JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.19.34.16

89.19.34.16 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 0%: ?

ISP	NEW-YORK-CUSTOMERS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.19.34.16

Whois 89.19.34.16

IP Abuse Reports for 89.19.34.16:

This IP address has been reported a total of 19 times from 12 distinct sources. 89.19.34.16 was first reported on September 1st 2021, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇱🇻 garmtech.com	2025-12-29 22:21:26 (5 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇫🇷 masterguru	2025-12-23 11:23:43 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 89.19.34.16 (US/United States/-): 1 in the las ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 89.19.34.16 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇱🇻 garmtech.com	2025-12-06 17:49:03 (6 months ago)	IM360 WAF: Attempt to upload malware	Hacking
🇺🇸 fbarela	2025-11-22 23:00:31 (6 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇩🇪 Packets-Decreaser.NET	2025-09-23 06:04:33 (8 months ago)	Incoming Layer 7 Flood Detected	DDoS Attack Web Spam
🇦🇺 oncord	2025-08-24 23:16:04 (9 months ago)	Form spam	Web Spam
🇦🇺 oncord	2025-08-13 22:02:33 (9 months ago)	Form spam	Web Spam
🇨🇭 backslash	2025-07-04 04:01:58 (11 months ago)		Bad Web Bot
🇺🇸 TPI-Abuse	2025-05-06 05:03:31 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 89.19.34.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 89.19.34.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 06 01:03:27.592077 2025] [security2:error] [pid 606445:tid 606445] [client 89.19.34.16:28265] [client 89.19.34.16] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Steelcase/pics/Criterion/Thumbs.db"] [unique_id "aBmYH098aa5eDU90VVdVeQAAAAU"], referer: https://vitalitywebb.com/backstore/Steelcase/pics/Criterion/ show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 CrystalMaker	2024-11-21 09:53:04 (1 year ago)	Vulnerability scan - GET /tag/galerija-maroko/?page_number_24=2&page_number_8=2; GET /tag/galerija-m ... show more Vulnerability scan - GET /tag/galerija-maroko/?page_number_24=2&page_number_8=2; GET /tag/galerija-maroko/?page_number_33=4&page_number_8=2 show less	Hacking
🇺🇸 TPI-Abuse	2024-11-05 00:29:30 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 89.19.34.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 89.19.34.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 04 19:29:26.422733 2024] [security2:error] [pid 3676341:tid 3676341] [client 89.19.34.16:49941] [client 89.19.34.16] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Bristol II/Stetson Bordeaux/originals/Thumbs.db"] [unique_id "Zylm5loV188udtyhWxhaXAAAABg"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Bristol%20II/Stetson%20Bordeaux/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Vegascosmetics	2024-06-28 05:00:50 (1 year ago)	Potential Dangerous Requests Sucker	Bad Web Bot
🇺🇸 Bryan Lemas	2024-06-14 19:15:31 (1 year ago)	"Attempts to brute force our VPN"	Brute-Force
Anonymous	2024-05-26 02:01:40 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH
🇺🇸 TPI-Abuse	2024-05-22 19:45:50 (2 years ago)	(mod_security) mod_security (id:210730) triggered by 89.19.34.16 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 89.19.34.16 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 22 15:45:43.662006 2024] [security2:error] [pid 1110] [client 89.19.34.16:56905] [client 89.19.34.16] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|procigar.org\|F\|2"] [data ".godominicanrepublic.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "procigar.org"] [uri "/event/procigar-festival-2022/www.godominicanrepublic.com"] [unique_id "Zk5LZ-R2s991plgkF3o-7gAAAAs"], referer: https://procigar.org/procigar-festival/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇸 193.24.235.69

🇷🇺 188.168.86.6

🇳🇬 165.154.10.187

🇩🇪 162.19.230.21

🇧🇷 138.99.80.102

🇸🇬 129.226.95.93

🇺🇸 107.180.88.176

🇮🇳 103.18.166.48

🇷🇴 80.94.92.165

🇫🇮 65.21.124.77

🇳🇱 45.148.10.157

🇲🇽 189.143.192.61

🇸🇪 171.25.158.24

🇨🇳 120.48.14.39

🇷🇺 104.28.156.68

🇳🇱 45.148.10.183

🇸🇦 34.166.5.230

🇺🇸 2600:1900:4120:e3fb:0:7d::

🇮🇷 195.230.124.141

🇺🇸 193.233.87.239