JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.94.32.22

185.94.32.22 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 4%: ?

ISP	Fast Servers (Pty) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	traffictransitsolution.us
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.94.32.22

Whois 185.94.32.22

IP Abuse Reports for 185.94.32.22:

This IP address has been reported a total of 10 times from 7 distinct sources. 185.94.32.22 was first reported on April 11th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-02 23:31:31 (2 days ago)	(mod_security) mod_security (id:210350) triggered by 185.94.32.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 185.94.32.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 19:31:25.844902 2026] [security2:error] [pid 27311:tid 27311] [client 185.94.32.22:15849] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|patrickstrain.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "patrickstrain.com"] [uri "/"] [unique_id "ah9nzS4s8tSqpBZ2xDAl8gAAABc"], referer: https://www.facebook.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-11 11:31:57 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 185.94.32.22 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 185.94.32.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 11 07:31:53.934470 2025] [security2:error] [pid 31307:tid 31307] [client 185.94.32.22:30145] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|gamepart.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "aMKzKf6kVPgW70i_UEoTFgAAAAA"], referer: http://answers.google.com/answers/threadview/id/552967.html show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 mypatricks	2025-08-03 06:49:32 (10 months ago)	185.94.32.22 \| Port: 38192 \| DNS: 185.94.32.22 2025-08-03T14:49:31+08:00 Europe/Helsinki \| IPs reser ... show more 185.94.32.22 \| Port: 38192 \| DNS: 185.94.32.22 2025-08-03T14:49:31+08:00 Europe/Helsinki \| IPs reserved list \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_9) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3.4 Safari/605.1.15 HTTP/1.1 443 GET \| URL: /cart/?4b0386b7388f4=AUD&code=AUD \| Ref: https://xxxxxx/cart/?d33e4e3b855c55b17082d6ab17317211=1753598856b \| Country: FI/Finland/+02:00 IP City: Helsinki 9693e01a68579a3e-ARN/Stockholm, Sweden 1 hits/0 secs Robots 3 show less	Web Spam Blog Spam Brute-Force Exploited Host Web App Attack
🇨🇭 backslash	2025-07-04 03:53:56 (11 months ago)		Bad Web Bot
🇪🇸 10dencehispahard SL	2025-05-14 05:29:57 (1 year ago)	WP probing for vulnerabilities	Hacking Exploited Host
🇷🇺 sms.ru	2024-09-26 21:50:04 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇺🇸 hostseries	2024-08-31 11:45:15 (1 year ago)	Trigger: LF_DISTATTACK	Brute-Force
🇨🇭 backslash	2024-05-23 07:35:03 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇷🇸 Smel	2024-05-05 01:52:04 (2 years ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇨🇭 backslash	2024-04-11 06:16:28 (2 years ago)	honeypot	Bad Web Bot

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 176.223.184.83

🇩🇪 64.226.86.7

🇨🇳 61.153.194.251

🇰🇷 61.42.133.74

🇬🇧 193.163.125.110

🇺🇿 188.113.246.18

🇺🇿 188.113.233.126

🇳🇱 185.242.226.72

🇨🇳 171.38.238.49

🇨🇳 116.178.131.109

🇵🇰 115.42.70.26

🇮🇳 106.202.73.95

🇧🇩 103.189.226.103

🇺🇸 100.28.153.226

🇰🇿 95.59.247.88

🇰🇿 95.56.43.160

🇰🇿 89.42.60.49

🇺🇸 74.207.253.22

🇰🇿 67.209.156.20

🇺🇸 66.132.172.238