๐บ๐ธ
TPI-Abuse
2026-07-16 13:13:53
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:13:49.378407 2026] [security2:error] [pid 21762:tid 21762] [client 162.158.111.203:13798] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "thevenicecafe.com"] [uri "/.git/config"] [unique_id "aljZDRuwLi3LDCI-evDVDQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 21:29:49
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:29:44.933827 2026] [security2:error] [pid 6792:tid 6814] [client 162.158.111.203:13699] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "windowtailors.com"] [uri "/.git/config"] [unique_id "akbYSOuoBlZ_cMDS3mC03wAAAJA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
ALPHANET
2026-06-28 03:40:00
(2 weeks ago)
web exploits
Hacking
Exploited Host
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-20 21:29:28
(3 weeks ago)
162.158.111.203 - - [21/Jun/2026:00:28:06 +0300] "GET /wp-admin/css/ HTTP/1.1" 404 762 "-" "Mozlila/ ...
show more
162.158.111.203 - - [21/Jun/2026:00:28:06 +0300] "GET /wp-admin/css/ HTTP/1.1" 404 762 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
162.158.111.203 - - [21/Jun/2026:00:29:27 +0300] "GET /wp-includes/PHPMailer/ HTTP/1.1" 404 762 "-" "Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-12 18:12:44
(1 month ago)
162.158.111.203 - - [12/Jun/2026:21:12:42 +0300] "GET /wp-login.php HTTP/1.1" 404 3343 "https://www. ...
show more
162.158.111.203 - - [12/Jun/2026:21:12:42 +0300] "GET /wp-login.php HTTP/1.1" 404 3343 "https://www.facebook.com/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 13_6_1; rv:120.0) Gecko/20100101 Firefox/120.0"
162.158.111.203 - - [12/Jun/2026:21:12:43 +0300] "GET /wp-admin/ HTTP/1.1" 404 705 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0"
...
show less
Web App Attack
๐จ๐ญ
ALPHANET
2026-06-12 16:09:37
(1 month ago)
web exploits
Hacking
Exploited Host
Web App Attack
๐ท๐บ
DZBOT
2026-05-31 05:50:44
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-10 23:49:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 10 19:49:17.143827 2026] [security2:error] [pid 2393494:tid 2393494] [client 162.158.111.203:14167] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.americanexportimport.com"] [uri "/.git/config"] [unique_id "admMfWfOsqcMAkOAQRcApAAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
www.mammazone.it
2026-04-10 07:20:38
(3 months ago)
[Fri Apr 10 09:20:38.648027 2026] [proxy_fcgi:error] [pid 2187031] [client 162.158.111.203:10474] AH ...
show more
[Fri Apr 10 09:20:38.648027 2026] [proxy_fcgi:error] [pid 2187031] [client 162.158.111.203:10474] AH01071: Got error 'Primary script unknown'
...
show less
Hacking
Web App Attack
๐ซ๐ท
masterguru
2026-04-09 01:04:18
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-197)
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-07 12:11:02
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 07 08:10:58.745162 2026] [security2:error] [pid 1102223:tid 1102223] [client 162.158.111.203:11806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.marinestorage.com"] [uri "/.git/refs/heads/master"] [unique_id "adT0UsDNi4CWRm_UXHwZBQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-04-07 09:48:53
(3 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:Cf-Worker. (5025-196)
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-06 10:47:18
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 06:47:12.679868 2026] [security2:error] [pid 128876:tid 128876] [client 162.158.111.203:11820] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.dakotagraphics.com"] [uri "/.git/refs/heads/main"] [unique_id "adOPMBPCvekPMlPHSMjpEgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-06 05:40:12
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.111.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 01:40:06.161317 2026] [security2:error] [pid 29189:tid 29189] [client 162.158.111.203:13013] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.susansimmons.net"] [uri "/.git/HEAD"] [unique_id "adNHNvmZH7m9b8qEg3B5PQAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-04-05 23:14:35
(3 months ago)
Try to access /.git/config
Web App Attack