JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.31.126.94

193.31.126.94 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS46475
Domain Name	finegroupservers.com
Country	🇫🇮 Finland
City	Vantaa, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.31.126.94

Whois 193.31.126.94

IP Abuse Reports for 193.31.126.94:

This IP address has been reported a total of 8 times from 4 distinct sources. 193.31.126.94 was first reported on June 24th 2022, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-14 16:32:16 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 12:32:11.474199 2026] [security2:error] [pid 2992487:tid 2992507] [client 193.31.126.94:37359] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|eadweb.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "eadweb.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ad5sCw6vS90qohmu-lfrUAAAANE"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-12 13:38:44 (2 months ago)	(mod_security) mod_security (id:225170) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 12 09:38:39.455715 2026] [security2:error] [pid 2452380:tid 2452380] [client 193.31.126.94:61269] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|haisten.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "haisten.net"] [uri "/wp-json/wp/v2/users"] [unique_id "adugX5vXxxdRa2ObLPvQKQAAAAM"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 Roderic	2026-02-25 13:05:08 (3 months ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted])	Port Scan
🇺🇸 TPI-Abuse	2026-01-03 19:18:28 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 03 14:18:21.182004 2026] [security2:error] [pid 1646:tid 1660] [client 193.31.126.94:50625] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|orthopedica.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "orthopedica.org"] [uri "/"] [unique_id "aVlrfW_AYyGmOZs3hUnt5QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-03 18:33:42 (5 months ago)	(mod_security) mod_security (id:210350) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 03 13:33:38.693721 2026] [security2:error] [pid 19503:tid 19503] [client 193.31.126.94:60813] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|joescherzi.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "joescherzi.com"] [uri "/"] [unique_id "aVlhAvVFp9LHHWDStRdlEQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 oncord	2025-09-04 05:45:24 (9 months ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2025-02-13 07:57:40 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 193.31.126.94 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 13 02:57:35.902086 2025] [security2:error] [pid 2290053:tid 2290053] [client 193.31.126.94:42159] [client 193.31.126.94] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bbc.my1611.com"] [uri "/.env"] [unique_id "Z62l78aP-QahRHOz1d6puAAAAAc"], referer: https://tasamm.com/about/bbb22.html show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 true.nl	2022-06-24 11:57:00 (4 years ago)	IP participated in a http flood ddos attack against 87.233.198.20	DDoS Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.114.40.60

🇧🇬 93.94.141.115

🇲🇽 187.191.48.4

🇫🇷 164.132.236.245

🇳🇱 160.119.71.135

🇭🇰 152.32.239.90

🇮🇳 117.236.124.166

🇮🇩 36.82.37.177

🇺🇸 31.59.40.94

🇫🇷 164.132.0.66

🇫🇷 170.39.216.222

🇪🇸 79.112.113.115

🇩🇪 45.135.141.13

🇹🇼 198.235.24.27

🇩🇪 148.153.166.204

🇺🇸 136.119.178.16

🇰🇷 121.132.27.238

🇹🇼 111.70.3.122

🇺🇸 104.168.4.239

🇧🇪 34.140.156.119