JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.134.13.112

31.134.13.112 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 12%: ?

12%

ISP	Trade Commodity Firm Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS43444
Domain Name	traffictransitsolution.us
Country	🇸🇪 Sweden
City	Stockholm, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.134.13.112

Whois 31.134.13.112

IP Abuse Reports for 31.134.13.112:

This IP address has been reported a total of 14 times from 11 distinct sources. 31.134.13.112 was first reported on June 17th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-14 21:29:08 (4 days ago)	(mod_security) mod_security (id:225170) triggered by 31.134.13.112 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 31.134.13.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 17:29:02.059885 2026] [security2:error] [pid 28414:tid 28414] [client 31.134.13.112:12409] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|pembrokefinance.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "pembrokefinance.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ai8dHrztY-NKymnFdQhpRgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 LRob.fr	2026-05-16 17:45:10 (1 month ago)	Repeated 403 errors, blocked by Fail2ban in custom-403 jail	Bad Web Bot
🇫🇷 tilellit.pro	2026-02-13 16:51:20 (4 months ago)	Fail2Ban banned 31.134.13.112 for security violations in jail wp-armour. Log: 2026/02/13 16:51:20 [e ... show more Fail2Ban banned 31.134.13.112 for security violations in jail wp-armour. Log: 2026/02/13 16:51:20 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 31.134.13.112 \| Target: wplogin" , client: 31.134.13.112, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇫🇷 tilellit.pro	2026-02-05 01:02:23 (4 months ago)	Fail2Ban banned 31.134.13.112 for security violations in jail wp-armour. Log: 2026/02/05 01:02:23 [e ... show more Fail2Ban banned 31.134.13.112 for security violations in jail wp-armour. Log: 2026/02/05 01:02:23 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 31.134.13.112 \| Target: wplogin" , client: 31.134.13.112, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED], referrer: "https://comerciogallego.es/wp-login.php" ... show less	Web Spam
🇱🇻 garmtech.com	2026-01-01 20:57:48 (5 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇫🇷 masterguru	2025-12-23 11:13:52 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 31.134.13.112 (FI/Finland/-): 1 in the last 36 ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 31.134.13.112 (FI/Finland/-): 1 in the last 3600 secs (0-197) show less	Hacking
🇳🇱 i-turnradio.nl	2025-11-08 08:55:25 (7 months ago)	2025-11-08 @ 09:55:25 (CET) ~ Blocked based on risk assessment and prior abuse reports	Web App Attack
🇦🇺 MAGIC	2025-11-07 05:14:57 (7 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-04 05:22:14 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 31.134.13.112 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 31.134.13.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 04 00:22:11.321730 2025] [security2:error] [pid 13962:tid 13962] [client 31.134.13.112:23285] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|n4fh.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "n4fh.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aQmNgzKyKmOpkCde0W2N9AAAABQ"], referer: https://n4fh.com/wp-json/wp/v2/users/ show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 relianoid.com	2025-11-04 00:32:23 (7 months ago)	POST Abuse detected by Relianoid OSS Load Balancer - relianoid.com	Web Spam
🇩🇪 hbrks	2025-11-03 00:28:26 (7 months ago)	1 attack(s) detected, such as these: {"event":"nginx_block","ip":"31.134.13.112","host":"marche-be.c ... show more 1 attack(s) detected, such as these: {"event":"nginx_block","ip":"31.134.13.112","host":"marche-be.com","request":"GET /wp-login.php HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36","reason":"service:unknow","timestamp":"2025-11-03T00:28:26 00:00","logentry":"marche-be.com 31.134.13.112 - - [03/Nov/2025:00:28:26 0000] GET /wp-login.php HTTP/1.1 444 0 http://marche-be.com/wp-login.php Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.198 Safari/537.36 - matched:service:unknow"} * Report Details : https://p4u.xyz/92U8LTN5COK/1 IP Details *: https://p4u.xyz/92U8LTN5COK/2 show less	Web Spam Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-02 07:31:18 (7 months ago)	(mod_security) mod_security (id:225170) triggered by 31.134.13.112 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:225170) triggered by 31.134.13.112 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 02 02:31:14.868882 2025] [security2:error] [pid 2974:tid 2974] [client 31.134.13.112:56449] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|mwrn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mwrn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aQcIwu46ccSQ_DoIVHbW1wAAAAQ"], referer: https://www.google.com show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-11-01 23:08:12 (7 months ago)	Web App Attack	Brute-Force Web App Attack
🇺🇸 inspectorgdgt	2025-06-17 19:07:40 (1 year ago)	Observed suspicious activity from IP address	Brute-Force SSH

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.146.80.114

🇺🇸 216.25.89.146

🇮🇳 210.212.136.3

🇦🇺 203.185.198.246

🇩🇪 194.88.98.105

🇬🇧 194.50.235.142

🇧🇷 179.109.45.82

🇸🇬 103.250.11.116

🇳🇱 89.21.67.153

🇱🇹 45.227.254.170

🇺🇸 45.156.129.81

🇬🇧 217.146.80.119

🇧🇷 205.210.31.201

🇳🇱 193.176.31.149

🇧🇷 191.240.97.191

🇷🇺 188.170.77.217

🇨🇳 182.204.158.35

🇸🇬 152.42.190.92

🇯🇵 152.32.145.156

🇺🇸 151.244.73.38