JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.208.61

104.234.208.61 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 31%: ?

31%

ISP	Internet Utilities NA LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	iana.org
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.208.61

Whois 104.234.208.61

IP Abuse Reports for 104.234.208.61:

This IP address has been reported a total of 8 times from 5 distinct sources. 104.234.208.61 was first reported on June 12th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Mundo Bueno	2026-06-14 00:05:39 (6 days ago)	[ISILIA Protection v2.1] Tentative d'accès: /.env \| Pays: US \| UA: Mozilla/5.0 (Macintosh; Intel Mac ... show more [ISILIA Protection v2.1] Tentative d'accès: /.env \| Pays: US \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 23:15:23 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 19:15:19.035059 2026] [security2:error] [pid 20563:tid 20563] [client 104.234.208.61:58739] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "writebetweenthelines.com"] [uri "/.env"] [unique_id "ai3kh7agfA9CT73OavUUKwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 22:23:15 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 18:23:09.284121 2026] [security2:error] [pid 28401:tid 28401] [client 104.234.208.61:56745] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ablogisticsgroup.com"] [uri "/.env"] [unique_id "ai3YTcdfBHFI5VTJDHx55QAAAC4"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-13 21:03:03 (6 days ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇩🇪 dklueh79	2026-06-13 18:55:50 (6 days ago)	Probe for vulnerabilities. Path attempted: /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:30:48 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:30:40.934949 2026] [security2:error] [pid 25664:tid 25664] [client 104.234.208.61:53551] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "empoweruohio.org"] [uri "/.env"] [unique_id "ai2h0F87ejP0U3xcEUa3EQAAACU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 21:35:38 (1 week ago)	104.234.208.61 - - [13/Jun/2026:05:35:37 +0800] "GET /.env HTTP/1.1" 200 30682 "-" "Mozilla/5.0 (Mac ... show more 104.234.208.61 - - [13/Jun/2026:05:35:37 +0800] "GET /.env HTTP/1.1" 200 30682 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 21:30:56 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:30:50.177067 2026] [security2:error] [pid 19721:tid 19721] [client 104.234.208.61:26647] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "socialalchemy.com"] [uri "/.env"] [unique_id "aix6imPrePCwcITMd9DmqQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 195.206.182.205

🇷🇴 193.46.255.86

🇺🇸 172.234.199.190

🇪🇬 156.210.0.98

🇩🇪 148.153.166.181

🇺🇸 71.71.250.77

🇩🇪 69.5.169.198

🇺🇸 64.62.197.157

🇨🇳 47.92.248.106

🇬🇧 35.203.211.200

🇳🇱 195.178.110.30

🇧🇷 190.89.137.129

🇬🇧 185.247.137.198

🇦🇹 152.53.111.131

🇺🇸 104.234.53.64

🇷🇺 87.117.53.20

🇳🇱 81.19.216.85

🇩🇪 64.89.163.28

🇮🇳 49.204.22.227

🇧🇷 45.205.1.246