JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.208.55

104.234.208.55 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 41%: ?

41%

ISP	Internet Utilities NA LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	iana.org
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.208.55

Whois 104.234.208.55

IP Abuse Reports for 104.234.208.55:

This IP address has been reported a total of 11 times from 7 distinct sources. 104.234.208.55 was first reported on June 12th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-14 01:05:20 (6 days ago)	Abuse Detected (1)	Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-06-14 00:26:02 (6 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 23:03:47 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 19:03:41.892390 2026] [security2:error] [pid 7217:tid 7217] [client 104.234.208.55:44133] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bencramerinc.com"] [uri "/.env"] [unique_id "ai3hzTyUyluwXN_21Bp-9gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 22:40:02 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 18:39:54.383788 2026] [security2:error] [pid 30856:tid 30856] [client 104.234.208.55:33843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "illumoonatedtarot.com"] [uri "/.env"] [unique_id "ai3cOnykJ3116Yq-worjewAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 22:24:07 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 18:24:02.851517 2026] [security2:error] [pid 7493:tid 7493] [client 104.234.208.55:44341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aaronnosan.com"] [uri "/.env"] [unique_id "ai3Ygrfw7b-dCVVvbLORHgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 interbiznw.com	2026-06-13 19:50:11 (6 days ago)	malicious-web-requests-vulnerability-scanning	Hacking Brute-Force Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:24:47 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:24:43.463003 2026] [security2:error] [pid 28719:tid 28719] [client 104.234.208.55:52019] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "americanexportimport.com"] [uri "/.env"] [unique_id "ai2ga5uJRuddmHrX55RykgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Baking333	2026-06-13 17:28:29 (6 days ago)	[redacted] 104.234.208.55 - - [13/Jun/2026:18:28:26 +0100] "GET /.env HTTP/2.0" 301 291 "-" "Mozilla ... show more [redacted] 104.234.208.55 - - [13/Jun/2026:18:28:26 +0100] "GET /.env HTTP/2.0" 301 291 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 104.234.208.55 - - [13/Jun/2026:18:28:26 +0100] "GET /fr/.env/ HTTP/2.0" 404 26708 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Bad Web Bot Web App Attack
Anonymous	2026-06-12 22:36:59 (1 week ago)	http scanning for .env files ...	Hacking Web App Attack
🇧🇷 Francisco Carlos	2026-06-12 21:50:49 (1 week ago)	Honeypot captured 1 automated attack/scan requests (JR Save Tech). Types: env-leak. Sample: GET /.en ... show more Honeypot captured 1 automated attack/scan requests (JR Save Tech). Types: env-leak. Sample: GET /.env show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 21:36:43 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:36:39.623756 2026] [security2:error] [pid 735:tid 735] [client 104.234.208.55:33611] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "waycoradio.com"] [uri "/.env"] [unique_id "aix7520uLMz0qmYJVWOq7wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 45.131.193.46

🇺🇸 200.10.43.132

🇩🇪 185.207.115.139

🇺🇸 138.68.243.18

🇨🇳 121.40.35.205

🇺🇸 97.253.11.232

🇺🇸 64.62.156.152

🇰🇿 46.227.184.199

🇺🇸 45.79.159.70

🇬🇭 41.139.11.153

🇳🇱 217.60.195.184

🇮🇪 207.254.29.22

🇦🇹 152.53.0.56

🇱🇹 77.90.185.37

🇮🇳 47.15.240.126

🇺🇸 35.253.16.165

🇳🇱 195.178.110.162

🇧🇬 91.191.209.9

🇳🇱 45.148.10.157

🇮🇩 38.47.85.49