JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.19.34.239

89.19.34.239 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	NEW-YORK-CUSTOMERS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26548
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Seattle, Washington

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.19.34.239

Whois 89.19.34.239

IP Abuse Reports for 89.19.34.239:

This IP address has been reported a total of 15 times from 9 distinct sources. 89.19.34.239 was first reported on March 1st 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 HandyTreff.de	2026-03-24 22:43:22 (2 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -47.57 (Bad < -10 / Very Bad < -20 / ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -47.57 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.2621.7 show less	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 11:59:20 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 89.19.34.239 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 89.19.34.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 07:59:13.814849 2026] [security2:error] [pid 7966:tid 7966] [client 89.19.34.239:58541] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|vitalitywebb.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "vitalitywebb.com"] [uri "/backstore/Barcalounger/Images/Churchill II Recliner/Art Burl 2/Thumbs.db"] [unique_id "abVNkb5MM_Q-_uAdoqKipQAAAAQ"], referer: https://vitalitywebb.com/backstore/Barcalounger/Images/Churchill%20II%20Recliner/Art%20Burl%202/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-01-06 03:55:07 (4 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2025-12-29 16:50:41 (5 months ago)	Forum/form spam	Web Spam
🇫🇷 masterguru	2025-12-23 11:22:38 (5 months ago)	(modsec_5015) ModSec 5015: Suspicious User-Agent from 89.19.34.239 (US/United States/-): 1 in the la ... show more (modsec_5015) ModSec 5015: Suspicious User-Agent from 89.19.34.239 (US/United States/-): 1 in the last 3600 secs (0-193) show less	Hacking
🇵🇱 sefinek.net	2025-12-20 17:30:58 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-12-10 23:39:40 (5 months ago)	Forum/form spam	Web Spam
🇩🇪 HandyTreff.de	2025-12-06 22:13:15 (5 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -25.792 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -25.792 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.2772.6 show less	Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2025-12-05 09:44:36 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-04 05:17:25 (6 months ago)	(mod_security) mod_security (id:210350) triggered by 89.19.34.239 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 89.19.34.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 04 00:17:22.062263 2025] [security2:error] [pid 15167:tid 15167] [client 89.19.34.239:57181] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.cmgpartners.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.cmgpartners.com"] [uri "/"] [unique_id "aTEZYmKYqtvvFGrJeka34AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2025-12-01 01:40:10 (6 months ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
Anonymous	2024-10-04 01:20:12 (1 year ago)	Automatic report - Vulnerability scan /RDWeb/Pages/en-US/login.aspx	Web App Attack
🇨🇦 wil.com	2024-09-24 06:56:44 (1 year ago)	GlobalProtect login attempts with user wingram.	VPN IP Brute-Force
🇺🇸 TheMadBeaker	2021-03-02 02:55:13 (5 years ago)	Port Scan: TCP/443	Port Scan
🇺🇸 TheMadBeaker	2021-03-01 21:55:01 (5 years ago)	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	Hacking SQL Injection

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 183.171.158.232

🇺🇸 162.144.238.147

🇺🇸 66.132.172.138

🇳🇱 176.65.139.173

🇧🇬 79.124.58.130

🇻🇳 27.71.230.31

🇰🇷 220.80.66.168

🇧🇷 187.72.128.177

🇺🇸 134.122.118.134

🇸🇬 101.47.156.170

🇺🇸 69.12.64.60

🇺🇸 67.207.86.226

🇸🇬 43.163.81.180

🇹🇼 35.201.130.161

🇨🇳 222.222.168.9

🇬🇧 193.163.125.50

🇺🇸 162.216.149.18

🇺🇸 138.91.105.36

🇵🇰 116.71.136.125

🇺🇸 64.95.9.250