JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 204.10.160.252

204.10.160.252 was found in our database!

This IP was reported 87 times. Confidence of Abuse is 100%: ?

100%

ISP	Heymman Servers
Usage Type	Data Center/Web Hosting/Transit
ASN	AS64236
Domain Name	heymman.com
Country	🇺🇸 United States of America
City	Kansas City, Missouri

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 204.10.160.252

Whois 204.10.160.252

IP Abuse Reports for 204.10.160.252:

This IP address has been reported a total of 87 times from 37 distinct sources. 204.10.160.252 was first reported on May 7th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 srtzero	2026-06-07 22:25:33 (1 week ago)	204.10.160.252 - - [08/Jun/2026:00:25:33 +0200] "GET /.env HTTP/1.1" 404 564 "-" "Mozilla/5.0 (X11; ... show more 204.10.160.252 - - [08/Jun/2026:00:25:33 +0200] "GET /.env HTTP/1.1" 404 564 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Port Scan Bad Web Bot Web App Attack
🇫🇷 pm33	2026-06-07 21:55:38 (1 week ago)	Unsolicited connection attempts or aggressive port scan.	Port Scan
🇮🇪 Jim Keir	2026-06-07 21:01:01 (1 week ago)	2026-06-07 21:01:01 204.10.160.252 File scanning, blocking 204.10.160.252 for 5 minutes	Web App Attack
🇹🇼 ip4.tw	2026-06-07 20:35:02 (1 week ago)	Malicious web scan	Hacking Web App Attack
🇩🇪 on-com	2026-06-07 20:31:36 (1 week ago)	URL scan	Brute-Force Web App Attack
🇩🇪 Gwyneth Llewelyn	2026-06-07 16:18:50 (1 week ago)	204.10.160.252 - - [07/Jun/2026:17:18:48 +0100] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; ... show more 204.10.160.252 - - [07/Jun/2026:17:18:48 +0100] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" 2026/06/07 17:18:49 [error] 1929836#1929836: *33814 access forbidden by rule, client: 204.10.160.252, server: [redacted], request: "GET /.env HTTP/1.1", host: "[redacted]" 204.10.160.252 - - [07/Jun/2026:17:18:49 +0100] "GET /.env HTTP/1.1" 403 1178 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Brute-Force Web App Attack
🇦🇺 Starburst SysOp Team	2026-06-07 16:08:27 (1 week ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-syd2-4)	Hacking Bad Web Bot
🇫🇷 omartin	2026-06-07 14:30:51 (1 week ago)	Critical Vulnerability Scan detected	Hacking Brute-Force Exploited Host Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-07 14:08:01 (1 week ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,ice02,wa02]	Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-07 13:47:42 (1 week ago)	Accessed trap at '/.env'	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-07 13:05:03 (1 week ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa01]	Hacking Brute-Force Bad Web Bot Web App Attack
🇩🇪 Mr-Money	2026-06-07 13:00:01 (1 week ago)	204.10.160.252 - - [07/Jun/2026:15:00:00 +0200] "GET /.env HTTP/1.1" 404 437 "-" "Mozilla/5.0 (X11; ... show more 204.10.160.252 - - [07/Jun/2026:15:00:00 +0200] "GET /.env HTTP/1.1" 404 437 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇫🇷 Coco Bongo	2026-06-07 12:25:13 (1 week ago)	204.10.160.252 [redacted] (64236-UNREAL-SERVERS United States Kansas City) - - [07/Jun/2026:14:24:58 ... show more 204.10.160.252 [redacted] (64236-UNREAL-SERVERS United States Kansas City) - - [07/Jun/2026:14:24:58 +0200] "GET /.env HTTP/1.1" 404 181 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KH ... show less	Bad Web Bot Web App Attack
🇮🇹 www.tana.it	2026-06-07 11:04:28 (1 week ago)	PHP scan	Web App Attack
🇩🇪 Vegascosmetics	2026-06-06 19:36:06 (1 week ago)	Kingcopy(AI-IDS) Report: IP automatically blocked after attack pattern. Vegas Security System	Hacking Brute-Force

Showing 1 to 15 of 87 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 185.25.121.156

🇹🇼 180.218.110.248

🇳🇱 176.65.139.232

🇺🇸 162.216.149.110

🇰🇷 121.167.146.157

🇩🇪 116.203.38.236

🇪🇬 102.189.234.24

🇸🇬 97.74.88.143

🇩🇪 89.163.146.197

🇺🇸 64.62.197.105

🇺🇸 52.203.236.160

🇳🇱 45.142.193.8

🇰🇷 221.156.126.1

🇺🇸 209.50.162.221

🇧🇷 179.184.241.69

🇹🇼 125.230.98.74

🇮🇳 103.146.111.100

🇷🇴 80.94.92.182

🇧🇬 79.124.62.134

🇹🇷 78.173.60.68