JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.19.34.231

89.19.34.231 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 1%: ?

ISP	NEW-YORK-CUSTOMERS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.19.34.231

Whois 89.19.34.231

IP Abuse Reports for 89.19.34.231:

This IP address has been reported a total of 11 times from 7 distinct sources. 89.19.34.231 was first reported on March 18th 2024, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Burayot	2026-05-13 22:00:28 (3 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 89.19.34.231 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 89.19.34.231 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
Anonymous	2026-01-17 19:29:26 (4 months ago)	Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.17 is noted in report tim ... show more Attempted brute force login to web vpn 1 time(s); last attempt for 2026.01.17 is noted in report timestamp show less	Hacking Brute-Force
🇺🇸 fbarela	2025-11-14 23:00:45 (6 months ago)	FortiGate SSL VPN login failures.	Hacking Brute-Force
🇨🇭 backslash	2025-07-04 04:02:00 (11 months ago)		Bad Web Bot
🇺🇸 TPI-Abuse	2025-06-21 02:37:17 (11 months ago)	(mod_security) mod_security (id:210730) triggered by 89.19.34.231 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 89.19.34.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 20 22:37:09.785181 2025] [security2:error] [pid 3116419:tid 3116419] [client 89.19.34.231:11985] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Horizon II/Horizon II/Stargo Black/originals/Thumbs.db"] [unique_id "aFYa1UFJGMsOX0GKFrLifgAAACY"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Horizon%20II/Horizon%20II/Stargo%20Black/originals/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-01-04 22:41:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 89.19.34.231 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 89.19.34.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 04 17:41:07.014874 2025] [security2:error] [pid 1960767:tid 1960767] [client 89.19.34.231:18941] [client 89.19.34.231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theavgroup.com"] [uri "/1/wp-config.php.txt"] [unique_id "Z3m5A9lPcumbP4evoge0oAAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-08-07 14:26:42 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 89.19.34.231 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 89.19.34.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Aug 07 10:26:36.834868 2024] [security2:error] [pid 12095:tid 12095] [client 89.19.34.231:26451] [client 89.19.34.231] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Steelcase/pics/Bindu/Thumbs.db"] [unique_id "ZrOEHHuPPxifcfeVT1pvUQAAAAY"], referer: https://vitalitywebb.com/backstore/Steelcase/pics/Bindu/ show less	Brute-Force Bad Web Bot Web App Attack
🇷🇸 Smel	2024-07-08 07:52:11 (1 year ago)	HTTP/80/443/8080 Unauthorized Probe, Hack -	Hacking Web App Attack
🇨🇭 backslash	2024-05-15 16:15:16 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇨🇭 backslash	2024-04-10 17:25:09 (2 years ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2024-03-18 08:46:52 (2 years ago)	Unauthorized VPN login attempts	Hacking Brute-Force

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 78.73.55.156

🇺🇸 192.210.228.134

🇲🇽 189.252.53.189

🇨🇱 179.60.65.215

🇭🇰 152.32.171.73

🇸🇬 103.187.147.214

🇮🇳 103.123.227.10

🇪🇸 46.6.124.216

🇧🇪 34.38.42.4

🇧🇪 207.175.4.117

🇵🇱 195.116.145.127

🇮🇩 185.124.137.216

🇮🇶 93.91.197.38

🇬🇧 89.37.172.148

🇷🇴 80.94.92.184

🇯🇲 72.27.140.67

🇮🇳 59.180.132.80

🇲🇾 47.250.51.32

🇸🇬 47.237.222.63

🇳🇱 45.148.10.121