JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.104.8.180

194.104.8.180 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 21%: ?

21%

ISP	TrafficTransitSolution LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	traffictransitsolution.us
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.104.8.180

Whois 194.104.8.180

IP Abuse Reports for 194.104.8.180:

This IP address has been reported a total of 31 times from 16 distinct sources. 194.104.8.180 was first reported on October 17th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nationaleventpros.com	2026-06-14 16:31:23 (1 week ago)	WordPress login attempt	Brute-Force
🇺🇸 kosada.com	2026-06-11 12:45:32 (1 week ago)	Web vulnerability probing: /wp-admin.php (bogus vhost/SNI)	Web App Attack
🇺🇸 ambor	2026-05-18 21:07:53 (1 month ago)	Honeypot triggered on tcpdata.com - Attempted to access /wp-login.php (wordpress_login). User-Agent: ... show more Honeypot triggered on tcpdata.com - Attempted to access /wp-login.php (wordpress_login). User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 show less	Web App Attack
🇺🇸 TPI-Abuse	2026-05-11 21:05:25 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 17:05:20.349389 2026] [security2:error] [pid 14711:tid 14711] [client 194.104.8.180:60343] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gonzalez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gonzalez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "agJEkGcko5EmImbBIRmJnwAAABI"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-28 17:18:07 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 28 13:18:02.571184 2026] [security2:error] [pid 19079:tid 19098] [client 194.104.8.180:26585] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kwainet.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kwainet.com"] [uri "/wp-json/wp/v2/users"] [unique_id "afDrytHOVDdlfb2du6RvrgAAAA4"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 17:01:39 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 13:01:35.145337 2026] [security2:error] [pid 12781:tid 12781] [client 194.104.8.180:58431] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pages4you.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pages4you.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae5E78Q2NET15zAM7HMyJQAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 09:05:05 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 05:04:59.960834 2026] [security2:error] [pid 8124:tid 8124] [client 194.104.8.180:33705] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|puoci.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "puoci.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae3VO6yjCi5osWWMLHvRbAAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇮🇳 Mcshield.org	2025-11-30 23:12:48 (6 months ago)	Failed password for invalid user pi from 194.104.8.180 port 37224 ssh2	Brute-Force SSH
🇩🇪 Packets-Decreaser.NET	2025-11-17 16:50:27 (7 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
Anonymous	2025-10-13 07:58:16 (8 months ago)	Failed Wordpress login	Hacking Brute-Force Web App Attack
🇳🇱 exxos	2025-10-06 23:05:47 (8 months ago)	HTTP1.x attacks	DDoS Attack
Anonymous	2025-10-05 18:40:59 (8 months ago)	Failed Wordpress login	Hacking Brute-Force Web App Attack
🇺🇸 ne1for23	2025-10-04 07:05:25 (8 months ago)	194.104.8.180 - - [04/Oct/2025:07:05:19 +0000] "GET /wp-login.php HTTP/1.1" 403 555 "-" "Mozilla/5.0 ... show more 194.104.8.180 - - [04/Oct/2025:07:05:19 +0000] "GET /wp-login.php HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 Edg/115.0.1901.203" show less	Web App Attack
🇺🇸 TPI-Abuse	2025-10-04 04:34:55 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 04 00:34:49.028130 2025] [security2:error] [pid 14674:tid 14674] [client 194.104.8.180:41759] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|slattery-law.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "slattery-law.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aOCj6RZ9u_4zwgzIra25DwAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-03 00:51:55 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.104.8.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Oct 02 20:51:51.159995 2025] [security2:error] [pid 1865:tid 1865] [client 194.104.8.180:43435] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kawkacevents.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kawkacevents.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aN8eJ3rt3NZp1_J607GebgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.172.108.197

🇺🇸 134.209.120.216

🇮🇹 79.2.167.37

🇭🇰 223.197.248.209

🇮🇷 192.15.238.187

🇰🇷 113.130.212.7

🇮🇳 72.61.237.244

🇷🇺 46.8.60.113

🇵🇰 39.40.37.93

🇱🇹 2.59.162.146

🇺🇸 162.216.149.157

🇩🇪 141.11.107.166

🇷🇴 128.127.118.105

🇰🇷 115.178.75.243

🇺🇸 45.33.95.64

🇺🇸 2001:470:1:fb5:bf01:44f7:f7d5:e685

🇳🇱 192.178.118.148

🇺🇸 157.230.136.54

🇨🇳 112.86.225.149

🇹🇼 111.70.49.182