JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.239.57.58

85.239.57.58 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	JSC TIMEWEB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9123
Domain Name	timeweb.com
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.239.57.58

Whois 85.239.57.58

IP Abuse Reports for 85.239.57.58:

This IP address has been reported a total of 12 times from 7 distinct sources. 85.239.57.58 was first reported on November 2nd 2022, and the most recent report was 8 months ago.

Old Reports: The most recent abuse report for this IP address is from 8 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-09-06 19:43:46 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 85.239.57.58 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 85.239.57.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 15:43:30.457834 2025] [security2:error] [pid 30918:tid 30918] [client 85.239.57.58:60845] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Kristin/Thumbs.db"] [unique_id "aLyO4ttx7EosSPxFM-GtoAAAAAY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Kristin/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-08-19 20:43:31 (9 months ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇨🇭 backslash	2025-06-19 04:45:06 (11 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-06 04:56:25 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 85.239.57.58 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 85.239.57.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 00:56:19.469717 2025] [security2:error] [pid 596809:tid 596809] [client 85.239.57.58:20807] [client 85.239.57.58] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Barclay 3025/Thumbs.db"] [unique_id "aBmWczN4-zr49KpghJwbjwAAAAY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Barclay%203025/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 oncord	2024-11-15 01:14:46 (1 year ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2024-11-05 05:23:56 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 85.239.57.58 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 85.239.57.58 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 00:23:41.516986 2024] [security2:error] [pid 3864898:tid 3864898] [client 85.239.57.58:10449] [client 85.239.57.58] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Golden-Technologies/pics/Golden Technologies 2009 Marketing CD/Scooters/2010 Companion Models/Thumbs.db"] [unique_id "Zymr3U1cMuB3W1uQEFK7vAAAABA"], referer: https://vitalitywebb.com/backstore/Golden-Technologies/pics/Golden%20Technologies%202009%20Marketing%20CD/Scooters/2010%20Companion%20Models/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2024-11-01 01:39:40 (1 year ago)	Form spam	Web Spam
🇷🇺 sms.ru	2024-09-26 16:10:07 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack
🇨🇦 wil.com	2024-09-23 10:20:49 (1 year ago)	GlobalProtect login attempts with user dstarr.	VPN IP Brute-Force
🇨🇭 backslash	2024-05-18 05:23:28 (2 years ago)	honeypot detection	Bad Web Bot
🇨🇭 backslash	2024-04-11 07:20:15 (2 years ago)	honeypot	Bad Web Bot
🇳🇱 Savvii	2022-11-02 08:52:22 (3 years ago)	20 attempts against mh-misbehave-ban on ozone	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 179.51.153.37

🇫🇷 167.86.87.228

🇷🇸 109.207.35.168

🇺🇸 88.218.172.242

🇺🇸 66.55.80.161

🇺🇸 208.109.52.213

🇺🇸 135.237.126.218

🇰🇷 119.75.76.18

🇫🇷 92.205.16.30

🇫🇷 84.247.136.70

🇷🇴 80.94.92.168

🇳🇱 77.83.39.95

🇺🇸 45.156.129.57

🇺🇸 38.141.62.106

🇮🇳 20.197.49.178

🇺🇸 3.142.80.231

🇫🇷 207.180.229.239

🇳🇱 195.178.110.30

🇺🇸 192.169.180.166

🇺🇸 192.163.249.224