JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 194.99.27.105

194.99.27.105 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS43444
Domain Name	finegroupservers.com
Country	🇸🇪 Sweden
City	Marsta, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 194.99.27.105

Whois 194.99.27.105

IP Abuse Reports for 194.99.27.105:

This IP address has been reported a total of 15 times from 4 distinct sources. 194.99.27.105 was first reported on September 27th 2025, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-09 23:37:16 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 09 19:37:12.288801 2026] [security2:error] [pid 1141576:tid 1141576] [client 194.99.27.105:31325] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|steinmetzjewelers.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "steinmetzjewelers.com"] [uri "/wp-json/wp/v2/users"] [unique_id "adg4KEo8nX_QeRJ78wF6NAAAABM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 06:04:25 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 02:04:17.964909 2026] [security2:error] [pid 6479:tid 6479] [client 194.99.27.105:61333] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|gonzalez.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gonzalez.com"] [uri "/wp-json/wp/v2/users"] [unique_id "actj4chls_IMUJDV4Y8n2AAAAAk"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 00:22:12 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 20:22:07.872223 2026] [security2:error] [pid 27125:tid 27136] [client 194.99.27.105:9425] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|dubarch.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "dubarch.com"] [uri "/wp-json/wp/v2/users"] [unique_id "acsTr7M7zsB3GPxvuNi3ogAAAIM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-02-06 23:07:18 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-02-06 22:41:18 (4 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇫🇷 masterguru	2026-01-18 14:08:46 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the last 3600 secs (0-196) show less	Hacking
🇫🇷 masterguru	2026-01-18 03:24:11 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇫🇷 masterguru	2025-12-25 10:39:00 (6 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 194.99.27.105 (NL/The Netherlands/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇺🇸 oncord	2025-12-19 07:41:19 (6 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-12-11 06:48:50 (6 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-10-24 22:02:57 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Oct 24 18:02:49.515088 2025] [security2:error] [pid 21818:tid 21818] [client 194.99.27.105:25695] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|igolfallday.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "igolfallday.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPv3ifg2cW9kxJbtK9X0BAAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-21 14:44:05 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Oct 21 10:43:57.760507 2025] [security2:error] [pid 25343:tid 25343] [client 194.99.27.105:28879] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|modalsoftware.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "modalsoftware.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPecLeCM2p-9S-YtiPtOiwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-19 20:16:55 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Oct 19 16:16:51.753887 2025] [security2:error] [pid 30962:tid 30962] [client 194.99.27.105:58903] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|interiorsolutions-stuart.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "interiorsolutions-stuart.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPVHMxPnALUD5nG5PCo9OgAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-18 12:34:15 (8 months ago)	(mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 194.99.27.105 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 18 08:34:10.730478 2025] [security2:error] [pid 20631:tid 20631] [client 194.99.27.105:62293] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|alsetsystems.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "alsetsystems.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aPOJQsXbQ4DQoARps1TIGAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇻 garmtech.com	2025-09-27 22:36:55 (8 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 01-36.194.99.27.105.web-spamme ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 01-36.194.99.27.105.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇴 185.12.59.118

🇺🇸 173.171.145.210

🇧🇴 138.36.78.144

🇩🇪 94.249.187.81

🇧🇷 56.125.232.67

🇧🇷 45.169.178.49

🇺🇸 193.37.33.235

🇮🇳 152.52.227.94

🇭🇰 103.158.29.100

🇳🇱 91.92.40.46

🇳🇴 87.120.104.75

🇸🇬 62.146.234.170

🇳🇱 45.198.224.115

🇸🇬 43.173.176.182

🇵🇰 39.39.26.204

🇬🇧 35.203.211.78

🇺🇸 34.173.111.5

🇭🇰 20.187.65.213

🇩🇪 54.93.248.36

🇬🇧 45.82.76.102