JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.192.214.3

31.192.214.3 was found in our database!

This IP was reported 54 times. Confidence of Abuse is 0%: ?

ISP	GNET Internet Telekomunikasyon A.S.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS42846
Hostname(s)	ni-leo-da.guzelhosting.com
Domain Name	ni.net.tr
Country	🇹🇷 Turkey
City	Denizli, Denizli

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.192.214.3

Whois 31.192.214.3

IP Abuse Reports for 31.192.214.3:

This IP address has been reported a total of 54 times from 21 distinct sources. 31.192.214.3 was first reported on April 4th 2022, and the most recent report was 10 months ago.

Old Reports: The most recent abuse report for this IP address is from 10 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 myintarweb	2025-08-11 15:40:53 (10 months ago)	31.192.214.3 - - [29/Jun/2025:20:30:12 +0100] 80 "HEAD /web.zip HTTP/1.1" 410 1119 "-" "-" ...	Hacking Bad Web Bot Web App Attack
🇬🇧 myintarweb	2025-08-04 13:35:21 (10 months ago)	31.192.214.3 - - [29/Jun/2025:20:30:12 +0100] 80 "HEAD /web.zip HTTP/1.1" 410 1119 "-" "-" ...	Hacking Bad Web Bot Web App Attack
🇳🇿 Tripwire	2025-08-02 06:57:26 (10 months ago)	Scanning for backup files - /Archive.zip	Web App Attack
🇩🇪 Phenix Info	2025-08-02 06:17:45 (10 months ago)	SmallGuard.fr/Prestashop Empty User Agent	Web App Attack
🇫🇮 kumiko	2025-07-29 05:30:11 (10 months ago)	[2025-07-29 08:30:10] File probing [6 in a quick succession] "HEAD /backup.zip HTTP/2.0" 403 "HEA ... show more [2025-07-29 08:30:10] File probing [6 in a quick succession] "HEAD /backup.zip HTTP/2.0" 403 "HEAD /Archive.zip HTTP/1.1" 301 "HEAD /Archive.zip HTTP/2.0" 301 "HEAD /backup.zip HTTP/2.0" 301 "HEAD /Archive.zip HTTP/2.0" 403 show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-20 02:43:20 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 19 22:43:16.634891 2025] [security2:error] [pid 4679:tid 4730] [client 31.192.214.3:40712] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "robertbellamystudio.com"] [uri "/wp-config.php_old"] [unique_id "aHxXxJ4UsqHib48Ion9bowAAAQw"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-19 15:44:33 (10 months ago)	Bot / scanning and/or hacking attempts: GET /wp-config.php.backup HTTP/1.1, GET /wp-config.php-old H ... show more Bot / scanning and/or hacking attempts: GET /wp-config.php.backup HTTP/1.1, GET /wp-config.php-old HTTP/1.1, GET /wp-config.php_old HTTP/1.1, GET /wp-config.php~ HTTP/1.1 show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2025-07-18 04:30:37 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 00:30:31.270975 2025] [security2:error] [pid 4469:tid 4469] [client 31.192.214.3:50778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "lapetitegrooming.com"] [uri "/wp-config.php1"] [unique_id "aHnN5zqyijbbQN7leBTT3QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-18 04:14:00 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 18 00:13:53.889151 2025] [security2:error] [pid 27278:tid 27278] [client 31.192.214.3:42358] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "michaelsabbey.com"] [uri "/wp-config.php.old"] [unique_id "aHnKAe-FeQT6_wZT17KzLQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-18 01:26:50 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 21:26:44.058153 2025] [security2:error] [pid 29211:tid 29211] [client 31.192.214.3:36056] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nvafc.com"] [uri "/wp-config.php.old"] [unique_id "aHmi1C4SysKJFf06sDiFVwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ManagedStack	2025-07-17 20:42:29 (11 months ago)	Wordpress Attack	Web App Attack
🇺🇸 TPI-Abuse	2025-07-17 18:23:58 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 17 14:23:54.392152 2025] [security2:error] [pid 13080:tid 13080] [client 31.192.214.3:48264] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.allmyartprojects.com"] [uri "/deborahleser.html/wp-config.php1"] [unique_id "aHk_uqHBDX_PNT2zdRPaCQAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-07-17 00:02:57 (11 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 31.192.214.3 (TR/Türkiye/ni-leo-da. ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 31.192.214.3 (TR/Türkiye/ni-leo-da.guzelhosting.com): 1 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2025-07-16 21:28:43 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 16 17:28:36.436660 2025] [security2:error] [pid 21857:tid 21857] [client 31.192.214.3:46346] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "feministvoice.blog"] [uri "/wp-config.php1"] [unique_id "aHgZhHJIJ7hUHiHa_RezZgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-16 00:37:48 (11 months ago)	(mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 31.192.214.3 (ni-leo-da.guzelhosting.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 15 20:37:40.188734 2025] [security2:error] [pid 9523:tid 9523] [client 31.192.214.3:35062] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "iclog.us"] [uri "/wp-config.php1"] [unique_id "aHb0VOXsy3wOXpd14VV85gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 54 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.26

🇳🇱 192.253.248.65

🇺🇸 162.216.149.66

🇬🇧 159.65.86.132

🇺🇸 146.88.241.149

🇨🇳 117.50.118.246

🇳🇱 91.92.40.19

🇺🇸 20.163.15.130

🇺🇸 198.41.227.197

🇩🇪 172.217.33.148

🇮🇳 168.144.155.142

🇭🇰 144.48.8.10

🇮🇳 125.19.218.50

🇳🇱 91.92.42.227

🇱🇹 81.30.98.144

🇺🇸 49.51.69.100

🇳🇱 45.198.224.136

🇺🇸 20.168.121.252

🇨🇳 182.43.235.75

🇺🇸 162.216.149.202