JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.57.82.48

31.57.82.48 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 0%: ?

ISP	GOLD IP L.L.C-FZ
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	goldipv4.com
Country	🇨🇦 Canada
City	Montreal, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.57.82.48

Whois 31.57.82.48

IP Abuse Reports for 31.57.82.48:

This IP address has been reported a total of 25 times from 8 distinct sources. 31.57.82.48 was first reported on November 27th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-01-16 09:14:10 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 16 04:14:06.478478 2026] [security2:error] [pid 21916:tid 21916] [client 31.57.82.48:41589] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.nbcnewsradio.com"] [uri "/_.htaccess"] [unique_id "aWoBXp_dGSOpBO7QoM2AHgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 05:48:37 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 00:46:38.531958 2025] [security2:error] [pid 26090:tid 26465] [client 31.57.82.48:59039] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.kettlehill.kettlehill.com"] [uri "/.env.www.kettlehill"] [unique_id "aS0rvgqR0geke5MRGl4CNgAAAJM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-01 15:04:52 (7 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Nov 01 11:04:46.496804 2025] [security2:error] [pid 31390:tid 31395] [client 31.57.82.48:47785] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kettlehill.net"] [uri "/a.htaccess"] [unique_id "aQYhjgTyOOjtViEU79elzgAAAII"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-09-14 22:38:00 (8 months ago)	$f2bV_matches	Brute-Force
🇺🇸 TPI-Abuse	2025-09-01 01:51:34 (9 months ago)	(mod_security) mod_security (id:210730) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Aug 31 21:51:27.165890 2025] [security2:error] [pid 4167172:tid 4167185] [client 31.57.82.48:39007] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.kettlehill.com\|F\|2"] [data ".key"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.kettlehill.com"] [uri "/www.key"] [unique_id "aLT8H-ryNSoVQ-6inckvQwAAAUA"], referer: http://ftp.kettlehill.com/www.key show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 10dencehispahard SL	2025-08-06 05:35:34 (9 months ago)	WP probing for vulnerabilities	Hacking Exploited Host
Anonymous	2025-05-01 08:40:14 (1 year ago)	\| XSS (Cross Site Scripting) attempt.	Hacking SQL Injection Web App Attack
🇺🇸 TPI-Abuse	2025-05-01 03:28:11 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.48 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 30 23:28:06.575751 2025] [security2:error] [pid 10930:tid 11158] [client 31.57.82.48:35575] [client 31.57.82.48] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ftp.kettlehill.com"] [uri "/wp-config.php.orig"] [unique_id "aBLqRn9d7Z86Td3fBue1ogAAAQc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-07 22:07:55 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2025-02-26 13:51:29 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2025-02-16 10:00:13 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2025-02-09 20:49:05 (1 year ago)	Illegal actions on webapp	Hacking Web App Attack
Anonymous	2025-02-07 00:42:11 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2025-02-06 22:04:51 (1 year ago)	Illegal actions on webapp	Hacking Web App Attack
Anonymous	2025-01-30 07:37:31 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.218.245.18

🇺🇸 192.153.76.69

🇧🇷 186.216.88.160

🇲🇹 141.8.67.235

🇪🇸 91.142.223.216

🇺🇸 74.125.80.144

🇮🇩 43.133.138.8

🇮🇩 36.95.194.52

🇬🇧 35.203.210.41

🇩🇪 213.209.159.227

🇨🇭 209.99.190.200

🇳🇬 197.210.71.241

🇲🇽 189.217.130.86

🇺🇸 165.154.206.124

🇫🇮 147.185.133.78

🇮🇳 123.58.203.202

🇷🇴 80.94.92.184

🇩🇪 69.5.169.212

🇪🇸 5.225.166.111

🇬🇧 2a06:4880:6000::70