JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.134.0.89

31.134.0.89 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 24%: ?

24%

ISP	Trade Commodity Firm Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS43444
Domain Name	traffictransitsolution.us
Country	🇫🇮 Finland
City	Helsinki, Uusimaa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.134.0.89

Whois 31.134.0.89

IP Abuse Reports for 31.134.0.89:

This IP address has been reported a total of 11 times from 7 distinct sources. 31.134.0.89 was first reported on December 10th 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 backslash	2026-06-04 14:30:01 (3 days ago)		Bad Web Bot
🇨🇿 ptlab	2026-05-15 00:45:12 (3 weeks ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-13 18:39:05 (3 weeks ago)	(mod_security) mod_security (id:218580) triggered by 31.134.0.89 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:218580) triggered by 31.134.0.89 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 14:39:01.989687 2026] [security2:error] [pid 14627:tid 14627] [client 31.134.0.89:54547] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:\\\\/\\\\[!+](?:[\\\\w\\\\s=_\\\\-()]+)?\\\\*\\\\/)" at ARGS:d. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/22_SQL_SQLi.conf"] [line "76"] [id "218580"] [rev "1"] [msg "COMODO WAF: MySQL in-line comment detected.\|\|www.caferutadelaseda.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "SQLi"] [hostname "www.caferutadelaseda.com"] [uri "/detalle.php"] [unique_id "agTFRfOlviGSH5yEzpR4MgAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-05-03 02:33:01 (1 month ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -60.71 (Bad < -10 / Very Bad < -20 / ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -60.71 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.3274.1 show less	Web App Attack Bad Web Bot
🇧🇷 Peregrine	2026-04-17 03:10:41 (1 month ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-04-16 03:10:26 (1 month ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-04-15 03:10:20 (1 month ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇧🇷 Peregrine	2026-04-13 15:21:05 (1 month ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300 ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 31.134.0.89 172.68.183.67 - - [13/Apr/2026:12:20:52 -0300] "GET /wp-login.php HTTP/1.1" 404 414 show less	Bad Web Bot
🇲🇹 Malta	2026-02-20 00:46:21 (3 months ago)	31.134.0.89 - - [20/Feb/2026:01:46:21 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 31.134.0.89 - - [20/Feb/2026:01:46:21 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇲🇹 Malta	2026-01-24 22:37:40 (4 months ago)	31.134.0.89 - - [24/Jan/2026:23:37:40 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT ... show more 31.134.0.89 - - [24/Jan/2026:23:37:40 +0100] "POST /wp-login.php HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36" show less	Hacking Web App Attack
🇩🇪 Packets-Decreaser.NET	2025-12-10 14:34:40 (5 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 148.153.56.170

🇩🇪 213.209.159.241

🇨🇦 209.235.136.136

🇮🇳 202.62.88.25

🇺🇸 192.178.66.94

🇬🇧 185.93.89.130

🇷🇴 80.94.92.164

🇺🇸 74.208.153.204

🇺🇸 2607:f8b0:4001:c00::126

🇺🇸 2604:a880:400:d1:0:4:8bf2:5001

🇨🇳 218.6.171.205

🇱🇹 216.132.188.21

🇮🇩 182.253.59.74

🇺🇸 178.128.155.84

🇺🇸 147.185.132.168

🇨🇳 113.237.244.132

🇺🇸 69.12.64.44

🇮🇳 60.254.94.50

🇧🇴 190.181.44.194

🇷🇴 103.157.75.155