JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.132.54.197

31.132.54.197 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 11%: ?

11%

ISP	Wired ISP Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS64249
Domain Name	wiredisp.com
Country	🇺🇸 United States of America
City	Boston, Massachusetts

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.132.54.197

Whois 31.132.54.197

IP Abuse Reports for 31.132.54.197:

This IP address has been reported a total of 6 times from 2 distinct sources. 31.132.54.197 was first reported on May 18th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 hermawan	2026-06-16 10:02:26 (1 week ago)	[Tue Jun 16 17:02:26.187393 2026] [security2:error] [pid 748834:tid 139771394361024] [client 31.132. ... show more [Tue Jun 16 17:02:26.187393 2026] [security2:error] [pid 748834:tid 139771394361024] [client 31.132.54.197:61416] ModSecurity: Access denied with code 403 (phase 1). Match of "pm www.office.com powerpoint.officeapps.live.com /offline-service-worker-19-02-2025.js /offline-service-worker-27-01-2024-v5-0-1.js /offline-service-worker-01-08-2023-v4-5-1.js /OneSignalSDKWorker.js /worker-analytic-helper-27-11-2022.js/ /worker-analyti ..." against "REQUEST_HEADERS:Referer" required. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "580"] [id "440067"] [msg "BAD Referer"] [data "Matched Data: staklim-malang.info found within REQUEST_HEADERS:Referer: https://www.yandex.info/ request_line = GET /index.php/informasi-iklim/analisis-dinamika-atmosfer-laut-analisis-dan-prediksi-curah-hujan/555562369-analisis-dan-prediksi-dasarian-dinamika-atmosfer-laut-dan-prediksi-curah-hujan-pemutakhiran-dasarian-iii-agustus-2025 HTTP/2.0"] [severity "NOTICE"] [hostnam ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-15 16:47:44 (1 week ago)	[Mon Jun 15 23:47:40.575081 2026] [security2:error] [pid 62651:tid 139892999755456] [client 31.132.5 ... show more [Mon Jun 15 23:47:40.575081 2026] [security2:error] [pid 62651:tid 139892999755456] [client 31.132.54.197:15420] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index.php HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php"] [unique_id "ajAsrCjDl9X2zxwPNk5lgwAAQRg"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[62727] [KdimlY3eS4Y] [ajAsrCjDl9X2zxwPNk5lgwAAQRg] keep_alive=[1] [2026-06-15 23:47:40.575086] [R:ajAsrCjDl9X2zxwPNk5lgwAAQRg] UA:'Mozilla/5.0 (Linux; Android 10; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id' ACCEPT ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-08 00:42:04 (2 weeks ago)	[Mon Jun 08 07:42:04.274820 2026] [authz_core:error] [pid 504921:tid 140409974015680] [client 31.132 ... show more [Mon Jun 08 07:42:04.274820 2026] [authz_core:error] [pid 504921:tid 140409974015680] [client 31.132.54.197:23496] AH01630: client denied by server configuration: /var/www/index.php [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[504922] [kHZ9R3M43OY] [aiYP3I8oqKjNo82FoJ_f2AABBQA] keep_alive=[1] [2026-06-08 07:42:04.274823] [R:aiYP3I8oqKjNo82FoJ_f2AABBQA] UA:'Mozilla/5.0 (Linux; Android 12; SM-S901B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Mobile Safari/537.36' Host:'staklim-jatim.bmkg.go.id:443' ACCEPT:'text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7' Accept-Encoding:'gzip, deflate, br Accept-Language:'en-US,en;q=0.8 Upgrade-Insecure-Requests:'1 ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-06-04 20:39:54 (2 weeks ago)	[Fri Jun 05 03:39:50.464207 2026] [security2:error] [pid 480668:tid 139764435977920] [client 31.132. ... show more [Fri Jun 05 03:39:50.464207 2026] [security2:error] [pid 480668:tid 139764435977920] [client 31.132.54.197:60856] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "www.bmkg.go.id" at REQUEST_HEADERS:Referer. [file "/etc/modsecurity/coreruleset-4.26.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "582"] [id "440068"] [msg "BAD Referer"] [data "Matched Data: www.bmkg.go.id found within REQUEST_HEADERS:Referer: https://www.bmkg.go.id/ request_line = GET /index-v100.js HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index-v100.js"] [unique_id "aiHilsj-YIiPjyKOz-RJkgAAUw8"], referer https://www.bmkg.go.id/ [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[480702] [Sviui3MJapc] [aiHilsj-YIiPjyKOz-RJkgAAUw8] keep_alive=[1] [2026-06-05 03:39:50.464211] [R:aiHilsj-YIiPjyKOz-RJkgAAUw8] UA:'Mozilla/5.0 (Linux; Android 8.0.0; SM-J330G) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Mobile Safari/537.36 EdgA/114.0.1823.74' Host:' ... show less	Email Spam Hacking
🇮🇩 hermawan	2026-05-24 09:29:01 (1 month ago)	05/24/2026-16:28:57.396988 [Drop] [] [1:2100001898:0] Suricata match TLS ja4 scan Uniq Zeek no 18 ... show more 05/24/2026-16:28:57.396988 [Drop] [] [1:2100001898:0] Suricata match TLS ja4 scan Uniq Zeek no 1898 with hash_t13d1812h1_85036bcba153_d41ae481755e [**] [Classification: (null)] [Priority: 3] {TCP} 31.132.54.197:5950 -> 103.166.156.58:443 ... show less	Email Spam Hacking
🇵🇱 sefinek.net	2026-05-18 23:05:46 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/2 (GET ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: MANAGED_CHALLENGE \| Protocol: HTTP/2 (GET) \| Endpoint: /js/booru/navbar.js \| UA: Mozilla/5.0 (Linux; Android 14; Pixel 6 Pro) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.6261.119 Mobile Safari/537.36 OPR/81.2.4292.78581 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.150.93

🇫🇷 85.217.140.29

🇪🇬 41.43.141.128

🇬🇧 34.39.126.31

🇸🇬 15.235.167.106

🇩🇪 212.132.111.47

🇧🇷 200.195.138.91

🇳🇱 185.226.197.70

🇨🇳 183.221.20.144

🇺🇸 135.237.125.177

🇨🇳 110.73.91.58

🇧🇬 79.124.62.246

🇺🇸 66.132.186.142

🇪🇬 196.219.3.250

🇨🇳 111.122.249.2

🇺🇸 216.180.246.216

🇷🇺 212.3.155.8

🇲🇽 200.68.173.234

🇺🇸 185.226.196.29

🇩🇪 165.245.253.196