JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.70.94.16

185.70.94.16 was found in our database!

This IP was reported 413 times. Confidence of Abuse is 57%: ?

57%

ISP	AXARNET COMUNICACIONES, S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS50926
Hostname(s)	grupounetcom.dnszonas.com
Domain Name	axarnet.es
Country	🇪🇸 Spain
City	Valencia, Valencia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.70.94.16

Whois 185.70.94.16

IP Abuse Reports for 185.70.94.16:

This IP address has been reported a total of 413 times from 125 distinct sources. 185.70.94.16 was first reported on October 19th 2022, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 09:52:48 (12 hours ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 05:52:43.787878 2026] [security2:error] [pid 25063:tid 25063] [client 185.70.94.16:39546] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pattenden.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pattenden.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajJua-vRggOzLuj58kDEjAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 09:01:16 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 05:01:12.451486 2026] [security2:error] [pid 11354:tid 11377] [client 185.70.94.16:51864] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pref-realestate.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pref-realestate.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajEQ2ME-wwvQMmyrf8fZDwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 08:45:20 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:45:15.754146 2026] [security2:error] [pid 9351:tid 9351] [client 185.70.94.16:39094] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.mrflatpeople.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.mrflatpeople.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajENGyK25w7iEJpch7TMCgAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 05:49:07 (1 day ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 01:48:58.751903 2026] [security2:error] [pid 6519:tid 6519] [client 185.70.94.16:53648] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.uphillfarmvt.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.uphillfarmvt.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ajDjyrK8WM4vNsNPSNE4jwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 08:13:58 (2 days ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 04:13:51.240547 2026] [security2:error] [pid 4771:tid 4771] [client 185.70.94.16:57996] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.67ronin.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.67ronin.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai-0P0hYF10HSGuu50k27AAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 11:07:13 (3 days ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 03:26:27 (3 days ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 23:26:24.356504 2026] [security2:error] [pid 23697:tid 23719] [client 185.70.94.16:57956] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.sallykimmel.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.sallykimmel.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai4fYKlLo-QfLnMcjtCORQAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 SpaceHost-Server	2026-06-13 22:27:34 (3 days ago)		Brute-Force Web App Attack
🇫🇷 SpaceHost-Server	2026-06-12 22:27:26 (4 days ago)		Brute-Force Web App Attack
🇺🇸 bigwavedave	2026-06-12 11:16:30 (5 days ago)	Wordpress Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 23:37:37 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 19:37:31.584013 2026] [security2:error] [pid 16035:tid 16035] [client 185.70.94.16:40172] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.fiasdesigns.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.fiasdesigns.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ain1O_f3paa68roYYgXfowAAAB4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 22:24:03 (6 days ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 18:23:57.198640 2026] [security2:error] [pid 22690:tid 22690] [client 185.70.94.16:46322] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.littlecreekrvranch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.littlecreekrvranch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ainj_YoBhEJ2VUuEZGCoSQAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 13:28:00 (1 week ago)		Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 03:24:44 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 23:24:40.923350 2026] [security2:error] [pid 24653:tid 24653] [client 185.70.94.16:42288] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.nearfieldchrist.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.nearfieldchrist.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aijY-AZLY1P6XyWoGTcDngAAAG4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-07 16:46:24 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in ... show more (mod_security) mod_security (id:225170) triggered by 185.70.94.16 (grupounetcom.dnszonas.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 12:46:17.789352 2026] [security2:error] [pid 26950:tid 26950] [client 185.70.94.16:32934] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|kmelson.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kmelson.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aiWgWfPe7az2WgdzvugeHQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 413 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 188.166.215.16

🇸🇬 152.42.175.252

🇨🇳 121.196.157.119

🇺🇸 45.146.55.88

🇨🇳 1.183.2.227

🇸🇬 2a09:bac5:55fa:1d05::2e4:e7

🇺🇸 134.195.101.147

🇭🇰 114.111.53.214

🇧🇩 103.239.252.132

🇷🇺 91.211.236.248

🇷🇴 80.94.92.186

🇭🇰 43.128.30.55

🇺🇸 2600:1f18:3120:f503:5c49:4e8:a862:fd78

🇺🇸 205.210.31.110

🇨🇱 186.103.169.12

🇧🇷 167.249.227.120

🇩🇪 167.94.145.19

🇺🇸 138.197.39.208

🇨🇳 121.229.156.80

🇨🇳 116.21.172.197