JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.19.35.124

89.19.35.124 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 12%: ?

12%

ISP	FINE GROUP SERVERS SOLUTIONS LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35830
Domain Name	finegroupservers.com
Country	🇺🇸 United States of America
City	Newark, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.19.35.124

Whois 89.19.35.124

IP Abuse Reports for 89.19.35.124:

This IP address has been reported a total of 13 times from 7 distinct sources. 89.19.35.124 was first reported on December 25th 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-11 13:19:40 (4 days ago)	Web password guessing	Brute-Force
🇺🇸 kosada.com	2026-05-31 17:43:32 (2 weeks ago)	Web password guessing	Brute-Force
🇺🇸 kosada.com	2026-05-21 11:44:47 (3 weeks ago)	Web password guessing	Brute-Force
🇧🇪 voormedia	2026-05-11 13:36:28 (1 month ago)	Accessed trap at '/xmlrpc.php'	Web App Attack
🇺🇸 kosada.com	2026-05-11 00:07:24 (1 month ago)	Web password guessing	Brute-Force
🇺🇸 oralunal	2026-04-08 06:34:30 (2 months ago)	IP banned by Fail2Ban in jail ente-suss ente.com-ssl_log mvfnds ...	Bad Web Bot Web App Attack
Anonymous	2026-03-31 14:40:05 (2 months ago)	Web App Attack	Brute-Force Web App Attack
🇩🇪 rh24	2026-03-30 07:26:51 (2 months ago)	(wordpress) Failed wordpress login from 89.19.35.124 (US/United States/-): (CF_ENABLE)	Brute-Force
🇺🇸 TPI-Abuse	2026-01-01 13:33:55 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 01 08:33:48.003247 2026] [security2:error] [pid 13629:tid 13629] [client 89.19.35.124:18005] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|bernsteinip.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bernsteinip.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVZ3u3t89_hgVbyS-Ia8aAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-01 01:04:30 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 31 20:04:26.145904 2025] [security2:error] [pid 14004:tid 14004] [client 89.19.35.124:21921] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.staben.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.staben.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVXIGtR2MWfHFR_22rYnXQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-31 21:17:26 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 31 16:17:20.793459 2025] [security2:error] [pid 5164:tid 5164] [client 89.19.35.124:23197] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.gemco-mfg.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.gemco-mfg.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aVWS4Fzg957BjQq1lDugGgAAACc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-27 15:36:06 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 89.19.35.124 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 27 10:36:01.110820 2025] [security2:error] [pid 12995:tid 12995] [client 89.19.35.124:29749] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|activethinkers.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "activethinkers.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "aU_84esMJI4N3L30gTV_dAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-25 14:30:04 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇻 196.196.53.104

🇨🇳 106.117.109.68

🇫🇷 91.231.89.150

🇬🇧 195.140.214.22

🇨🇳 60.16.213.39

🇺🇸 52.200.76.145

🇮🇳 49.207.57.54

🇧🇷 45.167.187.110

🇺🇸 18.212.73.216

🇧🇷 201.16.238.49

🇧🇴 190.181.4.12

🇧🇷 177.131.30.176

🇺🇸 151.241.125.174

🇭🇰 144.48.241.162

🇨🇳 124.88.113.187

🇱🇻 90.133.77.127

🇺🇸 66.132.224.30

🇳🇱 45.148.10.147

🇨🇳 36.140.123.73

🇮🇩 36.64.68.99