π«π·
SpaceHost-Server
2026-06-06 22:29:02
(14 hours ago)
Brute-Force
Web App Attack
2026-06-06 11:03:33
(1 day ago)
Fail2Ban triggered
Web App Attack
π§πͺ
Ivo Vynckier
2026-06-06 11:01:00
(1 day ago)
94.176.161.165 - - [05/Jun/2026:13:46:29 +0200] "GET /application.yml HTTP/2.0" 404 2143 "https://ww ...
show more
94.176.161.165 - - [05/Jun/2026:13:46:29 +0200] "GET /application.yml HTTP/2.0" 404 2143 "https://www.how-ocr-works.com/application.yml" "Mozilla/5.0 (compatible; Claude-Web/1.0; +https://www.anthropic.com)"
94.176.161.165 - - [05/Jun/2026:13:46:32 +0200] "GET /storage/logs/laravel.log HTTP/2.0" 301 298 "http://www.how-ocr-works.com/storage/logs/laravel.log" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)"
94.176.161.165 - - [05/Jun/2026:13:46:32 +0200] "GET /.env HTTP/1.1" 403 117 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.com/searchbot"
94.176.161.165 - - [05/Jun/2026:13:46:32 +0200] "GET /secrets.json HTTP/2.0" 301 286 "http://www.how-ocr-works.com/secrets.json" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user"
show less
Hacking
2026-06-06 07:31:38
(1 day ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
πΊπΈ
TPI-Abuse
2026-06-06 03:41:42
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 23:41:36.111646 2026] [security2:error] [pid 10298:tid 10298] [client 94.176.161.165:45170] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "illumoonatedtarot.com"] [uri "/.git/config"] [unique_id "aiOW8P2ROZAlZJf2hThuUwAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π
Origon
2026-06-06 03:32:27
(1 day ago)
http-bad-user-agent - IP: 94.176.161.165 - time="2026-06-06T05:32:26+02:00" level=info msg="(555f66 ...
show more
http-bad-user-agent - IP: 94.176.161.165 - time="2026-06-06T05:32:26+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/http-bad-user-agent by ip 94.176.161.165 (FR/211448) : 4h ban on Ip 94.176.161.165" module=db
show less
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-06 01:59:32
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 21:59:27.820995 2026] [security2:error] [pid 20198:tid 20198] [client 94.176.161.165:50306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ik3co.com"] [uri "/.git/config"] [unique_id "aiN-_3bxDvj73f-JVRW3wQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
ambor
2026-06-05 23:56:00
(1 day ago)
Honeypot triggered: /vault.env on ifebridge.com. User-Agent: meta-externalagent/1.1 (+https://develo ...
show more
Honeypot triggered: /vault.env on ifebridge.com. User-Agent: meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler). Method: GET
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 23:13:32
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 19:13:25.246524 2026] [security2:error] [pid 31324:tid 31324] [client 94.176.161.165:43396] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idonthaveawebpage.com"] [uri "/.git/config"] [unique_id "aiNYFbmQ0dfCVP-iw0jHbAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 22:15:17
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 18:15:13.496363 2026] [security2:error] [pid 18197:tid 18197] [client 94.176.161.165:44452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idahouspsa.com"] [uri "/.git/config"] [unique_id "aiNKcWOJf91Wu70UtOZYnQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π«π·
COMAITE
2026-06-05 21:14:55
(1 day ago)
Suspicious URL access.
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 20:57:52
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 16:57:49.053492 2026] [security2:error] [pid 27905:tid 27905] [client 94.176.161.165:44702] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ice.premaindustrial.com"] [uri "/.git/config"] [unique_id "aiM4TcoUDK1AresHogeevgAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 20:41:28
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 16:41:23.636777 2026] [security2:error] [pid 20840:tid 20873] [client 94.176.161.165:57316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icbc-canada.com"] [uri "/.git/config"] [unique_id "aiM0c336TmDAVo85cDdpTAAAARg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 20:21:22
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 16:21:16.735957 2026] [security2:error] [pid 2595:tid 2595] [client 94.176.161.165:35356] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "micahgartman.com"] [uri "/.git/config"] [unique_id "aiMvvI_Cm6QtZpxdvEuF1AAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 19:41:55
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 94.176.161.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 15:41:50.657775 2026] [security2:error] [pid 22341:tid 22355] [client 94.176.161.165:57128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.ianajewellery.com"] [uri "/.git/config"] [unique_id "aiMmfqoChPbdooKJbhRl7gAAAUs"]
show less
Brute-Force
Bad Web Bot
Web App Attack