๐บ๐ธ
xxkodedxx
2026-07-18 03:09:37
(16 hours ago)
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
...
show more
[Zorvexus edge-defense] GET .env / WordPress honeypot probe
Trigger: 1ร honeypot-get in 10m window.
Active: 03:08:49โ03:08:50 UTC
Volume: 2 honeypot probe(s)
Bait taken: /wp-login.php, /wp-admin/install.php?step=1
UA: "http://zvxlabs.com/wp-admin/install.php?step=1"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 19:10:41
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 15:10:35.943616 2026] [security2:error] [pid 20922:tid 20922] [client 172.68.194.183:11094] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "galvanizetm.com"] [uri "/.git/config"] [unique_id "alksq9uiQAdkIQq-XRiQywAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 09:30:24
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 05:30:18.448719 2026] [security2:error] [pid 12475:tid 12475] [client 172.68.194.183:12029] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "painting-with-numbers.com"] [uri "/.git/config"] [unique_id "alikqjapnH7hqQ8GHIIV_wAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 08:23:42
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 04:23:25.723146 2026] [security2:error] [pid 4603:tid 4603] [client 172.68.194.183:14042] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caribbeantracking.com"] [uri "/.git/HEAD"] [unique_id "aldDfThRXCqugL9RYf5IqwAAADU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
nNordic
2026-06-09 09:12:18
(1 month ago)
Connection attempt blocked by IDS/IPS from 172.68.194.183/32
Hacking
๐บ๐ธ
mnsf
2026-06-08 00:05:01
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-07 11:39:10
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 07:39:03.677225 2026] [security2:error] [pid 3130:tid 3130] [client 172.68.194.183:13164] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zezel.com"] [uri "/.git/config"] [unique_id "aiVYV8OwLKkqEEr9wxo-pAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-05 21:19:03
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 17:18:57.510647 2026] [security2:error] [pid 6725:tid 6725] [client 172.68.194.183:13511] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mountainararattrek.com.amybeam.com"] [uri "/.git/config"] [unique_id "aiM9QXQI15xvPlGMd02gAwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-06-01 06:16:57
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 03:40:21
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 23:40:13.970791 2026] [security2:error] [pid 18290:tid 18290] [client 172.68.194.183:11466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stringsonfire.guitar-pedals-amp.com"] [uri "/.git/refs/heads/main"] [unique_id "adHZncGGQpxvK5bo8gY00QAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 18:14:47
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 14:14:41.312820 2026] [security2:error] [pid 24601:tid 24601] [client 172.68.194.183:10959] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mute-swan.com"] [uri "/.git/HEAD"] [unique_id "adFVEb2CPWpzSLbf7oedzgAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-04-04 10:50:40
(3 months ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐บ๐ธ
mnsf
2026-04-04 09:06:46
(3 months ago)
Scanning/Probing (12)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 07:32:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 03:32:25.084699 2026] [security2:error] [pid 1733:tid 1733] [client 172.68.194.183:11172] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bradsalerno.com"] [uri "/.git/HEAD"] [unique_id "adC-ifmtfF4p0dcZtdenagAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 05:08:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.68.194.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 01:08:36.996707 2026] [security2:error] [pid 5225:tid 5225] [client 172.68.194.183:10533] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.bonvivantorganics.com"] [uri "/.git/refs/heads/main"] [unique_id "adCc1CwRFfOVFhrnFcK2BwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack