π«π·
ELYAZ
2026-06-16 01:54:21
(2 days ago)
(y4) Failed scan -byebye- from 216.26.234.31 (US/United States/-): (CF_ENABLE)
Hacking
π¬π·
setupgr
2026-06-13 12:14:43
(5 days ago)
(mod_security) mod_security (id:900001) triggered by 216.26.234.31: 1 in the last 86400 secs; Ports: ...
show more
(mod_security) mod_security (id:900001) triggered by 216.26.234.31: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 13 15:14:43.140426 2026] [security2:error] [pid 784502:tid 784570] [client 216.26.234.31:57015] ModSecurity: Access denied with code 403 (phase 1). Match of "rx ^(www\\\\.)?(pankoskal\\\\.gr|sea-sound\\\\.com)$" against "REQUEST_HEADERS:Host" required. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "74"] [id "900001"] [msg "Blocked WP Login attempt on domain: villa-izabela.com"] [severity "CRITICAL"] [tag "security"] [hostname "villa-izabela.com"] [uri "/wp-login.php"] [unique_id "ai1Js5XVg-ne6mm2XrR7fgAAAAg"], referer: https://villa-izabela.com/wp-login.php
show less
Port Scan
πΊπΈ
lostswordfish.com
2026-06-12 22:02:04
(5 days ago)
Wordfence waf block on decarcerationnation
Web App Attack
π¦πΊ
MAGIC
2026-06-08 02:20:40
(1 week ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
π«π·
ELYAZ
2026-05-31 07:42:00
(2 weeks ago)
(y4) Failed scan -byebye- from 216.26.234.31 (US/United States/-): (CF_ENABLE)
Hacking
π©πͺ
iNetWorker
2026-05-30 11:11:39
(2 weeks ago)
trolling for resource vulnerabilities
Web App Attack
πͺπΈ
10dencehispahard SL
2026-01-26 10:22:50
(4 months ago)
Wordpress probing for vulnerabilities
Hacking
Exploited Host
πΊπΈ
TPI-Abuse
2025-12-02 09:48:53
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 04:48:46.810215 2025] [security2:error] [pid 12286:tid 12286] [client 216.26.234.31:52761] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dinersquest.com"] [uri "/.env"] [unique_id "aS61_lnfeVkNZLNYx2lppwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 05:22:31
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 02 00:22:24.516001 2025] [security2:error] [pid 16184:tid 16184] [client 216.26.234.31:9949] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "setx-law.com"] [uri "/.git/HEAD"] [unique_id "aS53kFVGGo9JY0HyObR72gAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 04:39:20
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 23:39:12.551731 2025] [security2:error] [pid 3819:tid 3819] [client 216.26.234.31:42751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "heavenwny.com"] [uri "/.env"] [unique_id "aS5tcPvtRXduUI9pt2zAVwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-12-02 01:24:50
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Dec 01 20:24:42.282500 2025] [security2:error] [pid 23715:tid 23715] [client 216.26.234.31:14781] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "longacre.biz"] [uri "/.env"] [unique_id "aS4_2vf2DUuHeBpjTfR1xwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
2000cn.com.au
2025-12-02 00:54:59
(6 months ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Hacking
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 08:59:03
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 03:58:55.749807 2025] [security2:error] [pid 12005:tid 12047] [client 216.26.234.31:10461] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.windowtailors.com"] [uri "/.git/HEAD"] [unique_id "aSQeTzBPFl6aUrWWAmc5nAAAAUk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 06:03:50
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 01:03:43.209343 2025] [security2:error] [pid 23676:tid 23676] [client 216.26.234.31:16323] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "integritysecurity.integritysecurity.us"] [uri "/.git/HEAD"] [unique_id "aSP1P_koE1E5jywhnJLgPgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2025-11-24 05:25:42
(6 months ago)
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 216.26.234.31 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 24 00:25:34.673209 2025] [security2:error] [pid 12231:tid 12231] [client 216.26.234.31:60299] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.svn/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.pbeyer.org"] [uri "/.svn/wc.db"] [unique_id "aSPsTiKcSOV5TX885Yy_nAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack