JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.42.132.96

31.42.132.96 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 31%: ?

31%

ISP	EANCENTER TELECOM LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS206943
Domain Name	eancenter.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.42.132.96

Whois 31.42.132.96

IP Abuse Reports for 31.42.132.96:

This IP address has been reported a total of 18 times from 4 distinct sources. 31.42.132.96 was first reported on June 23rd 2026, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-27 17:50:12 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 13:50:08.997517 2026] [security2:error] [pid 30348:tid 30348] [client 31.42.132.96:20362] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greenroomonline.org"] [uri "/sftp-config.json"] [unique_id "akANUL82A-8dtN2V0g8fRwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 13:35:32 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 09:35:29.230224 2026] [security2:error] [pid 1678:tid 1678] [client 31.42.132.96:61984] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "greencornokies.org"] [uri "/sftp-config.json"] [unique_id "aj_RoYzmpuAxB3bb5BxGXAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-27 04:54:29 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 00:54:21.434935 2026] [security2:error] [pid 4538:tid 4538] [client 31.42.132.96:41482] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gransla.com"] [uri "/sftp-config.json"] [unique_id "aj9XfelIQLgh59qlWlTYfwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-27 02:42:08 (1 day ago)	Try to access /.vscode/sftp.json	Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 22:45:23 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 18:45:19.198504 2026] [security2:error] [pid 26060:tid 26060] [client 31.42.132.96:34920] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grabagame.com"] [uri "/sftp-config.json"] [unique_id "aj8A_-_CCF4FlsxlTl35dwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-26 09:17:07 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 05:17:01.577242 2026] [security2:error] [pid 11231:tid 11231] [client 31.42.132.96:48956] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goochcompanies.com"] [uri "/sftp-config.json"] [unique_id "aj5Djd8HoDI8fbKRSJMIBQAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 22:24:25 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 18:24:22.000800 2026] [security2:error] [pid 23312:tid 23312] [client 31.42.132.96:37246] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "gods-law.com"] [uri "/sftp-config.json"] [unique_id "aj2qll6LbveyHqOKYj0mMwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 12:00:57 (3 days ago)	(mod_security) mod_security (id:949110) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:949110) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 08:00:54.200713 2026] [security2:error] [pid 18139:tid 18139] [client 31.42.132.96:13148] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "trentong.com"] [uri "/sftp-config.json"] [unique_id "aj0YdooiLv06UV9mVWSs0wAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 10:02:41 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 06:02:36.442287 2026] [security2:error] [pid 28979:tid 28979] [client 31.42.132.96:26056] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tremulant.com"] [uri "/sftp-config.json"] [unique_id "ajz8vLMxXsbhSUOFeZa4twAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 05:03:06 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 01:03:00.848517 2026] [security2:error] [pid 19378:tid 19378] [client 31.42.132.96:60860] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "travelingguitarfoundation.org"] [uri "/sftp-config.json"] [unique_id "ajy2hEjHxHs3Tjgrlpj8ewAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-25 03:01:16 (3 days ago)	[ThuJun2505:01:11.0492282026][security2:error][pid354751:tid354856][client31.42.132.96:0]ModSecurity ... show more [ThuJun2505:01:11.0492282026][security2:error][pid354751:tid354856][client31.42.132.96:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\\\\\\\\.vscode/\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"1189\"][id\"350593\"][rev\"1\"][msg\"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessstoredvscodepasswords\"][severity\"CRITICAL\"][hostname\"traslochiamo.ch\"][uri\"/.vscode/sftp.json\"][unique_id\"ajyZ9-mrSMnkuo7EraMvjAAAAQQ\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 02:39:35 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 22:39:32.039488 2026] [security2:error] [pid 647:tid 647] [client 31.42.132.96:27034] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trapper.biz"] [uri "/sftp-config.json"] [unique_id "ajyU5JK-wTFkHFC70XW0dgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 23:33:42 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 19:33:35.991574 2026] [security2:error] [pid 25596:tid 25596] [client 31.42.132.96:25264] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "transcapitalsolutions.com"] [uri "/sftp-config.json"] [unique_id "ajxpTyyPu_YonCBA-RraDwAAACw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 15:08:19 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 11:08:14.518000 2026] [security2:error] [pid 13108:tid 13108] [client 31.42.132.96:27528] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tpdtuberental.com"] [uri "/sftp-config.json"] [unique_id "ajvy3rS4CRPORlHfEEz8RAAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-24 02:39:39 (4 days ago)	(mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 31.42.132.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:39:35.642566 2026] [security2:error] [pid 17962:tid 17962] [client 31.42.132.96:32598] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "topgunsecurityservice.com"] [uri "/sftp-config.json"] [unique_id "ajtDZylsVtVL9r4274ZrIQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 141.11.100.205

🇨🇳 101.96.195.102

🇺🇸 193.36.222.9

🇬🇧 152.32.198.215

🇯🇵 118.194.228.101

🇨🇳 111.113.89.8

🇮🇩 103.164.57.37

🇫🇷 51.158.37.5

🇨🇳 1.83.125.132

🇩🇪 2a05:d014:fb0:c800:339e:8fcb:59e2:4bb7

🇨🇳 211.97.69.110

🇺🇸 165.154.206.204

🇹🇷 94.154.43.158

🇫🇷 79.135.105.20

🇹🇷 78.168.50.188

🇺🇸 47.252.31.213

🇯🇵 43.133.194.186

🇭🇰 199.45.154.155

🇬🇧 185.216.145.184

🇮🇳 125.19.229.10