π³π±
wlt-blocker
2026-06-30 23:31:14
(1 day ago)
Unauthorized access to webpage admin
Web App Attack
π·πΊ
DZBOT
2026-06-30 20:41:06
(1 day ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
π©πͺ
Viveronese
2026-06-30 19:06:08
(1 day ago)
HTTP vulnerability scanning
Web App Attack
π«π·
dynamix
2026-06-30 17:36:32
(1 day ago)
Multiple WAF Violations
Web App Attack
π΅π±
webadmin
2026-06-30 16:28:10
(1 day ago)
Web App Attack
Anonymous
2026-06-30 14:24:49
(1 day ago)
Aggressive web scan
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-30 10:29:22
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:29:14.942551 2026] [security2:error] [pid 21235:tid 21235] [client 222.93.126.90:59584] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mkbcbible.com"] [uri "/laravel/.env"] [unique_id "akOaeirNJUvbXWrqKl2W0gAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
Petros Stefanakis
2026-06-30 10:14:21
(1 day ago)
(mod_security) mod_security triggered on hostname [redacted] 222.93.126.90 (CN/China/-)
SQL Injection
π©πͺ
paissangroup
2026-06-30 09:46:18
(1 day ago)
Multiple WAF Violations
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-30 08:42:37
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 04:42:32.595129 2026] [security2:error] [pid 16900:tid 16900] [client 222.93.126.90:52786] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.aquatech-ind.com"] [uri "/.envrc"] [unique_id "akOBeGMoGW9f62NpAyFY0QAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-30 08:17:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 04:17:05.877087 2026] [security2:error] [pid 21554:tid 21554] [client 222.93.126.90:46173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kelvinlouie.com"] [uri "/.env.bak"] [unique_id "akN7gRpQj2SY3ZIwPa06EwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-30 07:16:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 03:15:55.182439 2026] [security2:error] [pid 3414:tid 3414] [client 222.93.126.90:53094] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "meridianranchdrc.org"] [uri "/.env.staging"] [unique_id "akNtK6VE93tN0ZSK1tjBogAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-30 05:59:53
(1 day ago)
[Tue Jun 30 07:59:50.842304 2026] [authz_core:error] [pid 79922] [client 222.93.126.90:37596] AH0163 ...
show more
[Tue Jun 30 07:59:50.842304 2026] [authz_core:error] [pid 79922] [client 222.93.126.90:37596] AH01630: client denied by server configuration: /var/www/html/portfolio/public/build/static
[Tue Jun 30 07:59:51.291315 2026] [authz_core:error] [pid 79922] [client 222.93.126.90:37596] AH01630: client denied by server configuration: /var/www/html/portfolio/public/assets
[Tue Jun 30 07:59:52.211074 2026] [authz_core:error] [pid 79922] [client 222.93.126.90:37596] AH01630: client denied by server configuration: /var/www/html/portfolio/public/assets
[Tue Jun 30 07:59:52.660680 2026] [authz_core:error] [pid 79922] [client 222.93.126.90:37596] AH01630: client denied by server configuration: /var/www/html/portfolio/public/js/app.js
[Tue Jun 30 07:59:53.110599 2026] [authz_core:error] [pid 79922] [client 222.93.126.90:37596] AH01630: client denied by server configuration: /var/www/html/portfolio/public/js/main.js
...
show less
Web App Attack
πΊπΈ
Major Hostility
2026-06-30 05:59:45
(1 day ago)
"GET /docker-compose.dev.yml HTTP/1.1" 404
"GET /docker-compose.prod.yml HTTP/1.1" 404
"GET /config. ...
show more
"GET /docker-compose.dev.yml HTTP/1.1" 404
"GET /docker-compose.prod.yml HTTP/1.1" 404
"GET /config.js HTTP/1.1" 404
"GET /config.json HTTP/1.1" 404
"GET /settings.js HTTP/1.1" 404
"GET /settings.json HTTP/1.1" 404
"GET /secrets.json HTTP/1.1" 404
"GET /credentials.json HTTP/1.1" 404
"GET /cdp_api_key.json HTTP/1.1" 404
"GET /app.js HTTP/1.1" 404
"GET /main.js HTTP/1.1" 404
"GET /index.js HTTP/1.1" 404
"GET /server.js HTTP/1.1" 404
"GET /bundle.js HTTP/1.1" 404
"GET /app.bundle.js HTTP/1.1" 404
"GET /main.bundle.js HTTP/1.1" 404
"GET /vendor.js HTTP/1.1" 404
"GET /chunk.js HTTP/1.1" 404
"GET /static/js/main.js HTTP/1.1" 404
"GET /static/js/app.js HTTP/1.1" 404
"
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-29 05:54:58
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 222.93.126.90 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:54:53.629687 2026] [security2:error] [pid 7321:tid 7321] [client 222.93.126.90:43906] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sargous.com"] [uri "/.env.old"] [unique_id "akIIreAO3ureFc0bRcsXqwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack