JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 95.31.11.204

95.31.11.204 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	Static IP Poool for broadband customers in Moscow
Usage Type	Fixed Line ISP
ASN	AS8402
Hostname(s)	95-31-11-204.static.corbina.ru
Domain Name	corbina.ru
Country	🇷🇺 Russian Federation
City	Khimki, Moscow Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 95.31.11.204

Whois 95.31.11.204

IP Abuse Reports for 95.31.11.204:

This IP address has been reported a total of 22 times from 13 distinct sources. 95.31.11.204 was first reported on September 2nd 2025, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 VHosting	2026-02-24 14:21:12 (3 months ago)	Detected mail brute force attack from 4 different servers	Brute-Force
🇪🇸 el-brujo	2026-01-17 19:44:18 (5 months ago)	Cloudflare WAF: Request Path: /blackryu11 Request Query: Host: elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /blackryu11 Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: CORBINA-AS OJSC Vimpelcom Country: RU Method: GET Timestamp: 2026-01-17T19:44:18Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇨🇭 backslash	2026-01-16 15:16:32 (5 months ago)		DDoS Attack
Anonymous	2026-01-02 14:50:28 (5 months ago)	Detected Hacking, SQL Injection or general Web App Attack	Web App Attack
🇨🇦 1gz	2025-12-25 17:41:23 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: CHALLENGE Protocol: HTTP/2 (GET met ... show more Triggered Cloudflare WAF (firewallCustom) from RU. Action taken: CHALLENGE Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇪🇸 el-brujo	2025-12-23 06:51:31 (5 months ago)	Cloudflare WAF: Request Path: /multivol_blackryu Request Query: Host: elhacker.net userAgent: Mozil ... show more Cloudflare WAF: Request Path: /multivol_blackryu Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: CORBINA-AS OJSC Vimpelcom Country: RU Method: GET Timestamp: 2025-12-23T06:51:31Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇪🇸 el-brujo	2025-12-23 06:44:29 (5 months ago)	Cloudflare WAF: Request Path: /multivol_blackryu Request Query: Host: elhacker.net userAgent: Mozil ... show more Cloudflare WAF: Request Path: /multivol_blackryu Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: CORBINA-AS OJSC Vimpelcom Country: RU Method: GET Timestamp: 2025-12-23T06:44:29Z ruleId: 6e3ccc23900c428e8ec0fb8a3a679c52. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇨🇭 Zeprax	2025-12-17 19:43:56 (6 months ago)	Layer 7 Flood Detected	DDoS Attack
🇪🇸 el-brujo	2025-12-17 15:47:07 (6 months ago)	Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (W ... show more Cloudflare WAF: Request Path: /ptbttest Request Query: Host: elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Action: block Source: l7ddos ASN Description: CORBINA-AS OJSC Vimpelcom Country: RU Method: GET Timestamp: 2025-12-17T15:47:07Z ruleId: 12b9aecf1f6245b29d7e842bf35a42a0. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇵🇹 PTnet	2025-12-07 06:27:38 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-06 22:45:42 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇵🇹 PTnet	2025-12-04 19:53:38 (6 months ago)	DDoS Attack (jail:haproxy-https-flood)	DDoS Attack Exploited Host
🇬🇧 Audir8 \| RRHosting	2025-12-03 23:52:36 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from RU. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoin ... show more Triggered Cloudflare WAF (l7ddos) from RU. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /auth/login UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36 This report is using Cloudflare-WAF-To-AbuseIPDB show less	DDoS Attack Bad Web Bot
🇺🇸 COMPLEX	2025-12-02 04:42:04 (6 months ago)	Triggered Cloudflare WAF (l7ddos) from RU. Action taken: BLOCK ASN: 8402 (CORBINA-AS OJSC Vimpelcom) ... show more Triggered Cloudflare WAF (l7ddos) from RU. Action taken: BLOCK ASN: 8402 (CORBINA-AS OJSC Vimpelcom) Protocol: HTTP/2 (GET method) Endpoint: //x/x/x/x/x/x//x/x/x/x/x//x//x/x/x//x/x//x/x/x//x/x/x//x/x//x/x/x//x/x/x//x/x/x/x//x/x/x//x show less	DDoS Attack Bad Web Bot
🇦🇺 GreyWatch - Honeypot Intelligence	2025-11-09 03:28:33 (7 months ago)	ASN: 8402 (CORBINA-AS OJSC Vimpelcom) Botnet Zombie: This IP has been detected as a botnet zombie \| ... show more ASN: 8402 (CORBINA-AS OJSC Vimpelcom) Botnet Zombie: This IP has been detected as a botnet zombie \| Outbound DDoS attack source \| Malicious show less	DDoS Attack Bad Web Bot

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 43.128.122.242

🇮🇹 185.77.50.223

🇨🇱 170.247.138.65

🇩🇪 85.28.47.237

🇫🇷 51.91.76.106

🇸🇬 47.84.195.65

🇸🇬 43.156.12.237

🇭🇰 42.200.60.186

🇯🇵 203.25.124.134

🇺🇸 165.154.162.71

🇭🇰 152.32.186.240

🇸🇬 128.199.225.7

🇨🇳 117.164.191.217

🇺🇸 65.49.1.133

🇨🇳 42.123.122.110

🇲🇦 41.249.227.23

🇦🇺 202.62.129.18

🇳🇱 195.178.110.223

🇺🇸 162.216.149.158

🇨🇳 112.86.225.171