JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.234.32.20

104.234.32.20 was found in our database!

This IP was reported 138 times. Confidence of Abuse is 43%: ?

43%

ISP	AS206092 Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	abuseradar.com
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.234.32.20

Whois 104.234.32.20

IP Abuse Reports for 104.234.32.20:

This IP address has been reported a total of 138 times from 27 distinct sources. 104.234.32.20 was first reported on October 19th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 1cyb3rpunk	2026-06-14 00:39:12 (2 days ago)	Honeypot trap [wordpress_install_probe] on sectrace.org — path: /wp-login.php stage: recon. Automate ... show more Honeypot trap [wordpress_install_probe] on sectrace.org — path: /wp-login.php stage: recon. Automated scanner/attacker activity. show less	Port Scan Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-06-08 02:21:00 (1 week ago)	IPBlock protected site ID [4678-sl]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-06-07 10:45:33 (1 week ago)	(wordpress) Apache: Failed WordPress login from 104.234.32.20 (US/United States/-): 10 in the last 3 ... show more (wordpress) Apache: Failed WordPress login from 104.234.32.20 (US/United States/-): 10 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 dbmwebdesign	2026-06-07 07:10:19 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-07 07:05:13 (1 week ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-06 17:30:10 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇺🇸 mnsf	2026-06-05 23:05:26 (1 week ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇫🇷 masterguru	2026-06-05 22:52:26 (1 week ago)	(wordpress) Apache: Failed WordPress login from 104.234.32.20 (US/United States/-): 10 in the last 3 ... show more (wordpress) Apache: Failed WordPress login from 104.234.32.20 (US/United States/-): 10 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 LRob.fr	2026-06-05 13:30:09 (1 week ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
Anonymous	2026-06-05 03:11:03 (1 week ago)	Bot / scanning and/or hacking attempts: POST /wp-login.php HTTP/1.1, GET /wp-login.php?redirect_to=h ... show more Bot / scanning and/or hacking attempts: POST /wp-login.php HTTP/1.1, GET /wp-login.php?redirect_to=https%3A%2F%2Fsubblicious.nl%2Fwp, GET /wp-admin/index.php HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 mnsf	2026-06-04 22:05:28 (1 week ago)	Login Too Frequent (7)	Brute-Force Web App Attack
🇩🇪 raph	2026-04-26 10:17:54 (1 month ago)	[DOT FILES] crawler .env, .git, .config, etc.	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 08:20:22 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 104.234.32.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.234.32.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 04:20:11.188385 2026] [security2:error] [pid 7198:tid 7198] [client 104.234.32.20:55843] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.oualierealty.com"] [uri "/.env.swo"] [unique_id "ae3Ku8hOPsH2i-yPwRQxtAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 02:56:32 (1 month ago)	(mod_security) mod_security (id:210492) triggered by 104.234.32.20 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.234.32.20 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 22:56:26.326576 2026] [security2:error] [pid 21697:tid 21697] [client 104.234.32.20:65277] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.nancyscafeandcatering.com"] [uri "/wp-content/themes/eatery/nav.php"] [unique_id "ae1-2qxXOhNooXnMDYmJfgAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-04-12 13:15:09 (2 months ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack

Showing 1 to 15 of 138 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 110.25.114.8

🇩🇪 167.94.146.40

🇷🇺 81.177.101.45

🇨🇳 58.47.137.190

🇨🇳 58.47.121.120

🇶🇦 37.186.41.197

🇺🇿 213.230.72.117

🇨🇷 190.112.222.28

🇺🇸 185.92.182.129

🇺🇸 161.35.108.63

🇺🇸 150.107.38.236

🇵🇱 139.28.41.144

🇳🇱 91.92.40.5

🇳🇴 85.19.195.12

🇱🇹 81.30.98.44

🇺🇸 65.49.1.12

🇫🇷 51.254.113.225

🇩🇪 213.209.159.56

🇺🇸 152.32.234.97

🇮🇳 103.199.226.28