JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.94.34.130

185.94.34.130 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 7%: ?

ISP	Fast Servers (Pty) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	traffictransitsolution.us
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.94.34.130

Whois 185.94.34.130

IP Abuse Reports for 185.94.34.130:

This IP address has been reported a total of 32 times from 17 distinct sources. 185.94.34.130 was first reported on April 8th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-27 09:34:06 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 27 05:34:02.068895 2026] [security2:error] [pid 9675:tid 9675] [client 185.94.34.130:17145] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|farsipraiseclub.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "farsipraiseclub.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ae8tijq08HOdMmh_wsposwAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-23 22:38:27 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 23 18:38:20.428038 2026] [security2:error] [pid 4147662:tid 4147662] [client 185.94.34.130:18115] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rodzillacharters.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rodzillacharters.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aeqfXMahETYK0JT0X2ViqgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇹🇷 Detmach	2026-04-21 12:22:45 (1 month ago)	Security attack detected. Multiple failed attempts from 185.94.34.130. IP banned for 1440 minutes at ... show more Security attack detected. Multiple failed attempts from 185.94.34.130. IP banned for 1440 minutes at 21.04.2026 15:21:56. Failed attempts: 1 show less	Brute-Force
🇺🇸 TPI-Abuse	2026-04-17 22:46:46 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 17 18:46:42.679126 2026] [security2:error] [pid 1343417:tid 1343417] [client 185.94.34.130:37221] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|frogdesignmexico.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "frogdesignmexico.com"] [uri "/wp-login.php/wp-json/wp/v2/users"] [unique_id "aeK4Uv8SHnLwKwHSJ9ntcQAAACQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-17 21:05:45 (1 month ago)	(mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 17 17:05:40.224036 2026] [security2:error] [pid 2708969:tid 2708969] [client 185.94.34.130:29919] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.televisonic.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.televisonic.com"] [uri "/wp/wp-login.php/wp-json/wp/v2/users"] [unique_id "aeKgpGqksDz4tn3kjVhtKgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇿 Tripwire	2026-02-24 20:58:27 (3 months ago)	Wordpress login attempts	Brute-Force Web App Attack
🇫🇷 Kenshin869	2026-02-06 03:53:37 (4 months ago)	Wordpress unauthorized access attempt	Brute-Force
🇺🇸 agenciahypelab.com.br	2026-02-05 22:16:42 (4 months ago)	WordPress login brute-force detectado e bloqueado pelo CSF/LFD. Trigger: LF_TRIGGER	Brute-Force SSH
🇸🇬 Vano Ganzzz	2025-11-29 11:10:20 (6 months ago)	Triggered Cloudflare WAF (ratelimit) from FI. Action taken: BLOCK ASN: 59651 (AS-QUALITYNETWORK) Pro ... show more Triggered Cloudflare WAF (ratelimit) from FI. Action taken: BLOCK ASN: 59651 (AS-QUALITYNETWORK) Protocol: HTTP/2 (GET method) Endpoint: / Timestamp: 2025-11-29T11:10:20Z Ray ID: 9a61a8722df24b93 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-09-06 22:12:55 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 18:12:48.348392 2025] [security2:error] [pid 15371:tid 15371] [client 185.94.34.130:17489] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Briarwood II/Briarwood II/Stetson Coffee/originals/Thumbs.db"] [unique_id "aLyx4JYUArmI8n1aEu8GfgAAABE"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Briarwood%20II/Briarwood%20II/Stetson%20Coffee/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 exxos	2025-09-05 14:03:01 (9 months ago)	HTTP1.x attacks	DDoS Attack
🇨🇭 backslash	2025-06-19 22:30:06 (11 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2024-12-19 20:49:40 (1 year ago)	Attempted brute force login to web vpn	Hacking Brute-Force
🇦🇺 MAGIC	2024-11-29 18:05:00 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2024-11-10 17:23:00 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 185.94.34.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 12:22:53.957243 2024] [security2:error] [pid 2363592:tid 2363592] [client 185.94.34.130:35151] [client 185.94.34.130] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Double Fudge/originals/Thumbs.db"] [unique_id "ZzDr7b-0dvnIAMIiUHMvBwAAAAs"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Double%20Fudge/originals/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 190.5.200.98

🇭🇰 154.219.114.33

🇬🇧 45.89.242.131

🇩🇪 213.209.159.60

🇺🇸 193.31.35.13

🇷🇺 176.211.16.192

🇸🇪 171.25.158.47

🇺🇸 138.113.23.170

🇨🇳 113.31.103.129

🇧🇩 103.183.62.2

🇩🇪 64.226.82.4

🇳🇱 45.148.10.147

🇺🇸 45.33.93.17

🇺🇸 34.127.111.137

🇳🇱 5.61.209.43

🇩🇪 213.209.159.242

🇩🇪 157.230.125.80

🇺🇸 154.83.197.29

🇨🇳 125.124.226.217

🇮🇳 125.19.162.70