JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 2.57.170.34

2.57.170.34 was found in our database!

This IP was reported 123 times. Confidence of Abuse is 21%: ?

21%

ISP	VPN Consumer Cosenza, Italy
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206092
Domain Name	vpnconsumer.com
Country	🇮🇹 Italy
City	Cosenza, Calabria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 2.57.170.34

Whois 2.57.170.34

IP Abuse Reports for 2.57.170.34:

This IP address has been reported a total of 123 times from 48 distinct sources. 2.57.170.34 was first reported on June 20th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-02 00:20:13 (1 week ago)	Web attack blocked by Wordfence on kernoverlegsibbe-ijzeren.nl (1 hit). Reported by CRMON.	Web App Attack
🇯🇵 SentinalX by uzumaru	2026-05-18 08:30:57 (3 weeks ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: ipleak.net:443 show less	Open Proxy Port Scan
🇫🇷 Octopuce	2026-05-08 20:36:34 (1 month ago)	Aggressive web search of vulnerable pages: /wp-user.php /wp-includes/pomo/about.php /wp-includes/pom ... show more Aggressive web search of vulnerable pages: /wp-user.php /wp-includes/pomo/about.php /wp-includes/pomo/index.php /config.php /special.php /asset ... show less	Web App Attack
Anonymous	2026-05-03 01:39:40 (1 month ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇺🇸 antlac1	2026-05-02 07:15:00 (1 month ago)	crowdsecurity/http-backdoors-attempts	Brute-Force Web App Attack
🇫🇷 Octopuce	2026-04-12 20:15:07 (1 month ago)	Aggressive web search of vulnerable pages: /modules/mod_footer/tmpl/index.php /wp-content/plugins/io ... show more Aggressive web search of vulnerable pages: /modules/mod_footer/tmpl/index.php /wp-content/plugins/ioxi/ioxi/about.php /wp-admin/js/widgets/auto ... show less	Web App Attack
Anonymous	2026-03-27 09:03:19 (2 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
Anonymous	2026-03-26 08:04:31 (2 months ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: Word ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: IT, Attack patterns: WordPress scanning, Webshell probing show less	Bad Web Bot Web App Attack
🇦🇺 screwlooseit.com.au	2026-03-25 22:47:03 (2 months ago)	Blocked by CSF 13 firewall - Rule: XMLRPC IT/Italy/-	Web App Attack
🇳🇱 Savvii	2026-03-25 17:46:59 (2 months ago)	10 attempts against mh-misc-ban on eris	Web App Attack
🇳🇱 Site.eu	2026-03-18 05:43:12 (2 months ago)	Excessive 404/403 errors	Brute-Force
🇩🇪 Viveronese	2026-03-15 11:22:51 (2 months ago)	HTTP vulnerability scanning	Web App Attack
🇺🇸 TPI-Abuse	2026-02-26 00:27:24 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 2.57.170.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 2.57.170.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 19:27:03.140253 2026] [security2:error] [pid 22001:tid 22001] [client 2.57.170.34:41741] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|morninginc.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "morninginc.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aZ-TVzjcUaGGOiXjTMy0nQAAADA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-25 18:59:36 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 2.57.170.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 2.57.170.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 13:59:30.577766 2026] [security2:error] [pid 17275:tid 17275] [client 2.57.170.34:65221] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.pjvcds.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.pjvcds.com"] [uri "/wordpress/wp-json/wp/v2/users/"] [unique_id "aZ9GkrGZO_dFemGb6a_BdwAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-25 17:56:42 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 2.57.170.34 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 2.57.170.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 25 12:56:13.207473 2026] [security2:error] [pid 8881:tid 8881] [client 2.57.170.34:62651] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.beirutbazar.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.beirutbazar.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aZ83vXgUTddvp0dToZANaQAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 123 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 188.93.112.20

🇺🇸 69.57.160.154

🇨🇳 43.136.120.160

🇺🇸 205.210.31.13

🇺🇾 179.25.147.49

🇫🇮 178.20.28.85

🇺🇸 162.216.149.221

🇫🇷 85.204.70.92

🇺🇸 50.187.96.101

🇺🇸 20.124.91.101

🇷🇴 193.46.255.86

🇧🇷 168.0.130.99

🇺🇸 147.185.132.113

🇨🇳 101.126.66.30

🇫🇷 51.68.34.131

🇳🇬 41.242.115.84

🇬🇧 37.10.113.220

🇯🇵 8.216.66.146

🇩🇪 172.217.33.208

🇺🇸 162.216.16.86