๐บ๐ธ
TPI-Abuse
2026-07-02 17:03:58
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 13:03:53.258279 2026] [security2:error] [pid 23818:tid 23818] [client 162.158.94.113:9423] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "xtrl.com"] [uri "/.git/config"] [unique_id "akaZ-dSGNf7FP06Sql9GTQAAAD8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xxkodedxx
2026-06-23 17:18:48
(1 week ago)
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
...
show more
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
Active: 17:18:17โ17:18:18 UTC
Volume: 2 honeypot probe(s)
Bait taken: /wp-login.php, /wp-admin/install.php?step=1
UA: "http://zvxlabs.com/wp-admin/install.php?step=1"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-23 05:25:44
(1 week ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-13 15:18:25
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:18:22.492930 2026] [security2:error] [pid 28617:tid 28617] [client 162.158.94.113:10740] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.wcvfra.net"] [uri "/.git/config"] [unique_id "ai10vj8NWAz3hDccNCESpAAAAAU"], referer: https://www.google.com/search?q=cpcontacts.wcvfra.net
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-09 02:29:59
(1 month ago)
(mod_security) mod_security (id:949110) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:949110) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 22:29:53.333904 2026] [security2:error] [pid 23031:tid 23031] [client 162.158.94.113:10571] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "allhandswashservices.com"] [uri "/.git/config"] [unique_id "af6cIbHfnDCgShzxtEeOvgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 12:32:45
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 08 08:32:38.245650 2026] [security2:error] [pid 17081:tid 17081] [client 162.158.94.113:13979] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "printorganic.com"] [uri "/.git/config"] [unique_id "af3X5qagqgxetnQxhrzP_AAAACc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 13:59:11
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 09:59:04.087218 2026] [security2:error] [pid 3578:tid 3578] [client 162.158.94.113:10737] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.drxcontent.com"] [uri "/.git/config"] [unique_id "afNgKMmMH4D-6U1efoRNiAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 07:52:29
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 03:52:25.403388 2026] [security2:error] [pid 1258:tid 1258] [client 162.158.94.113:11631] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.frank-klimas.com"] [uri "/.git/config"] [unique_id "afMKOakS8R6Su5_VsNLnoQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-29 09:36:25
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 05:36:20.279904 2026] [security2:error] [pid 21283:tid 21283] [client 162.158.94.113:12556] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sports.grimone.com"] [uri "/.git/config"] [unique_id "afHRFKiw_P9JJOdxX7_GLQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-04-07 03:45:30
(2 months ago)
Blocked Cloudflare Worker request. Pattern match "." at REQUEST_HEADERS:cf-worker. (5025-195)
Hacking
Anonymous
2026-04-06 21:34:30
(2 months ago)
fail2ban: Sensitive web probes detected
Web App Attack
๐ซ๐ท
debaba
2026-04-05 11:55:30
(2 months ago)
[05/Apr/2026:11:55:28.893153 +0000] adJNsDjAMaref1SwolJSlwAAAJE 162.158.94.113 43022 127.0.0.1 7081
...
show more
[05/Apr/2026:11:55:28.893153 +0000] adJNsDjAMaref1SwolJSlwAAAJE 162.158.94.113 43022 127.0.0.1 7081
[05/Apr/2026:11:55:29.048492 +0000] adJNsWbNX0CJVA
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 17:59:49
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 13:59:42.362048 2026] [security2:error] [pid 29974:tid 29974] [client 162.158.94.113:13934] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "he.handyrehab.com"] [uri "/.git/refs/heads/main"] [unique_id "adFRjtxZYGzW5I7A4ILqUQAAACk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
abdubhai
2026-04-04 10:46:41
(2 months ago)
162.158.94.113 - - [04/Apr/2026:
...
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-04-04 09:06:04
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 162.158.94.113 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 05:05:58.057328 2026] [security2:error] [pid 27937:tid 27937] [client 162.158.94.113:13832] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.elissazeches.com"] [uri "/.git/logs/HEAD"] [unique_id "adDUdlFH4-1ewLElqVWmXgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack