JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.208.92

104.234.208.92 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 35%: ?

35%

ISP	Internet Utilities NA LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	iana.org
Country	🇺🇸 United States of America
City	Houston, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.208.92

Whois 104.234.208.92

IP Abuse Reports for 104.234.208.92:

This IP address has been reported a total of 8 times from 5 distinct sources. 104.234.208.92 was first reported on June 12th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 23:06:12 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 19:06:04.990296 2026] [security2:error] [pid 11731:tid 11731] [client 104.234.208.92:55957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "effectivefirearms.com"] [uri "/.env"] [unique_id "ai3iXLUTLsbPR1cp_j6ldwAAABs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 22:25:10 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 18:25:03.313424 2026] [security2:error] [pid 28323:tid 28323] [client 104.234.208.92:53389] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chicagosukkahcenter.com"] [uri "/.env"] [unique_id "ai3Yv3CFOavD51ZbboMOFgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2026-06-13 19:49:58 (1 day ago)	IM360 WAF: Direct access to sensitive file or dotfile MV:/.env	Web App Attack
🇩🇪 dklueh79	2026-06-13 19:16:54 (1 day ago)	Probe for vulnerabilities. Path attempted: /.env	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:27:47 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:27:44.462175 2026] [security2:error] [pid 32619:tid 32619] [client 104.234.208.92:39927] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "computerdoc-rx.com"] [uri "/.env"] [unique_id "ai2hIJ2gcro1whbIpxXfNQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Baking333	2026-06-13 17:38:16 (1 day ago)	[redacted] 104.234.208.92 - - [13/Jun/2026:18:38:14 +0100] "GET /.env HTTP/2.0" 301 291 "-" "Mozilla ... show more [redacted] 104.234.208.92 - - [13/Jun/2026:18:38:14 +0100] "GET /.env HTTP/2.0" 301 291 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" [redacted] 104.234.208.92 - - [13/Jun/2026:18:38:15 +0100] "GET /fr/.env/ HTTP/2.0" 404 26730 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-06-13 00:39:38 (2 days ago)	108 requests with url.path *.env	Brute-Force Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-12 21:35:33 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 104.234.208.92 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 17:35:28.491581 2026] [security2:error] [pid 2040:tid 2040] [client 104.234.208.92:56355] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tyning.com"] [uri "/.env"] [unique_id "aix7oOX6A1L-_J-Tc6a1fwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c58::125

🇳🇱 172.253.95.218

🇫🇷 94.23.66.112

🇺🇸 66.132.195.15

🇺🇸 66.132.186.172

🇨🇳 61.151.249.194

🇲🇦 41.92.105.41

🇮🇶 37.77.55.253

🇨🇭 185.71.14.134

🇪🇸 91.146.99.41

🇩🇪 45.135.141.18

🇮🇳 4.240.96.30

🇵🇹 2001:8a0:f489:1600:7d04:1c20:9a65:6f37

🇺🇸 162.217.163.233

🇭🇰 152.32.169.155

🇺🇸 134.209.120.216

🇵🇭 119.94.189.172

🇮🇳 103.180.212.11

🇩🇪 87.106.98.147

🇨🇦 20.63.85.172