] [unique_id "ai6_jR-dAg-ECUg8JbTguwAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇯🇵 VXG-NET	2026-06-14 14:40:47 (2 weeks ago)	port=80, indicator_type=info-leak	Hacking
🇺🇸 TPI-Abuse	2026-06-14 13:08:57 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 09:08:54.589939 2026] [security2:error] [pid 15741:tid 15741] [client 104.234.208.195:61685] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "36hoursonly.com"] [uri "/.env"] [unique_id "ai6n5q_B6Wo7UIBr21DyIQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 11:59:32 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 07:59:27.749383 2026] [security2:error] [pid 30578:tid 30578] [client 104.234.208.195:28441] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blc2.co"] [uri "/.env"] [unique_id "ai6Xn6Cb9p6owz7VpU4IfwAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 11:23:23 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 07:23:20.263002 2026] [security2:error] [pid 11342:tid 11342] [client 104.234.208.195:45805] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "siciliafamily.com"] [uri "/.env"] [unique_id "ai6PKN1Tu5DmuigYaXC1xAAAAFw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 11:00:02 (2 weeks ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 08:08:25 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 04:08:21.169532 2026] [security2:error] [pid 29945:tid 29945] [client 104.234.208.195:37923] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gestiofiscal.com"] [uri "/.env"] [unique_id "ai5hde87tuK2W_ttqEJnpQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 05:02:14 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 01:02:08.281850 2026] [security2:error] [pid 7751:tid 7751] [client 104.234.208.195:35351] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "beautifulnoise.com"] [uri "/.env"] [unique_id "ai410LN1mI4l0zaiXbKGQwAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 03:45:49 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.195 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 23:45:43.534052 2026] [security2:error] [pid 2019:tid 2019] [client 104.234.208.195:32141] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ichoosethelight.org"] [uri "/.env"] [unique_id "ai4j5y-80dyHUB2pdr-KigAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 e.fierstra	2026-06-14 03:06:23 (2 weeks ago)	ModSecurity hits exceeded	Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.166

🇺🇬 196.0.107.158

🇺🇸 172.93.106.153

🇺🇸 148.153.250.101

🇮🇳 122.177.243.15

🇫🇷 85.31.239.212

🇿🇦 41.181.156.205

🇯🇵 40.74.68.248

🇧🇪 35.195.125.229

🇰🇷 211.240.117.71

🇧🇷 205.210.31.227

🇺🇸 192.3.245.167

🇳🇱 176.65.139.222

🇭🇰 159.138.2.167

🇵🇪 149.34.48.186

🇵🇱 146.59.32.16

🇨🇳 106.52.169.134

🇫🇷 85.204.70.88

🇱🇹 81.30.98.44

🇱🇹 62.60.130.14