JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.208.243

104.234.208.243 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 50%: ?

50%

ISP	Internet Utilities NA LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	iana.org
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.208.243

Whois 104.234.208.243

IP Abuse Reports for 104.234.208.243:

This IP address has been reported a total of 20 times from 8 distinct sources. 104.234.208.243 was first reported on June 11th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 thetomtaylor.co.uk	2026-06-12 14:06:02 (4 days ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01]	Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-12 13:08:01 (4 days ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03,wa ... show more Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03,wa02] show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 12:37:33 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 08:37:28.839336 2026] [security2:error] [pid 15275:tid 15303] [client 104.234.208.243:41103] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aapmglobal.com"] [uri "/.env"] [unique_id "aiv9iAbuPCavtzJBdF7UXwAAAFg"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 11:25:01 (4 days ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 11:17:25 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:17:19.974005 2026] [security2:error] [pid 12139:tid 12139] [client 104.234.208.243:36963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "929.us"] [uri "/.env"] [unique_id "aivqvw6s_GRTRpr2ApM6zgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 10:21:39 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:21:34.433893 2026] [security2:error] [pid 26576:tid 26576] [client 104.234.208.243:33035] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "artfranz.com"] [uri "/.env"] [unique_id "aivdroocx9vFZk5hpeaGhgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-12 10:05:03 (4 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-12 07:35:02 (4 days ago)	192 requests with url.path *.env	Brute-Force Bad Web Bot
🇺🇸 mnsf	2026-06-11 20:06:15 (5 days ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-06-11 19:52:27 (5 days ago)	Try to access /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 19:32:39 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:32:35.184661 2026] [security2:error] [pid 25991:tid 25991] [client 104.234.208.243:22941] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thebronsons.com"] [uri "/.env"] [unique_id "aisNUyBFS4iiwu1FE7yeywAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 19:14:22 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:14:19.103842 2026] [security2:error] [pid 21685:tid 21685] [client 104.234.208.243:50977] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "albuquerquelimobus.com"] [uri "/.env"] [unique_id "aisJC07RsBhia83jk5X2-QAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 18:04:28 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 14:04:21.249029 2026] [security2:error] [pid 22133:tid 22133] [client 104.234.208.243:64389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thesilverlegion.org"] [uri "/.env"] [unique_id "air4pYnSzYPTAPBrCZOI6QAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 17:25:47 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 13:25:43.225930 2026] [security2:error] [pid 27541:tid 27541] [client 104.234.208.243:44295] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "asisecuresystems.com"] [uri "/.env"] [unique_id "airvl1Fa0Bg_FyKIL6Ig_gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 15:29:19 (5 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 11:29:16.038409 2026] [security2:error] [pid 24406:tid 24526] [client 104.234.208.243:55999] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hearthandhomestudio.art"] [uri "/.env"] [unique_id "airUTAZwmX_GnsiR_GR_HQAAAQw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.202.117.213

🇩🇪 161.35.28.29

🇺🇸 129.146.39.211

🇺🇸 104.243.35.120

🇹🇼 101.13.5.195

🇨🇳 210.16.184.171

🇺🇾 200.71.13.21

🇭🇰 189.1.219.109

🇫🇮 178.20.210.208

🇺🇸 172.202.117.179

🇺🇸 172.202.117.171

🇮🇳 168.144.77.244

🇮🇳 103.158.40.65

🇵🇱 95.214.55.226

🇷🇺 93.77.187.140

🇨🇳 60.8.73.174

🇺🇸 45.151.134.3

🇳🇱 45.148.10.151

🇳🇱 45.142.193.70

🇯🇵 45.8.114.60