๐บ๐ธ
TPI-Abuse
2026-07-02 15:51:53
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 11:51:49.893196 2026] [security2:error] [pid 7513:tid 7513] [client 162.158.111.129:11037] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "von-s.com"] [uri "/.git/config"] [unique_id "akaJFUVra8diP0jVCA5BWwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 18:15:36
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 14:15:32.676487 2026] [security2:error] [pid 12694:tid 12694] [client 162.158.111.129:11618] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.buyhealthy.net"] [uri "/.git/config"] [unique_id "aj7BxL-hZkMrlXcCYDUPBAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
IVski
2026-06-11 23:29:37
(3 weeks ago)
IVski WAF | Sensitive file probe detected - looking for .env
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 05:13:26
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 01:13:22.681417 2026] [security2:error] [pid 9356:tid 9356] [client 162.158.111.129:12183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "compformation.com"] [uri "/.git/config"] [unique_id "aiZPcselZbubVjBA6j3lrgAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-01 05:00:34
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ฉ๐ช
abdubhai
2026-04-20 04:59:09
(2 months ago)
162.158.111.129 - - [20/Apr/2026
...
Brute-Force
๐ซ๐ท
dynamix
2026-04-03 21:05:40
(3 months ago)
Multiple WAF Violations
Web App Attack
Anonymous
2026-04-03 12:09:48
(3 months ago)
Aggressive web scan
Web App Attack
๐ซ๐ฎ
oh.mg
2026-04-02 14:50:56
(3 months ago)
[Thu Apr 02 16:50:55.044829 2026] [security2:error] [pid 3830126:tid 3830151] [client 162.158.111.12 ...
show more
[Thu Apr 02 16:50:55.044829 2026] [security2:error] [pid 3830126:tid 3830151] [client 162.158.111.129:13847] [client 162.158.111.129] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-dev"] [tag "anomaly-evaluation"] [tag "OWASP_CRS"] [hostname "www.mmn.cat"] [uri "/.git/HEAD"] [unique_id "ac6CT0vwJTNbMEmJ9w7m7wAAABc"]
[Thu Apr 02 16:50:55.071096 2026] [security2:error] [pid 3830126:tid 3830131] [client 162.158.111.129:13847] [client 162.158.111.129] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:blocking_inbound_anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "233"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [ver "OWASP_CRS/4.10.0-d
...
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
mnsf
2026-04-02 05:05:59
(3 months ago)
Too many Status 40X (18)
Scanning/Probing (18)
Brute-Force
Web App Attack
๐ง๐พ
lns.bz
2026-04-01 08:29:14
(3 months ago)
Too many 404 requests [BY]
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-31 11:10:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 07:10:23.873470 2026] [security2:error] [pid 7839:tid 7839] [client 162.158.111.129:13341] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.lanegraves.com"] [uri "/app/.env"] [unique_id "acurn1CXUhY3_ij__OfdxAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-03-31 10:49:20
(3 months ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 16:42:56
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 12:42:40.673471 2026] [security2:error] [pid 10304:tid 10304] [client 162.158.111.129:9665] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.controlledautomationinc.com"] [uri "/.env.production.local"] [unique_id "acqoAMkYa3wP8m3GCn-FXAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-30 14:37:56
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.129 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 10:37:52.988679 2026] [security2:error] [pid 20392:tid 20427] [client 162.158.111.129:13770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.culturallyyours.org"] [uri "/.git/refs/heads/main"] [unique_id "acqKwL89YpyYVNMPy_87cQAAAUU"]
show less
Brute-Force
Bad Web Bot
Web App Attack