JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.99.25.137

194.99.25.137 was found in our database!

This IP was reported 12 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.99.25.137

Whois 194.99.25.137

IP Abuse Reports for 194.99.25.137:

This IP address has been reported a total of 12 times from 8 distinct sources. 194.99.25.137 was first reported on April 15th 2023, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-20 00:28:14 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 194.99.25.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 194.99.25.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 19:28:09.543945 2026] [security2:error] [pid 3662241:tid 3662241] [client 194.99.25.137:33181] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|techlinks.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "techlinks.com"] [uri "/"] [unique_id "aW7MGbOdONPoHvUIBT075QAAABM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-01-02 18:25:47 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: /genshin-stella-mod UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇱🇻 garmtech.com	2025-11-25 02:50:27 (7 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇨🇭 backslash	2025-05-23 22:25:06 (1 year ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-07 20:37:54 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 194.99.25.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 194.99.25.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 07 16:37:47.454129 2025] [security2:error] [pid 3685016:tid 3685016] [client 194.99.25.137:64473] [client 194.99.25.137] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|gamepart.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "gamepart.com"] [uri "/home/tancedi1/gamepart.com"] [unique_id "aBvEm4ijkoGlzx0N9RhfuwAAAA4"], referer: http://gamepart.com/home/tancedi1/gamepart.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-12-16 19:03:00 (1 year ago)	Attempted brute force login to web vpn	Hacking Brute-Force
🇺🇸 TPI-Abuse	2024-11-10 07:27:07 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 194.99.25.137 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 194.99.25.137 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 10 02:26:59.843834 2024] [security2:error] [pid 1925788:tid 1925788] [client 194.99.25.137:11377] [client 194.99.25.137] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Longhorn II/Chaps Saddle/Thumbs.db"] [unique_id "ZzBgQ9n6AXPybVJivmWiNwAAAA4"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Longhorn%20II/Chaps%20Saddle/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-10-10 12:10:22 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇨🇦 wil.com	2024-09-23 08:04:56 (1 year ago)	GlobalProtect login attempts with user lgross.	VPN IP Brute-Force
🇨🇭 backslash	2024-05-22 23:15:02 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2024-04-11 15:40:23 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2023-04-15 06:55:50 (3 years ago)	Credential Stuffing attacks against Microsoft 365	Brute-Force

Showing 1 to 12 of 12 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇿 78.44.192.210

🇳🇱 45.148.10.121

🇺🇸 35.171.100.6

🇻🇳 14.241.226.62

🇮🇪 4.210.91.174

🇵🇱 195.116.145.127

🇰🇷 118.43.193.199

🇩🇪 88.217.161.151

🇩🇪 88.214.25.125

🇺🇸 3.239.155.84

🇨🇳 116.168.74.78

🇩🇪 69.5.169.15

🇱🇹 62.60.130.219

🇺🇸 48.217.83.181

🇺🇸 3.238.178.229

🇺🇸 192.178.37.28

🇧🇷 189.58.80.217

🇨🇳 134.175.226.170

🇨🇳 106.115.80.214

🇳🇱 89.125.146.217