JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.218.54.210

104.218.54.210 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 0%: ?

ISP	Interserver, Inc
Usage Type	Data Center/Web Hosting/Transit
ASN	AS19318
Hostname(s)	webhosting2003.is.cc
Domain Name	interserver.net
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.218.54.210

Whois 104.218.54.210

IP Abuse Reports for 104.218.54.210:

This IP address has been reported a total of 34 times from 14 distinct sources. 104.218.54.210 was first reported on August 29th 2022, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2025-07-29 21:30:04 (10 months ago)	Backdrop CMS module - malicious activity detected	Bad Web Bot Web App Attack
🇳🇱 MM-bot	2025-07-29 08:46:18 (10 months ago)	URL-probe: HTTP/1.1 HEAD request on /archive.zip (2025-07-29 10:46:18 UTC+2)	Hacking Web App Attack
🇦🇺 Block Rockin' Beats	2025-07-22 00:59:04 (10 months ago)	Scanning for exploitable scripts	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-07-20 01:24:58 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 21:24:51.660527 2025] [security2:error] [pid 13926:tid 13926] [client 104.218.54.210:52520] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingangelinvestors.com"] [uri "/wp-config.php_orig"] [unique_id "aHxFY82bTNmAGoGbaESWzAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 BlueWire Hosting	2025-07-19 04:10:09 (10 months ago)	Probing for Wordpress vulnerabilities	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-19 01:17:08 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 21:16:45.237831 2025] [security2:error] [pid 9741:tid 9741] [client 104.218.54.210:39178] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fixitsmart.com"] [uri "/wp-config.php_orig"] [unique_id "aHrx_X9qnUjSS5z5qZM-MQAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-17 03:35:34 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 23:35:29.719688 2025] [security2:error] [pid 7241:tid 7241] [client 104.218.54.210:42518] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "juyla.com"] [uri "/wp-config.php1"] [unique_id "aHhvgWIybuYWM-w3sGYa8AAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-16 06:59:36 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 02:59:30.400579 2025] [security2:error] [pid 23441:tid 23441] [client 104.218.54.210:51098] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rainwaterconstruction.net"] [uri "/wp-config.php1"] [unique_id "aHdN0iH_5wvSMLjdgVdfTAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-15 21:17:02 (10 months ago)	Bot / scanning and/or hacking attempts: GET /wp-config.php1 HTTP/1.1, GET /wp-config.phpold HTTP/1.1	Hacking Web App Attack
🇳🇱 i-turnradio.nl	2025-07-15 14:01:49 (10 months ago)	2025-07-15 @ 16:01:49 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇮🇹 VHosting	2025-07-14 07:00:30 (10 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2025-07-14 06:14:21 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 14 02:14:15.511782 2025] [security2:error] [pid 26699:tid 26699] [client 104.218.54.210:36480] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "daretownkindling.com"] [uri "/wp-config.php1"] [unique_id "aHSgNyBRaRAaMqjM5qlfkAAAACg"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2025-07-14 00:27:01 (10 months ago)	COMODO WAF: URL file extension is restricted by policy. Match of "pmFromFile userdata_wl_extensions" ... show more COMODO WAF: URL file extension is restricted by policy. Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. (210730-122) show less	Hacking
🇺🇸 TPI-Abuse	2025-07-13 16:54:04 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 104.218.54.210 (webhosting2003.is.cc): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 13 12:53:57.621311 2025] [security2:error] [pid 21041:tid 21110] [client 104.218.54.210:46638] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "captechinc.com"] [uri "/wp-config.php.old"] [unique_id "aHPkpbmVO5v6tpVt9041WwAAAIs"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-07-12 22:05:54 (10 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇿🇦 102.253.97.22

🇳🇱 34.91.0.68

🇳🇱 5.61.209.96

🇷🇴 2.57.122.177

🇭🇰 165.154.60.76

🇫🇮 157.180.47.8

🇺🇸 104.168.37.49

🇰🇪 102.210.40.90

🇪🇸 79.117.206.146

🇳🇱 45.148.10.157

🇳🇱 31.14.32.6

🇺🇿 213.230.87.135

🇧🇪 198.235.24.209

🇲🇽 189.147.19.238

🇮🇳 117.254.32.103

🇺🇸 104.168.9.49

🇺🇦 31.148.135.188

🇻🇳 27.79.45.156

🇺🇸 2604:a940:300:5b6:0:2a::

🇮🇩 202.74.74.185