JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 104.239.92.54

104.239.92.54 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 0%: ?

ISP	FASTPLANET LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	fastplanet.com
Country	🇮🇹 Italy
City	Figino, Lombardy

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 104.239.92.54

Whois 104.239.92.54

IP Abuse Reports for 104.239.92.54:

This IP address has been reported a total of 5 times from 2 distinct sources. 104.239.92.54 was first reported on January 17th 2025, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-07-27 02:14:21 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 26 22:14:18.297892 2025] [security2:error] [pid 783496:tid 783505] [client 104.239.92.54:41795] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.net"] [uri "/static../.git/config"] [unique_id "aIWLekBIVxi3CeAsEkAGhAAAAUE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-29 17:20:14 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 29 13:20:01.967777 2025] [security2:error] [pid 3053056:tid 3053056] [client 104.239.92.54:56933] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.farmers123.com"] [uri "/.env.save"] [unique_id "aDiXQQ6FyE66fyjwHQuB2wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-04-19 03:06:34 (1 year ago)	(mod_security) mod_security (id:212620) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:212620) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 18 23:05:48.648146 2025] [security2:error] [pid 14944:tid 14953] [client 104.239.92.54:39639] [client 104.239.92.54] ModSecurity: Access denied with code 403 (phase 2). Pattern match "<script\\\\b" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/07_XSS_XSS.conf"] [line "65"] [id "212620"] [rev "4"] [msg "COMODO WAF: Cross-site Scripting (XSS) Attack\|\|blog.spinningdesigns.com\|F\|2"] [data "Matched Data: <script found within REQUEST_URI: /oauth/idp/logout?post_logout_redirect_uri=<script>console.log(`xss`)</script>"] [severity "CRITICAL"] [tag "CWAF"] [tag "XSS"] [hostname "blog.spinningdesigns.com"] [uri "/oauth/idp/logout"] [unique_id "aAMTDKlkjOMtrQ4IEmnfnwAAAEU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-27 15:00:39 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 104.239.92.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 27 09:59:47.970251 2025] [security2:error] [pid 27062:tid 27185] [client 104.239.92.54:40515] [client 104.239.92.54] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.kettlehill.net"] [uri "/.env.live"] [unique_id "Z8B94wgBT3qhfe6UoI1ICAAAAEk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-01-17 15:20:13 (1 year ago)	\| A web attack returned code 200 (success).	Hacking SQL Injection Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 150.5.134.198

🇭🇰 150.5.134.181

🇺🇸 66.132.186.222

🇺🇸 34.228.104.231

🇧🇷 205.210.31.226

🇧🇪 198.235.24.224

🇲🇽 189.154.200.45

🇮🇩 163.7.16.154

🇭🇰 150.5.134.3

🇨🇳 106.119.165.171

🇸🇬 101.47.159.178

🇭🇰 47.238.237.38

🇳🇱 45.156.87.216

🇺🇸 20.65.193.198

🇺🇸 205.210.31.55

🇬🇧 193.32.209.254

🇲🇽 187.191.48.23

🇮🇩 180.251.155.227

🇺🇸 147.185.132.174

🇮🇳 117.222.137.34