π·πΊ
DZBOT
2026-07-14 10:58:43
(1 day ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π§πΎ
lns.bz
2026-07-01 20:12:48
(1 week ago)
Too many 404 requests [BY]
Web App Attack
π·πΊ
DZBOT
2026-06-13 07:56:33
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-06 20:12:01
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 16:11:54.289691 2026] [security2:error] [pid 16819:tid 16819] [client 172.71.172.167:11596] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "glidetrubooks.com"] [uri "/.git/config"] [unique_id "aiR_ChaTPjILQI4wQvuZCQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-06 00:22:27
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 20:22:20.749392 2026] [security2:error] [pid 555:tid 555] [client 172.71.172.167:10135] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "westernmassaa.net"] [uri "/.git/config"] [unique_id "aiNoPC5UZBtpEGdqjerkoQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
big-cloud.nl
2026-06-04 12:09:53
(1 month ago)
Try to access /.git/config
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-03 20:27:46
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 16:27:41.593234 2026] [security2:error] [pid 22881:tid 22881] [client 172.71.172.167:11916] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirklandplumbing.ca"] [uri "/.git/config"] [unique_id "aiCOPQnbSu2ldTybkL7SIQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-03 02:05:25
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 22:05:21.477179 2026] [security2:error] [pid 15298:tid 15298] [client 172.71.172.167:13695] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "minetterisquez.com"] [uri "/.git/config"] [unique_id "ah-L4UUTy73vVAMGLG26MAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 19:46:57
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 15:46:50.312105 2026] [security2:error] [pid 18302:tid 18302] [client 172.71.172.167:13364] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "oldmaninthepeanut.com"] [uri "/.git/config"] [unique_id "ah8zKuBL4ukX4sGkeHdokwAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-02 12:28:37
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 08:28:29.916345 2026] [security2:error] [pid 19426:tid 19426] [client 172.71.172.167:10078] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "g-peopleland.com"] [uri "/.git/config"] [unique_id "ah7MbfJbelPPioWl1I3KgAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
mnsf
2026-06-02 11:05:13
(1 month ago)
Abuse Detected (1)
Brute-Force
Web App Attack
π«π·
tecnicorioja
2026-05-30 22:01:26
(1 month ago)
(Mod_security)
Web App Attack
Brute-Force
Bad Web Bot
πΊπΈ
xxkodedxx
2026-05-17 13:32:43
(1 month ago)
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 1Γ edge-block in 10 ...
show more
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 1Γ edge-block in 10m window.
Origin: DE / AS13335 Cloudflare, Inc.
Active: 13:32:38 UTC
Volume: 1 HTTP req
Probed: /wp-admin/install.php?step=1
Status mix: 444Γ1
UA: "http://ztx-lab.com/wp-admin/install.php?step=1"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-15 08:47:43
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.71.172.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 15 04:47:34.594696 2026] [security2:error] [pid 13449:tid 13511] [client 172.71.172.167:12568] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.pluralmatrix.cynosureinternetservices.com"] [uri "/.env.development.local"] [unique_id "agbdps8UY_wJIYt1j1Mm7wAAAkE"], referer: https://www.google.com/search?q=www.pluralmatrix.cynosureinternetservices.com
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
trentwiles.com
2026-05-09 02:09:24
(2 months ago)
Unauthorized connection attempt detected from IP address 172.71.172.167 to port 80 [SYD]
Port Scan