JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.57.82.70

31.57.82.70 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 0%: ?

ISP	GOLD IP L.L.C-FZ
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	goldipv4.com
Country	🇨🇦 Canada
City	Montreal, Quebec

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.57.82.70

Whois 31.57.82.70

IP Abuse Reports for 31.57.82.70:

This IP address has been reported a total of 32 times from 9 distinct sources. 31.57.82.70 was first reported on November 27th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-01 10:00:03 (1 month ago)	\| Common web attack.	Web App Attack Hacking SQL Injection
🇺🇸 TPI-Abuse	2026-03-01 20:30:01 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 15:29:52.831231 2026] [security2:error] [pid 32106:tid 32133] [client 31.57.82.70:50313] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.com"] [uri "/wp-config.php.old"] [unique_id "aaShwMyHAVRioPijSO-FtAAAANY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-02-14 00:16:25 (3 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -40.766 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -40.766 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Sa show less	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-01 06:11:20 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 01:11:15.090798 2025] [security2:error] [pid 5083:tid 5097] [client 31.57.82.70:53497] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kettlehill.net"] [uri "/.env.stage"] [unique_id "aS0xg7lODMhtlQGnj5dAggAAAEs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-11-12 13:41:23 (6 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 12 08:41:19.986436 2025] [security2:error] [pid 8412:tid 8412] [client 31.57.82.70:42371] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.nbcnewsradio.com"] [uri "/.htpasswd"] [unique_id "aRSOf1nl_lmeFyGCcfzlcQAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-10-01 15:14:50 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Oct 01 11:14:42.963741 2025] [security2:error] [pid 31612:tid 31742] [client 31.57.82.70:33701] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kettlehill.net\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.net"] [uri "/admin/logs/errors.log"] [unique_id "aN1FYvVYIT9TWn2lWzJ_uAAAAQ8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-26 06:39:00 (8 months ago)	(mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210492) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 26 02:38:55.895592 2025] [security2:error] [pid 30444:tid 30444] [client 31.57.82.70:33727] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autoconfig.deandobkin.com"] [uri "/.env.bak"] [unique_id "aNY0_zHMSJV0yUp7nSVZkAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-09-14 22:41:00 (8 months ago)	$f2bV_matches	Brute-Force
🇺🇸 TPI-Abuse	2025-08-01 07:24:39 (10 months ago)	(mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Aug 01 03:24:33.441581 2025] [security2:error] [pid 3550633:tid 3551249] [client 31.57.82.70:41733] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|staging.kettlehill.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "staging.kettlehill.com"] [uri "/windows/win.ini"] [unique_id "aIxrsdKwxXmY5Cscsa6G0gAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 14:10:05 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 10:10:00.344378 2025] [security2:error] [pid 2890322:tid 2890322] [client 31.57.82.70:43083] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.nbcnewsradio.com\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nbcnewsradio.com"] [uri "/admin/errors.log"] [unique_id "aDxfOE81xe9Ccgbjtt_6mgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-06-01 10:00:08 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 31.57.82.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 01 06:00:02.161928 2025] [security2:error] [pid 2863390:tid 2863509] [client 31.57.82.70:51783] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|kettlehill.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "kettlehill.com"] [uri "/db_config.php.bak"] [unique_id "aDwkoomk0cNjkOYTn0LxxQAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-03-10 23:02:09 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2025-03-02 11:59:16 (1 year ago)	alibaba cloud ddos like web scan	Bad Web Bot
Anonymous	2025-03-01 21:26:03 (1 year ago)	Illegal actions on webapp	Hacking Web App Attack
Anonymous	2025-02-26 22:06:14 (1 year ago)	Illegal actions on webapp	Hacking Web App Attack

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.188.108.179

🇦🇷 201.219.64.250

🇵🇪 181.78.42.162

🇺🇸 2604:a880:2:d1:0:1:51e9:c001

🇭🇰 199.45.154.182

🇺🇸 147.185.132.222

🇨🇳 115.190.119.177

🇮🇹 93.92.79.8

🇳🇱 45.148.10.147

🇩🇪 43.228.157.9

🇬🇧 35.203.210.32

🇭🇰 8.218.220.87

🇦🇿 212.47.131.10

🇧🇿 190.197.115.78

🇳🇱 185.136.15.13

🇩🇪 185.59.103.184

🇭🇰 165.154.20.228

🇮🇩 103.67.80.61

🇺🇸 91.246.176.10

🇺🇿 81.95.230.90