JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.57.97.130

31.57.97.130 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 99%: ?

99%

ISP	Kayan Foundation for Information Technology
Usage Type	Data Center/Web Hosting/Transit
ASN	AS213200
Domain Name	abuseradar.com
Country	🇩🇪 Germany
City	Aachen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.57.97.130

Whois 31.57.97.130

IP Abuse Reports for 31.57.97.130:

This IP address has been reported a total of 25 times from 21 distinct sources. 31.57.97.130 was first reported on June 8th 2026, and the most recent report was 13 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 dyln	2026-06-09 02:44:39 (13 hours ago)	Dyls honeypot brute-force: RDP (33 total hits)	Brute-Force
🇺🇸 Neosmith20	2026-06-09 02:42:15 (13 hours ago)	Knock-Knock honeypot brute-force: RDP (10 total hits)	Brute-Force
🇯🇵 knock	2026-06-09 02:35:32 (13 hours ago)	Knock-Knock honeypot brute-force: RDP (12 total hits)	Brute-Force
🇳🇱 knock	2026-06-09 02:10:53 (13 hours ago)	Knock-Knock honeypot brute-force: RDP (9 total hits)	Brute-Force
🇺🇸 sargetun	2026-06-09 01:36:15 (14 hours ago)	Honeypot: RDP probe on port 3389 at 2026-06-09 01:34:50.116041. Automated report from VPS honeypot.	Port Scan
🇨🇭 trading1617.internet-box.ch	2026-06-09 00:45:13 (15 hours ago)		Brute-Force
🇺🇸 wristhulk	2026-06-09 00:25:29 (15 hours ago)	Honeypot: RDP brute-force on OpenCanary honeypot (port 3389). Username: '173'.	Brute-Force
🇨🇭 TOCE	2026-06-08 23:58:55 (16 hours ago)	30 hits seen on 2026-06-08, ports 3389 (RDP) on a honeypot from www.toce.ch	Brute-Force
🇫🇷 eduardomelendezjr	2026-06-08 22:17:04 (17 hours ago)	Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator ... show more Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator - 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM workstation - - 0 0x0 - 31.57.97.130 0 show less	SSH Brute-Force
Anonymous	2026-06-08 22:00:13 (18 hours ago)	RDP brute force attack.	Port Scan Brute-Force
🇩🇪 Freenex1911	2026-06-08 21:55:01 (18 hours ago)	2026-06-08T21:55:00Z - RDP login from 31.57.97.130 failed multiple times.	Brute-Force
🇫🇮 ValtonTahiri	2026-06-08 21:28:58 (18 hours ago)	Windows IPBan blocked brute-force / failed login activity. Source=RDP; Username=6; Count=; LogonType ... show more Windows IPBan blocked brute-force / failed login activity. Source=RDP; Username=6; Count=; LogonType=3; SourcePort=0; Status=0xc000006d; SubStatus=0xc000006a; Auth=NTLM show less	Port Scan Brute-Force
🇦🇹 CTK	2026-06-08 20:58:54 (19 hours ago)	Customer Site (Grieskirchen FP)	Brute-Force
🇫🇷 Kimax	2026-06-08 20:27:26 (19 hours ago)	RdpGuard detected brute-force attempt on RDP	Brute-Force
🇺🇸 ipblock.com	2026-06-08 19:55:00 (20 hours ago)	IPBlock protected site ID [1351-fb]. Brute force RDP login attempts	Hacking Brute-Force

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.27

🇩🇪 159.69.57.20

🇭🇰 45.142.154.98

🇺🇸 216.25.89.122

🇫🇷 207.180.221.143

🇲🇽 187.218.57.50

🇺🇸 162.216.150.124

🇺🇸 137.184.28.124

🇭🇰 103.243.26.174

🇧🇩 103.65.240.34

🇺🇸 71.196.8.95

🇩🇪 69.5.169.190

🇳🇱 45.148.146.52

🇳🇱 45.148.10.157

🇺🇸 45.80.106.15

🇹🇷 31.40.204.166

🇲🇾 2a02:4780:5e:4513::1

🇩🇪 191.101.51.161

🇨🇳 111.47.243.219

🇳🇬 102.91.103.133