JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 200.9.27.226

200.9.27.226 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 22%: ?

22%

ISP	ServTEC Telecom
Usage Type	Fixed Line ISP
ASN	AS266215
Hostname(s)	host-200-9-27-226.servtec.net.br
Domain Name	servtec.net.br
Country	🇧🇷 Brazil
City	Campina Grande, Paraiba

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 200.9.27.226

Whois 200.9.27.226

IP Abuse Reports for 200.9.27.226:

This IP address has been reported a total of 29 times from 22 distinct sources. 200.9.27.226 was first reported on June 24th 2021, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-16 19:06:06 (1 week ago)	[Wed Jun 17 02:06:05.454687 2026] [security2:error] [pid 1099518:tid 139771266410176] [client 200.9. ... show more [Wed Jun 17 02:06:05.454687 2026] [security2:error] [pid 1099518:tid 139771266410176] [client 200.9.27.226:40804] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.baidu.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.baidu.go.id found within REQUEST_HEADERS:Referer: http://www.baidu.go.id/ request_line = GET /index.php/profil/meteorologi/list-all-categories/551-klimatologi/prakiraan-klimatologi/peringatan-dini/555562843-press-release-kewaspadaan-cuaca-ekstrim-di-jawa-timur-11-20-maret-2026 HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/551-klimatologi/prakiraan-klimatologi/peringatan-dini/555562843-press-release-kewaspadaan-cuaca-ekstrim-di-jawa-timur-11-20-maret-2026"] [unique_id "ajGenRxybskmgXYny2BDYgAAUAw"], referer http://www.baidu.go.i ... show less	Email Spam Hacking
🇦🇺 MAGIC	2026-06-08 02:24:31 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 pltcldvlpr	2026-06-04 13:39:28 (3 weeks ago)	Bogus Useragent: 200.9.27.226 - - [04/Jun/2026:15:39:28 +0200] "GET /protocol?id=hb_15_77&offset=150 ... show more Bogus Useragent: 200.9.27.226 - - [04/Jun/2026:15:39:28 +0200] "GET /protocol?id=hb_15_77&offset=150&seq=162 HTTP/1.1" 444 0 "-" "Opera/9.75.(Windows 95; wal-ET) Presto/2.9.166 Version/10.00" asn=266215 org="ServTEC Telecom" country=BR ... show less	Bad Web Bot
🇺🇸 RAP	2026-05-23 23:47:40 (1 month ago)	2026-05-23 23:47:40 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 RAP	2026-04-27 05:08:21 (2 months ago)	2026-04-27 05:08:21 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇵🇱 sefinek.net	2026-04-27 03:36:20 (2 months ago)	Honeypot hit: Unauthorized connection attempt detected on 23/TELNET Reported by: https://github.com/ ... show more Honeypot hit: Unauthorized connection attempt detected on 23/TELNET Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Port Scan
🇵🇱 sefinek.net	2026-04-27 03:10:18 (2 months ago)	Blocked by UFW on PL02 [23/tcp] \| SPT: 19043 \| TTL: 47 \| LEN: 44 \| TOS: 0x00 • Reported by: github.c ... show more Blocked by UFW on PL02 [23/tcp] \| SPT: 19043 \| TTL: 47 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted Brute-Force
🇺🇸 MPL	2026-04-27 00:50:56 (2 months ago)	tcp/23 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-04-27 00:50:56 (2 months ago)	tcp/23 (4 or more attempts)	Port Scan
🇫🇷 security.rdmc.fr	2026-04-27 00:13:21 (2 months ago)	Port Scan Attack proto:TCP src:19413 dst:23	Port Scan
🇺🇸 gui-ying233	2026-02-05 01:10:14 (4 months ago)	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Sa ... show more Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 ipblock.com	2026-01-31 22:35:00 (4 months ago)	IPBlock protected site ID [3192-af][s=02]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
Anonymous	2026-01-09 15:51:29 (5 months ago)	Hit honeypot r.	Port Scan Hacking Exploited Host
Anonymous	2026-01-09 02:57:03 (5 months ago)	Unauthorized connection attempt on Port 2323	Port Scan Hacking Exploited Host
🇨🇭 backslash	2026-01-06 17:25:12 (5 months ago)	block ruleset A5EE6C8F745F0934168261886A3817E5C386412A	Bad Web Bot

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 188.240.59.51

🇺🇸 162.216.150.112

🇳🇱 89.21.67.166

🇫🇮 83.172.150.143

🇳🇱 45.142.193.164

🇰🇿 45.8.119.168

🇲🇽 38.172.204.253

🇩🇪 213.209.159.236

🇧🇷 205.210.31.183

🇺🇸 162.216.150.212

🇧🇷 138.97.243.232

🇮🇳 122.166.253.226

🇨🇳 119.249.100.47

🇧🇫 102.179.116.25

🇰🇪 102.135.169.198

🇳🇱 91.92.40.48

🇧🇬 78.128.114.166

🇮🇪 20.238.10.131

🇺🇸 20.15.163.169

🇬🇧 2a06:4880:8000::9d