๐บ๐ธ
n2nguyenn2nguyen
2026-07-16 08:54:35
(1 day ago)
Blocked by YFC Security on https://fencingforward.com โ type: directory_scan_attempts
Web App Attack
๐ซ๐ท
sthoyer.de
2026-07-16 05:33:54
(1 day ago)
149.22.83.53 - - [16/Jul/2026:07:33:52 +0200] "GET /users/sign_in HTTP/1.1" 200 10573 "-" "Mozilla/5 ...
show more
149.22.83.53 - - [16/Jul/2026:07:33:52 +0200] "GET /users/sign_in HTTP/1.1" 200 10573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36"
149.22.83.53 - - [16/Jul/2026:07:33:52 +0200] "GET /users/sign_in HTTP/1.1" 200 10573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36"
149.22.83.53 - - [16/Jul/2026:07:33:52 +0200] "GET /users/sign_in HTTP/1.1" 200 10573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36"
149.22.83.53 - - [16/Jul/2026:07:33:53 +0200] "GET /users/sign_in HTTP/1.1" 200 10573 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36"
149.22.83.53 - - [16/Jul/2026:07:33:53 +0200] "GET /users/sign_in HTTP/1.1" 200 10572 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (K
...
show less
Brute-Force
๐ซ๐ท
dynamix
2026-07-16 04:20:28
(1 day ago)
Multiple WAF Violations
Web App Attack
Anonymous
2026-07-16 04:16:08
(1 day ago)
{"reqId":"WxZVIeqFx2Wu5KKuZM04","level":1,"time":"2026-07-16T06:16:04+02:00","remoteAddr":"149.22.83 ...
show more
{"reqId":"WxZVIeqFx2Wu5KKuZM04","level":1,"time":"2026-07-16T06:16:04+02:00","remoteAddr":"149.22.83.53","user":"--","app":"core","method":"GET","url":"/","scriptName":"/index.php","message":"Trusted domain error. \"149.22.83.53\" tried to access using \"home.khomri.com\" as host.","userAgent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36","version":"34.0.1.2","data":{"app":"core"}}
{"reqId":"AtsE5b4pVRPAyqvGmwPl","level":1,"time":"2026-07-16T06:16:06+02:00","remoteAddr":"149.22.83.53","user":"--","app":"core","method":"GET","url":"/src/.env","scriptName":"/index.php","message":"Trusted domain error. \"149.22.83.53\" tried to access using \"home.khomri.com\" as host.","userAgent":"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36","version":"34.0.1.2","data":{"app":"core"}}
{"reqId":"ESUuDEE2yFygdEnSjbx0","level":1,"time":"2026-07-16T06:16:06+02:0
...
show less
Web App Attack
๐ฉ๐ช
iNetWorker
2026-07-16 03:35:36
(1 day ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
CBJ
2026-07-16 02:15:18
(1 day ago)
fail2ban: apache-filepath-recon
...
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 23:56:54
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 19:56:50.237787 2026] [security2:error] [pid 4495:tid 4495] [client 149.22.83.53:57066] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "linneus.com"] [uri "/.env"] [unique_id "algeQsu7YiaHWzslQGYDFwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 22:33:58
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 18:33:52.841762 2026] [security2:error] [pid 9683:tid 9688] [client 149.22.83.53:50451] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boxwoodgarden.com"] [uri "/.env.local"] [unique_id "algK0BKt-RurLTVpYLvnogAAAIM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-15 22:09:52
(1 day ago)
BAD BOT - Detected and Blocked.. Matched phrase "python" at REQUEST_HEADERS:User-Agent. (1100000-193 ...
show more
BAD BOT - Detected and Blocked.. Matched phrase "python" at REQUEST_HEADERS:User-Agent. (1100000-193)
show less
Bad Web Bot
๐ณ๐ฑ
homeshowdomain.nl
2026-07-15 21:59:17
(1 day ago)
Auto-ban: >3000 req/min op 2026-07-15
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-15 21:09:15
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 17:09:07.075631 2026] [security2:error] [pid 26908:tid 26908] [client 149.22.83.53:64068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "watsoncousins.net"] [uri "/.env.local"] [unique_id "alf287igIygyyINCNcsqGQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ท
dominioz
2026-07-15 21:05:37
(2 days ago)
2026-07-15 21:04:51 GET /config.env - - 149.22.83.53 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X ...
show more
2026-07-15 21:04:51 GET /config.env - - 149.22.83.53 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/143.0.0.0+Safari/537.36 - 301 592
2026-07-15 21:04:51 GET /src/.env - - 149.22.83.53 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/143.0.0.0+Safari/537.36 - 301 588
2026-07-15 21:04:51 GET /err/ 404;https://sabadinsolucoes.com.br:443/config.env - 149.22.83.53 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/143.0.0.0+Safari/537.36 - 302 660
2026-07-15 21:04:52 GET /err/ 404;https://sabadinsolucoes.com.br:443/src/.env - 149.22.83.53 HTTP/1.1 Mozilla/5.0+(Macintosh;+Intel+Mac+OS+X+10_15_7)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/143.0.0.0+Safari/537.36 - 200 1507
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 20:43:44
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 16:43:41.079044 2026] [security2:error] [pid 9658:tid 9658] [client 149.22.83.53:59800] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sitebuilders.org.kerbros.com"] [uri "/.env.production"] [unique_id "alfw_RF_8WJ7tXA4uSBqpgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 20:20:16
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): ...
show more
(mod_security) mod_security (id:210492) triggered by 149.22.83.53 (unn-149-22-83-53.datapacket.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 16:20:12.863427 2026] [security2:error] [pid 26635:tid 26635] [client 149.22.83.53:65514] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "razeemco.com"] [uri "/.env.production"] [unique_id "alfrfK0wbsRcz_B_TPBRdQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
gadix
2026-07-15 18:19:59
(2 days ago)
[15/Jul/2026:20:19:59.467006 +0200] alfPT6QSEmQlh_NLWXJAQAAAAEI 149.22.83.53 42998 127.0.0.1 7081
[1 ...
show more
[15/Jul/2026:20:19:59.467006 +0200] alfPT6QSEmQlh_NLWXJAQAAAAEI 149.22.83.53 42998 127.0.0.1 7081
[15/Jul/2026:20:19:59.467729 +0200] alfPT6QSEmQlh_NLWXJAQQAAAE0 149.22.83.53 43002 127.0.0.1 7081
[15/Jul/2026:20:19:59.473253 +0200] alfPT6QSEmQlh_NLWXJAQwAAAEA 149.22.83.53 43014 127.0.0.1 7081
...
show less
Web App Attack