JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 88.216.68.106

88.216.68.106 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 53%: ?

53%

ISP	UAB Nacionalinis Telekomunikaciju Tinklas
Usage Type	Data Center/Web Hosting/Transit
ASN	AS204770
Hostname(s)	ip-88-216-68-106.009.ptr.cherryservers.net
Domain Name	ntt.lt
Country	🇺🇸 United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 88.216.68.106

Whois 88.216.68.106

IP Abuse Reports for 88.216.68.106:

This IP address has been reported a total of 15 times from 12 distinct sources. 88.216.68.106 was first reported on March 9th 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-06 12:04:05 (2 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Auto ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Automated scanning show less	Bad Web Bot Web App Attack
Anonymous	2026-06-05 21:33:00 (2 weeks ago)		DDoS Attack Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 17:34:37 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 88.216.68.106 (ip-88-216-68-106.009.ptr.cherrys ... show more (mod_security) mod_security (id:210730) triggered by 88.216.68.106 (ip-88-216-68-106.009.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 13:34:32.273084 2026] [security2:error] [pid 27074:tid 27074] [client 88.216.68.106:34302] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|homebuilt.org\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "homebuilt.org"] [uri "/directory/[email protected]"] [unique_id "aiMIqJvtswXo49DCoV2viwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 12:03:25 (2 weeks ago)	Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Auto ... show more Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Automated scanning show less	Bad Web Bot Web App Attack
🇧🇪 Ivo Vynckier	2026-06-05 08:11:00 (2 weeks ago)	Fast scraper.	Bad Web Bot
🇨🇭 backslash	2026-06-05 05:21:00 (2 weeks ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇫🇮 6kilowatti	2026-06-05 04:04:16 (2 weeks ago)	88.216.68.106 - - [05/Jun/2026:07:04:15 +0300] "GET /super-secret-ansa/ HTTP/1.1" 404 41 "-" "Mozill ... show more 88.216.68.106 - - [05/Jun/2026:07:04:15 +0300] "GET /super-secret-ansa/ HTTP/1.1" 404 41 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36" ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 03:17:31 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 88.216.68.106 (ip-88-216-68-106.009.ptr.cherrys ... show more (mod_security) mod_security (id:210730) triggered by 88.216.68.106 (ip-88-216-68-106.009.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 23:17:24.833574 2026] [security2:error] [pid 4341:tid 4341] [client 88.216.68.106:32210] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|billiardlifetapleague.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "billiardlifetapleague.com"] [uri "/[email protected]"] [unique_id "aiI_xObjTRGJFdxHDlHe1AAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Cloud86 B.V.	2026-06-05 01:52:02 (2 weeks ago)	categories: DDoS Attack	DDoS Attack
🇦🇺 MAGIC	2026-06-05 01:09:07 (2 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2026-06-04 13:43:12 (2 weeks ago)	Bot / seems abusive / Apache connections: 139	DDoS Attack Web Spam Bad Web Bot Web App Attack
Anonymous	2026-06-04 13:34:01 (2 weeks ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 12:23:09 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 88.216.68.106 (ip-88-216-68-106.009.ptr.cherrys ... show more (mod_security) mod_security (id:210730) triggered by 88.216.68.106 (ip-88-216-68-106.009.ptr.cherryservers.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 08:23:04.496759 2026] [security2:error] [pid 12852:tid 12852] [client 88.216.68.106:30076] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.portraitsinblues.com\|F\|2"] [data ".alligator.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.portraitsinblues.com"] [uri "/www.alligator.com"] [unique_id "aiFuKOmYPyesTweEORPbDwAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2026-06-04 11:55:03 (2 weeks ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇺🇸 xmission.com	2026-03-09 00:16:55 (3 months ago)	Blocked by UFW (TCP on 45432) Source port: 9050 TTL: 52 Packet length: 54 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 45432) Source port: 9050 TTL: 52 Packet length: 54 TOS: 0x00 This report (for 88.216.68.106) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 194.163.137.135

🇲🇴 182.93.50.90

🇦🇪 165.154.12.38

🇭🇰 123.58.213.128

🇮🇳 103.178.65.159

🇺🇸 71.6.135.131

🇺🇸 66.132.172.225

🇺🇸 64.62.156.147

🇺🇦 46.201.247.21

🇳🇱 45.156.128.158

🇺🇸 44.166.191.42

🇺🇸 205.210.31.76

🇺🇸 205.210.31.60

🇷🇴 193.32.162.82

🇺🇸 147.185.132.179

🇭🇰 119.246.15.94

🇷🇴 80.94.92.184

🇩🇪 44.150.136.0

🇬🇧 35.203.211.186

🇺🇸 34.127.160.78