JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.94.35.57

185.94.35.57 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 22%: ?

22%

ISP	Fast Servers (Pty) Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	traffictransitsolution.us
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.94.35.57

Whois 185.94.35.57

IP Abuse Reports for 185.94.35.57:

This IP address has been reported a total of 16 times from 8 distinct sources. 185.94.35.57 was first reported on September 25th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-22 12:45:06 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 08:45:00.441614 2026] [security2:error] [pid 6909:tid 6909] [client 185.94.35.57:47231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "professionalpianomoversinc.com.anthonyanimalclinic.net"] [uri "/wp-config.php~"] [unique_id "ahBPzL0EIhRzrDF64mgfqQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-21 16:04:09 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 21 12:04:03.967333 2026] [security2:error] [pid 23146:tid 23146] [client 185.94.35.57:48513] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.21-0322.dynamic-therapy-mn.com"] [uri "/wp-config.php.bak"] [unique_id "ag8s83WSHwdzbnZOQB_QQQAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 20:27:38 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 16:27:30.600304 2026] [security2:error] [pid 10643:tid 10643] [client 185.94.35.57:64775] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "starvationacres.us"] [uri "/wp-config.php.save"] [unique_id "ag4ZMjeqn1JU5Dvz4SISQAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 13:27:58 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:27:53.383224 2026] [security2:error] [pid 27544:tid 27544] [client 185.94.35.57:31969] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bolivarbulletintimes.com"] [uri "/wp-config.php.orig"] [unique_id "ag222fkl408qdkx754bv6wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 04:02:50 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 00:02:42.424233 2026] [security2:error] [pid 12459:tid 12459] [client 185.94.35.57:56577] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.txt" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caddydad.com"] [uri "/wp-config.txt"] [unique_id "ag0yYnUf_8-bB-6pzKe6ngAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-05-18 01:31:32 (2 weeks ago)	Too much 404 requests in 1 hour. Operator GE matched 50 at IP:block_script. (44020-123)	Hacking
Anonymous	2026-05-16 20:18:39 (2 weeks ago)	[Sat May 16 22:18:37.462831 2026] [authz_core:error] [pid 1423:tid 1518] [client 185.94.35.57:13643] ... show more [Sat May 16 22:18:37.462831 2026] [authz_core:error] [pid 1423:tid 1518] [client 185.94.35.57:13643] AH01630: client denied by server configuration: /var/www/wordp/wp-admin/setup-config.php [Sat May 16 22:18:38.247984 2026] [authz_core:error] [pid 1429:tid 1615] [client 185.94.35.57:29695] AH01630: client denied by server configuration: /var/www/wordp/wp-admin/install.php [Sat May 16 22:18:38.296190 2026] [authz_core:error] [pid 1429:tid 1612] [client 185.94.35.57:21367] AH01630: client denied by server configuration: /var/www/wordp/wp-admin/admin-ajax.php [Sat May 16 22:18:38.349352 2026] [access_compat:error] [pid 1429:tid 1594] [client 185.94.35.57:52447] AH01797: client denied by server configuration: /var/www/wordp/wp-content/uploads/wc-logs/ ... show less	Brute-Force Web App Attack
🇨🇭 4server	2026-04-30 20:11:13 (1 month ago)	[ThuApr3022:11:06.5803792026][security2:error][pid4107218:tid4108002][client185.94.35.57:0]ModSecuri ... show more [ThuApr3022:11:06.5803792026][security2:error][pid4107218:tid4108002][client185.94.35.57:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\^/wp-content/plugins/[\^/] /\(readme\\\\\\\\.txt\\|changelog\\\\\\\\.txt\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"381\"][id\"960828\"][msg\"WordPresspluginenumerationblocked\"][hostname\"mondo-it.ch\"][uri\"/wp-content/plugins/shortcodes-ultimate/readme.txt\"][unique_id\"afO3WgD6-rhRxLw_twkPCAAAARM\"] show less	Hacking Web App Attack
Anonymous	2025-09-05 05:11:25 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇩🇪 stinpriza	2025-08-28 01:03:57 (9 months ago)	Web App Attack	Web App Attack
Anonymous	2025-06-12 17:41:48 (11 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-12-08 00:07:40 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2024-12-03 22:35:40 (1 year ago)	WAF detection: Web Platform Attack	Web App Attack
🇺🇸 TPI-Abuse	2024-11-30 16:17:37 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 30 11:17:30.280867 2024] [security2:error] [pid 8519:tid 8519] [client 185.94.35.57:21475] [client 185.94.35.57] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|paladinmicro.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "paladinmicro.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Z0s6mvKC_yESJLA_GZogMQAAAAg"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-11-11 13:39:30 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 185.94.35.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 11 08:39:27.275846 2024] [security2:error] [pid 26653:tid 26653] [client 185.94.35.57:32575] [client 185.94.35.57] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|2janderson.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "2janderson.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZzIJDxMCjUth-vSho07dfQAAAB8"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.215.145.162

🇮🇳 125.21.59.218

🇺🇸 96.126.101.29

🇸🇬 94.231.206.3

🇺🇸 65.49.1.224

🇩🇪 130.12.180.51

🇺🇸 66.132.195.81

🇳🇱 45.148.10.147

🇮🇩 36.93.144.67

🇬🇧 35.203.211.126

🇧🇪 34.156.214.79

🇺🇸 209.173.194.92

🇮🇩 202.145.0.112

🇵🇭 136.158.60.178

🇺🇸 68.59.136.164

🇫🇷 51.159.110.167

🇺🇸 47.77.216.27

🇸🇬 43.159.46.41

🇧🇪 34.76.237.251

🇹🇷 213.74.156.24