๐ท๐บ
DZBOT
2026-06-09 15:54:45
(3 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-02 06:24:53
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 02:24:47.117432 2026] [security2:error] [pid 27494:tid 27494] [client 162.158.110.215:12924] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "resumebuilder123.com"] [uri "/.git/config"] [unique_id "ah53LxDvZ0iqwEzKOG_qUAAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
2048
2026-04-16 05:28:46
(2 months ago)
2026-04-16T06:28:43.712045+01:00 machodeer kernel: [4574143.737463] [UFW BLOCK] IN=ens3 OUT= MAC=RED ...
show more
2026-04-16T06:28:43.712045+01:00 machodeer kernel: [4574143.737463] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=162.158.110.215 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=15630 DF PROTO=TCP SPT=54031 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0
2026-04-16T06:28:44.616789+01:00 machodeer kernel: [4574144.642709] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=162.158.110.215 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=54232 DF PROTO=TCP SPT=33269 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0
2026-04-16T06:28:45.522660+01:00 machodeer kernel: [4574145.548436] [UFW BLOCK] IN=ens3 OUT= MAC=REDACTED SRC=162.158.110.215 DST=REDACTED LEN=60 TOS=0x00 PREC=0x00 TTL=58 ID=44861 DF PROTO=TCP SPT=50299 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-04-07 20:00:48
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 16:00:43.707344 2026] [security2:error] [pid 2308757:tid 2308757] [client 162.158.110.215:13359] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.networthbuilding.com"] [uri "/.git/config"] [unique_id "adViaxpfS2dfN9XWbnxQvgAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-04-07 08:05:29
(2 months ago)
Scanning/Probing (28)
Brute-Force
Web App Attack
๐ซ๐ท
masterguru
2026-04-05 15:43:39
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:Cf-Worker. (5025-201)
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-05 04:29:49
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 00:29:41.217822 2026] [security2:error] [pid 19080:tid 19080] [client 162.158.110.215:13009] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.aeservices.com"] [uri "/.git/config"] [unique_id "adHlNZ7u-eTzD1DRMz15TwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 19:24:51
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 15:24:46.977604 2026] [security2:error] [pid 31252:tid 31252] [client 162.158.110.215:14143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.relayer.net"] [uri "/.git/refs/heads/main"] [unique_id "adFlflK4q-czZzUYc4lqtwAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-04 17:19:01
(3 months ago)
[Sat Apr 04 19:18:59.515273 2026] [authz_core:error] [pid 3628] [client 162.158.110.215:10561] AH016 ...
show more
[Sat Apr 04 19:18:59.515273 2026] [authz_core:error] [pid 3628] [client 162.158.110.215:10561] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sat Apr 04 19:18:59.749801 2026] [authz_core:error] [pid 3628] [client 162.158.110.215:10561] AH01630: client denied by server configuration: /etc/httpd/htdocs
[Sat Apr 04 19:19:00.199599 2026] [authz_core:error] [pid 3628] [client 162.158.110.215:10561] AH01630: client denied by server configuration: /etc/httpd/htdocs
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 14:55:03
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 10:54:52.392266 2026] [security2:error] [pid 20301:tid 20301] [client 162.158.110.215:9831] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.ndezrojo.com"] [uri "/.git/HEAD"] [unique_id "adEmPEk8j48yuqRSs-m-ywAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-04-04 02:10:19
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-196)
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-03 15:01:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 11:01:12.751028 2026] [security2:error] [pid 7690:tid 7690] [client 162.158.110.215:12909] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hisfavorite.net"] [uri "/.git/index"] [unique_id "ac_WOOu8MdhhEw9CK97bcQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 06:49:33
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 02:49:26.944064 2026] [security2:error] [pid 20162:tid 20162] [client 162.158.110.215:10122] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.lenorasflowers.com"] [uri "/.git/refs/heads/master"] [unique_id "ac9i9s-GKFxIdTh4FegoewAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Site.eu
2026-04-03 04:55:21
(3 months ago)
Excessive 404/403 errors
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-04-02 03:13:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.110.215 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 01 23:13:29.579075 2026] [security2:error] [pid 30383:tid 30383] [client 162.158.110.215:11429] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.arcbridge.com"] [uri "/.git/refs/heads/master"] [unique_id "ac3e2SQY2nvUuMZGHDEz_QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack