AbuseIPDB » 104.233.15.221
104.233.15.221
This IP was reported 7 times. Confidence of
Abuse
is 0% : ?
ISP
FASTPLANET LTD
Usage Type
Data Center/Web Hosting/Transit
ASN
AS205659
Domain Name
fastplanet.com
Country
๐บ๐ธ
United States of America
City
Dallas, Texas
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 104.233.15.221 :
This IP address has been reported a total of
7
times from
4 distinct
sources.
104.233.15.221 was first reported on
July 28th 2023 , and the most recent report was
4 months ago
Old Reports:
The most recent abuse report for this IP address is from
4 months ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐บ๐ธ
TPI-Abuse
2026-01-16 20:06:51
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 104.233.15.221 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 104.233.15.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 15:06:43.133360 2026] [security2:error] [pid 4348:tid 4348] [client 104.233.15.221:45613] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/.env"] [unique_id "aWqaU6fKBz3oI30M2FxbkgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-10-01 14:53:18
(8 months ago)
(mod_security) mod_security (id:211540) triggered by 104.233.15.221 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211540) triggered by 104.233.15.221 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 10:53:12.574444 2025] [security2:error] [pid 21347:tid 21353] [client 104.233.15.221:39957] ModSecurity: Access denied with code 403 (phase 2). Match of "contains /wp-json/yoast/" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "17"] [id "211540"] [rev "14"] [msg "COMODO WAF: Blind SQL Injection Attack||ftp.kettlehill.com|F|2"] [data "Matched Data: table_name found within REQUEST_URI: /%2e%2fmigrate%2ftemplates%2fdebug%2fdb-table&table_name=wp_users--%20-"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "ftp.kettlehill.com"] [uri "/"] [unique_id "aN1AWDQa5dHzoOSVGKqDUAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
2025-02-09 17:19:39
(1 year ago)
Ports: 2077,2078,2082,2083,2086,2087,2095,2096; Direction: 0; Trigger: LF_DISTATTACK
Brute-Force
SSH
๐บ๐ธ
ChamberofCommerce.com
2023-11-05 21:26:12
(2 years ago)
Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ...
show more
Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226
show less
Bad Web Bot
๐บ๐ธ
ChamberofCommerce.com
2023-11-02 03:27:49
(2 years ago)
Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ...
show more
Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226
show less
Bad Web Bot
๐บ๐ธ
ChamberofCommerce.com
2023-10-30 20:01:14
(2 years ago)
Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ...
show more
Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226
show less
Bad Web Bot
2023-07-28 07:10:46
(2 years ago)
| XSS (Cross Site Scripting) attempt.
Hacking
SQL Injection
Web App Attack
Showing 1 to
7
of 7 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: