JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.32.148

104.234.32.148 was found in our database!

This IP was reported 65 times. Confidence of Abuse is 32%: ?

32%

ISP	AS206092 Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	abuseradar.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.32.148

Whois 104.234.32.148

IP Abuse Reports for 104.234.32.148:

This IP address has been reported a total of 65 times from 40 distinct sources. 104.234.32.148 was first reported on September 12th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 zam	2026-06-17 02:18:38 (6 hours ago)	104.234.32.148 - - [17/Jun/2026:02:18:36 +0000] "POST /wp-login.php HTTP/1.1" 301 277	Web App Attack
🇺🇸 lostswordfish.com	2026-05-26 13:04:04 (3 weeks ago)	Wordfence waf block on taussigtravel	Web App Attack
🇺🇸 mind5t0rm	2026-05-06 21:33:46 (1 month ago)	(WPLOGIN) WP Login Attack 104.234.32.148 (US/United States/-): 3 in the last 3600 secs; Ports: ; Di ... show more (WPLOGIN) WP Login Attack 104.234.32.148 (US/United States/-): 3 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_TRIGGER; Logs: 104.234.32.148 - - [07/May/2026:04:24:01 +0700] "POST /wp-login.php HTTP/1.1" 200 2646 "https://tma.travel/wp-admin/" "Mozilla/5.0 (iPhone; CPU iPhone OS 14_6 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0 Mobile/15E148 Safari/604.1" 104.234.32.148 - - [07/May/2026:04:24:03 +0700] "GET /wp-login.php?redirect_to=https%3A%2F%2Ftma.travel%2Fwp-admin%2F&reauth=1 HTTP/1.1" 200 2496 "https://tma.travel/wp-admin/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" 104.234.32.148 - - [07/May/2026:04:33:43 +0700] "POST /wp-login.php HTTP/1.1" 200 2646 "https://tma.travel/wp-admin/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/92.0.4515.107 Safari/537.36" show less	Port Scan
🇨🇿 ptlab	2026-05-06 00:45:30 (1 month ago)	Detected wp_admin attack from WP-host.	Hacking Web App Attack
🇩🇪 LRob.fr	2026-04-27 23:15:05 (1 month ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇸🇪 vaia.cloud	2026-04-27 21:29:02 (1 month ago)	trying wp-login.php/xmlrpc.php 43 times in 1 minutes	Brute-Force Web App Attack
🇦🇺 AWW-Admin	2026-04-27 21:11:30 (1 month ago)	(wordpress) Failed wordpress login from 104.234.32.148 (US/United States/-)	Brute-Force
🇳🇱 GabrielJST	2026-04-27 20:04:24 (1 month ago)	(wordpress) Failed wordpress login from 104.234.32.148 (US/United States/-)	Brute-Force
🇺🇸 mnsf	2026-04-27 17:05:33 (1 month ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇫🇮 bittiguru.fi	2026-04-27 08:22:09 (1 month ago)	104.234.32.148 - [27/Apr/2026:11:21:18 +0300] "POST /wp-login.php HTTP/1.1" 403 3417 "https://binder ... show more 104.234.32.148 - [27/Apr/2026:11:21:18 +0300] "POST /wp-login.php HTTP/1.1" 403 3417 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/16.6 Safari/605.1.15" "3.32" 104.234.32.148 - [27/Apr/2026:11:21:31 +0300] "POST /wp-login.php HTTP/1.1" 403 3411 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Safari/605.1.15" "3.32" 104.234.32.148 - [27/Apr/2026:11:21:43 +0300] "POST /wp-login.php HTTP/1.1" 403 3411 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:119.0) Gecko/20100101 Firefox/119.0" "3.32" 104.234.32.148 - [27/Apr/2026:11:21:56 +0300] "POST /wp-login.php HTTP/1.1" 403 3369 "https://binderholznordic.fi/wp-login.php" "Mozilla/5.0 (Windows NT 11.0; Win64; x64; rv:118.0) Gecko/20100101 Firefox/118.0" "3.33" 104.234.32.148 - [27/Apr/2026:11:22:09 +0300] "POST /wp ... show less	Hacking Brute-Force Web App Attack
🇺🇸 nyt	2026-04-26 10:31:30 (1 month ago)	Repeated WordPress login POSTs blocked by WAF (3 in 6h)	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2026-04-25 20:26:54 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124	Exploited Host Web App Attack
🇺🇸 mw	2026-03-18 04:45:03 (2 months ago)	GET /.env HTTP/1.1	Web App Attack
🇺🇸 dtorrer	2026-03-13 03:45:24 (3 months ago)	Brute-force general attack.	Brute-Force
🇩🇪 ps-center	2026-03-13 01:09:12 (3 months ago)	ABV: Web Attack GET /handel/wp-login.php	Web Spam Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 65 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2a01:239:280:4a00::1

🇧🇪 2a00:1450:400c:c1f::12e

🇨🇳 171.36.6.146

🇨🇦 170.9.40.164

🇰🇷 118.37.214.187

🇺🇦 91.196.103.229

🇸🇬 68.183.229.3

🇳🇱 45.148.10.151

🇧🇪 34.78.58.218

🇺🇸 209.85.215.181

🇲🇽 189.203.190.153

🇧🇷 179.105.131.207

🇺🇸 134.195.101.152

🇨🇳 124.88.113.11

🇮🇳 117.218.75.251

🇨🇳 117.40.113.246

🇵🇭 111.125.115.2

🇮🇳 106.222.206.62

🇻🇳 103.90.224.22

🇮🇩 36.66.16.233