JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.99.26.74

194.99.26.74 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 3%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS59651
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.99.26.74

Whois 194.99.26.74

IP Abuse Reports for 194.99.26.74:

This IP address has been reported a total of 14 times from 11 distinct sources. 194.99.26.74 was first reported on March 11th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-05-26 12:13:28 (1 week ago)	(mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 08:13:20.448979 2026] [security2:error] [pid 28996:tid 28996] [client 194.99.26.74:17767] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|barigby.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "barigby.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ahWOYE0Vs93AQzsD8z1vQwAAABQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-01 00:35:24 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 20:35:19.745040 2026] [security2:error] [pid 11915:tid 11915] [client 194.99.26.74:35851] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|sparler.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "sparler.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acxoR994FQnpg5_-M4nmEQAAACU"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-26 13:16:37 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 26 09:16:28.839517 2026] [security2:error] [pid 6247:tid 6247] [client 194.99.26.74:13091] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|frankcgill.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "frankcgill.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acUxrDbWvRv6UnHHw2ky2AAAABE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Mangelot Hosting	2026-03-02 14:55:27 (3 months ago)	(bad_user_agent) srv102 Bad User-Agent 194.99.26.74 (NL/The Netherlands/-): 10 in the last 3600 secs ... show more (bad_user_agent) srv102 Bad User-Agent 194.99.26.74 (NL/The Netherlands/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-22 10:55:54 (4 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 194.99.26.74 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 22 05:55:51.831466 2026] [security2:error] [pid 22242:tid 22242] [client 194.99.26.74:16809] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|rocksolidhomebuilders.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rocksolidhomebuilders.com"] [uri "/wp-json/wp/v2/users/1"] [unique_id "aXICNwf_zdUgeXGWKXHkQwAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-04-05 02:05:04 (1 year ago)	block ruleset bad bot: wordpress scans 82C095539D4FDAF84E2E2FD6B6FC0664645851A8	Bad Web Bot
🇬🇧 SilverZippo	2025-04-04 14:53:39 (1 year ago)	Web App Attack	Web App Attack
🇨🇿 lp	2025-03-20 16:27:46 (1 year ago)	Unauthorized VPN login attempts: 1 attempts were recorded from 194.99.26.74 2025-03-20T16:17:20+01:0 ... show more Unauthorized VPN login attempts: 1 attempts were recorded from 194.99.26.74 2025-03-20T16:17:20+01:00 vpn Access-Reject 'george111' station: 194.99.26.74 auth-type: - realm: vse.cz nas: <redacted> called: <redacted> => address-pool: - msg: '<redacted>' show less	Brute-Force Web App Attack
Anonymous	2025-02-28 08:57:16 (1 year ago)	wordpress-trap	Web App Attack
🇳🇿 Tripwire	2025-02-14 02:43:44 (1 year ago)	Scanning for exploits - /.env	Web App Attack
🇵🇱 rafix	2023-11-01 01:33:57 (2 years ago)	Scrapping website, using diffrent useragents, not wait for response, #botnet20231026	DDoS Attack Bad Web Bot
🇦🇺 MAGIC	2023-03-18 20:26:07 (3 years ago)	Distributed DDOS attempts for multiple sites	DDoS Attack Bad Web Bot
🇺🇸 mnsf	2023-03-17 14:08:12 (3 years ago)	Login Too Frequent (6)	Brute-Force Web App Attack
🇪🇸 10dencehispahard SL	2023-03-11 11:24:41 (3 years ago)	Unauthorized login attempts [{'wordpress'}]	Brute-Force Web App Attack

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 142.93.199.16

🇺🇸 18.217.170.22

🇬🇧 5.226.140.77

🇳🇪 2605:59c0:bf7:2d08:b9ae:b88e:575e:bb4b

🇩🇪 213.209.159.56

🇸🇬 172.253.211.19

🇭🇰 152.32.240.95

🇺🇸 74.195.44.207

🇨🇳 60.191.137.103

🇨🇳 43.139.115.189

🇷🇴 2.57.122.238

🇳🇱 185.224.128.16

🇬🇧 185.92.25.28

🇨🇳 111.228.58.144

🇰🇭 103.239.54.191

🇬🇧 88.215.1.201

🇬🇧 77.68.99.202

🇬🇧 74.125.43.145

🇭🇰 43.161.217.205

🇪🇬 41.39.213.131