AbuseIPDB » 192.198.126.116
192.198.126.116
This IP was reported 9 times. Confidence of
Abuse
is 14% : ?
ISP
Server Mania Inc.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS55286
Domain Name
servermania.com
Country
๐บ๐ธ
United States of America
City
El Segundo, California
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 192.198.126.116 :
This IP address has been reported a total of
9
times from
7 distinct
sources.
192.198.126.116 was first reported on
February 6th 2021 , and the most recent report was
3 weeks ago
Old Reports:
The most recent abuse report for this IP address is from
3 weeks ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ณ๐ฑ
homeshowdomain.nl
2026-05-28 22:03:16
(3 weeks ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-05-27.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-27 15:47:34
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 192.198.126.116 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 192.198.126.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 11:47:20.374442 2026] [security2:error] [pid 25137:tid 25137] [client 192.198.126.116:52801] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "destintoday.com"] [uri "/.env.dev"] [unique_id "ahcSCLO62e3AUn0Y9JoGkQAAABs"], referer: https://www.google.com/search?q=destintoday.com
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Thaliruth
2026-05-27 13:59:24
(4 weeks ago)
[27/May/2026:15:59:23.392191 +0200] ahb4uxn62YBhHeVz04opUAAAAAk 192.198.126.116 55350 127.0.0.1 7080 ...
show more
[27/May/2026:15:59:23.392191 +0200] ahb4uxn62YBhHeVz04opUAAAAAk 192.198.126.116 55350 127.0.0.1 7080
...
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-05-26 17:55:36
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 192.198.126.116 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 192.198.126.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 13:55:27.485801 2026] [security2:error] [pid 28510:tid 28510] [client 192.198.126.116:43423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "itecsis.com"] [uri "/.env.backup"] [unique_id "ahXej1CBdZzW69M117rh2gAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
steveoriol
2023-01-30 20:59:25
(3 years ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-json/wp/v2/posts
Web App Attack
๐ฆ๐บ
oncord
2023-01-09 23:33:36
(3 years ago)
Form spam
Web Spam
2022-05-17 06:29:55
(4 years ago)
Web App Attack
๐บ๐ธ
TheMadBeaker
2021-02-24 06:07:47
(5 years ago)
Port Scan: TCP/443
Port Scan
๐บ๐ธ
TheMadBeaker
2021-02-06 11:18:24
(5 years ago)
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt
Hacking
SQL Injection
Showing 1 to
9
of 9 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: