JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.104.9.57

194.104.9.57 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 0%: ?

ISP	Baykov Ilya Sergeevich
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41745
Domain Name	hip-hosting.com
Country	🇳🇱 Netherlands
City	Dronten, Flevoland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.104.9.57

Whois 194.104.9.57

IP Abuse Reports for 194.104.9.57:

This IP address has been reported a total of 30 times from 9 distinct sources. 194.104.9.57 was first reported on May 21st 2022, and the most recent report was 11 months ago.

Old Reports: The most recent abuse report for this IP address is from 11 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-06-20 23:07:22 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 19:07:16.810088 2025] [security2:error] [pid 2962599:tid 2962599] [client 194.104.9.57:61675] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Bourne/Thumbs.db"] [unique_id "aFXppIpsE5iEzVNz-HeseAAAABU"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Bourne/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-06-19 22:20:07 (11 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2025-05-21 02:55:11 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇦🇺 oncord	2025-05-20 02:16:24 (1 year ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-05-17 19:10:02 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 17 15:09:55.002110 2025] [security2:error] [pid 3331886:tid 3331886] [client 194.104.9.57:61871] [client 194.104.9.57] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|joevallone.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "joevallone.com"] [uri "/contact-us/[email protected]"] [unique_id "aCjfAm6ZVnPYeTyO5DzcIQAAAAY"], referer: http://joevallone.com/contact-us/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-05-16 23:50:21 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 16 19:50:14.489620 2025] [security2:error] [pid 1519257:tid 1519257] [client 194.104.9.57:64469] [client 194.104.9.57] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|anbruswebdesign.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "anbruswebdesign.com"] [uri "/[email protected]"] [unique_id "aCfPNskaqscik-qh58cGtQAAAAc"], referer: http://anbruswebdesign.com/contact.html show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-05-16 02:26:20 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-05-15 01:44:48 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-05-11 19:21:38 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-05-07 10:58:48 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
Anonymous	2025-01-24 13:55:23 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2025-01-21 08:10:09 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-12-27 14:35:09 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
Anonymous	2024-11-21 18:15:13 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇺🇸 TPI-Abuse	2024-11-10 22:09:28 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 194.104.9.57 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 17:09:24.033102 2024] [security2:error] [pid 2552527:tid 2552527] [client 194.104.9.57:18887] [client 194.104.9.57] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Ashton II Recliner/Havana Brown/originals/JPEG/Thumbs.db"] [unique_id "ZzEvFJAIFmWUe03PSv0vFAAAAAU"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Ashton%20II%20Recliner/Havana%20Brown/originals/JPEG/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2620:18c:0:192::e0:217

🇺🇸 195.184.76.247

🇺🇸 146.148.97.186

🇺🇸 2604:a880:400:d1:0:4:6c81:b001

🇧🇷 187.180.164.242

🇲🇽 186.96.145.241

🇨🇳 171.37.47.145

🇨🇳 101.35.210.162

🇺🇸 64.62.197.188

🇫🇮 35.228.219.64

🇨🇳 14.103.115.85

🇺🇿 213.230.93.52

🇩🇪 213.209.159.56

🇰🇷 211.223.107.86

🇨🇳 180.153.236.219

🇺🇸 157.230.236.254

🇪🇸 79.116.231.1

🇳🇱 45.148.10.157

🇳🇱 45.142.193.53

🇳🇱 45.94.31.183