JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.59.129.102

31.59.129.102 was found in our database!

This IP was reported 142 times. Confidence of Abuse is 100%: ?

100%

ISP	Chunkserve Mateusz Peplinski
Usage Type	Data Center/Web Hosting/Transit
ASN	AS214481
Domain Name	abuseradar.com
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.59.129.102

Whois 31.59.129.102

IP Abuse Reports for 31.59.129.102:

This IP address has been reported a total of 142 times from 79 distinct sources. 31.59.129.102 was first reported on May 18th 2026, and the most recent report was 13 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 infra-monitor	2026-05-24 03:00:03 (1 week ago)	Automated ban via infra-monitor: suspicious-probe	Port Scan
🇫🇷 masterguru	2026-05-24 02:13:44 (1 week ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-193)	Hacking Web App Attack
🇩🇪 FeG Deutschland	2026-05-24 02:04:43 (1 week ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
Anonymous	2026-05-23 19:49:49 (1 week ago)	(caddyscan) Scanner path probe from 31.59.129.102 (NL/The Netherlands/-): 5 in the last 3600 secs; P ... show more (caddyscan) Scanner path probe from 31.59.129.102 (NL/The Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 31.59.129.102 - - [23/May/2026:19:12:36 +0000] "GET /.git/HEAD HTTP/1.1" [REDACTED] 200 2627 31.59.129.102 - - [23/May/2026:19:12:39 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 31.59.129.102 - - [23/May/2026:19:33:18 +0000] "GET /.git/HEAD HTTP/1.1" [REDACTED] 200 2627 31.59.129.102 - - [23/May/2026:19:33:19 +0000] "GET /.git/config HTTP/1.1" [REDACTED] 200 2627 31.59.129.102 - - [23/May/2026:19:49:47 +0000] "GET /.git/config HTTP/1.1" show less	Port Scan
🇦🇺 paulshipley.com.au	2026-05-23 13:38:57 (1 week ago)	[Sat May 23 23:38:57.235342 2026] [security2:error] [pid 865943] [client 31.59.129.102:46282] [clien ... show more [Sat May 23 23:38:57.235342 2026] [security2:error] [pid 865943] [client 31.59.129.102:46282] [client 31.59.129.102] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "valueaddedpromotions.com.au"] [uri "/.git/HEAD"] [unique_id "ahGt8R75Y0QSMBCHwXtQEgAAAAs"] ... show less	Web App Attack
🇨🇭 4server	2026-05-23 13:32:29 (1 week ago)	[SatMay2315:32:22.5252872026][security2:error][pid2426978:tid2426993][client31.59.129.102:0]ModSecur ... show more [SatMay2315:32:22.5252872026][security2:error][pid2426978:tid2426993][client31.59.129.102:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"turismo-marocco-ticino.ch.flyingberber.com\"][uri\"/.git/HEAD\"][unique_id\"ahGsZgjlsamcxwR_JKFKzAAAAE0\"] show less	Hacking Web App Attack
🇫🇷 Rom74	2026-05-23 12:40:17 (1 week ago)	[Sat May 23 14:40:14.195768 2026] [security2:error] [pid 20661:tid 134728124446400] [client 31.59.12 ... show more [Sat May 23 14:40:14.195768 2026] [security2:error] [pid 20661:tid 134728124446400] [client 31.59.129.102:45846] [client 31.59.129.102] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ton-espace.com"] [uri "/.git/HEAD"] [unique_id "ahGgLh-j5I6YzniOrs4PWwAAAFc"] [Sat May 23 14:40:17.592955 2026] [security2:error] [pid 20897:tid 134728954930880] [client 31.59.129.102:36632] [client 31.59.129.102] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Tota ... show less	Web App Attack
🇲🇾 Rizzy	2026-05-23 06:19:15 (1 week ago)	Multiple WAF Violations	Brute-Force Web App Attack
Anonymous	2026-05-23 04:16:45 (1 week ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇳🇱 tmiland	2026-05-22 14:00:50 (1 week ago)	(nginx_404) Dot directory Honeypot Trap 31.59.129.102 (-): 2 in the last 3600 secs; IP: 31.59.129.10 ... show more (nginx_404) Dot directory Honeypot Trap 31.59.129.102 (-): 2 in the last 3600 secs; IP: 31.59.129.102; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 31.59.129.102 - - [22/May/2026:16:00:47 +0200] "GET /.git/HEAD HTTP/1.1" 404 2992 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15" 31.59.129.102 - - [22/May/2026:16:00:49 +0200] "GET /.env HTTP/1.1" 404 2992 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" show less	Brute-Force
🇫🇷 masterguru	2026-05-22 11:57:42 (1 week ago)	Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-195)	Hacking Web App Attack
Anonymous	2026-05-22 10:59:11 (1 week ago)	Bot / seems abusive / Apache connections: 24	DDoS Attack Web Spam Bad Web Bot Web App Attack
Anonymous	2026-05-22 10:32:50 (1 week ago)	(PERMBLOCK) 31.59.129.102 (NL/The Netherlands/-) has had more than 4 temp blocks in the last 86400 s ... show more (PERMBLOCK) 31.59.129.102 (NL/The Netherlands/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇹🇷 baku.hosting	2026-05-22 10:25:39 (1 week ago)	CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 31.59.129.102 (NL/The Netherla ... show more CSF Auto Report: (mod_security) mod_security (id:949110) triggered by 31.59.129.102 (NL/The Netherlands/-): 5 in the last 3600 secs show less	Brute-Force Web App Attack
Anonymous	2026-05-22 05:53:19 (1 week ago)	Date: 2026/05/22 14 53 18 URI: http://adelabelly.com/.env	Web App Attack

Showing 76 to 90 of 142 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 202.47.57.221

🇫🇷 194.163.164.84

🇨🇴 190.131.217.127

🇨🇿 185.91.116.105

🇺🇸 172.253.216.23

🇵🇰 154.57.221.24

🇨🇳 123.160.174.211

🇺🇸 107.167.34.125

🇧🇪 35.195.28.95

🇲🇾 202.165.29.123

🇨🇳 180.153.236.146

🇮🇶 178.210.230.117

🇳🇱 178.16.55.50

🇸🇬 103.13.207.26

🇸🇬 47.128.112.42

🇺🇸 24.89.10.69

🇨🇳 14.103.21.179

🇬🇧 194.61.3.162

🇨🇳 180.153.236.238

🇭🇰 165.154.245.138