JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 94.154.127.114

94.154.127.114 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 9%: ?

ISP	Quality Network US LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	traffictransitsolution.us
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 94.154.127.114

Whois 94.154.127.114

IP Abuse Reports for 94.154.127.114:

This IP address has been reported a total of 24 times from 16 distinct sources. 94.154.127.114 was first reported on July 26th 2023, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-22 11:05:59 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 07:05:55.668742 2026] [security2:error] [pid 11415:tid 11415] [client 94.154.127.114:25003] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dceabronwilliams.com"] [uri "/wp-config.php.dist"] [unique_id "ahA4kwaRPMffHJKAbAFUOwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 16:46:21 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 12:46:15.935239 2026] [security2:error] [pid 11440:tid 11440] [client 94.154.127.114:9809] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gasoilliquidsdaily.com"] [uri "/wp-config.php.orig"] [unique_id "ag3lVzWNmk_gzIULGY4BXgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 15:20:12 (3 weeks ago)	(mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 11:20:01.886621 2026] [security2:error] [pid 21119:tid 21119] [client 94.154.127.114:26183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fuentevictoria.com"] [uri "/wp-config.php.orig"] [unique_id "ag3RISGfF8KQSJqPgTG6FgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 13:25:29 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 09:25:18.129302 2026] [security2:error] [pid 8789:tid 8789] [client 94.154.127.114:49939] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.benkatkin.passy.us"] [uri "/wp-config.php.save"] [unique_id "ag22PgRtCJXNSKL2R3CYsQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 12:57:28 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 08:57:20.257518 2026] [security2:error] [pid 7406:tid 7406] [client 94.154.127.114:26815] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brianwhitty.com"] [uri "/wp-config.php.save"] [unique_id "ag2vsJuzSroPgugESoMbuAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 04:25:41 (4 weeks ago)	(mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 20 00:25:35.903096 2026] [security2:error] [pid 27187:tid 27200] [client 94.154.127.114:14725] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eliteproductions.tv"] [uri "/wp-config.php.save"] [unique_id "ag03v7kG8DbKs-V_GilEmQAAAsc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 [email protected]	2026-05-13 12:11:33 (1 month ago)	94.154.127.114 - - [13/May/2026:10:23:58 +0200] "GET /wp-config.php.dist HTTP/1.1" 404 5043 "-" "Moz ... show more 94.154.127.114 - - [13/May/2026:10:23:58 +0200] "GET /wp-config.php.dist HTTP/1.1" 404 5043 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Web App Attack
Anonymous	2025-02-17 08:01:23 (1 year ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 S.O.B.A. Dev.	2025-01-11 03:30:38 (1 year ago)	Threat Blocked by BeeHive from (ASN:26548) (Network:PUREVOLTAGE-INC) (Host:soba.dev) (Method:GET) (P ... show more Threat Blocked by BeeHive from (ASN:26548) (Network:PUREVOLTAGE-INC) (Host:soba.dev) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2025-01-11T03:30:38Z) show less	Web Spam Brute-Force Web App Attack
Anonymous	2024-11-19 01:02:13 (1 year ago)	Web attack	Bad Web Bot Web App Attack
🇹🇷 rtbh.com.tr	2024-10-31 20:53:36 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2024-10-30 20:53:39 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 ghostwarriors	2024-10-29 16:50:05 (1 year ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-10-19 21:50:50 (1 year ago)	(mod_security) mod_security (id:225170) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 94.154.127.114 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 19 17:50:44.040231 2024] [security2:error] [pid 6409:tid 6409] [client 94.154.127.114:64307] [client 94.154.127.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|michaels-house.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "michaels-house.net"] [uri "/wp-json/wp/v2/users"] [unique_id "ZxQptGO2axgnALt0R1mq4AAAAAA"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2024-10-16 21:32:38 (1 year ago)	WordPress login attempt	Brute-Force

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.94.146.56

🇻🇳 103.163.118.148

🇳🇱 91.92.40.202

🇳🇱 86.54.31.40

🇺🇸 44.108.179.109

🇩🇪 172.71.148.53

🇺🇸 165.154.173.226

🇹🇼 122.116.8.127

🇫🇮 80.223.200.184

🇺🇸 44.134.9.72

🇺🇸 2600:1f18:3120:f505:d4b4:4577:bc9:e4c9

🇨🇭 209.99.190.139

🇨🇳 112.35.70.140

🇮🇩 103.164.57.37

🇫🇷 85.217.140.32

🇱🇹 81.30.98.144

🇱🇹 81.30.98.49

🇷🇺 80.69.186.68

🇮🇹 79.3.96.178

🇱🇺 64.89.160.111