๐ณ๐ฑ
wlt-blocker
2026-06-30 23:30:48
(1 week ago)
Unauthorized access to webpage admin
Web App Attack
๐ณ๐ฑ
Site.eu
2026-06-30 23:15:49
(1 week ago)
Excessive multi-domain requests
Brute-Force
๐ฉ๐ช
Petros Stefanakis
2026-06-30 22:48:51
(1 week ago)
(mod_security) mod_security triggered on hostname [redacted] 223.247.180.24 (CN/China/-)
SQL Injection
๐ฉ๐ช
DEV-DNS
2026-06-30 22:05:24
(1 week ago)
(mod_security) mod_security triggered on hostname [redacted])
SQL Injection
๐ซ๐ท
YF
2026-06-30 21:51:21
(1 week ago)
WordPress config file probe
Web App Attack
๐ณ๐ฟ
Tripwire
2026-06-30 20:07:16
(1 week ago)
Scanning for exploits - /.env
Web App Attack
๐ฉ๐ช
Viveronese
2026-06-30 19:06:43
(1 week ago)
HTTP vulnerability scanning
Web App Attack
Anonymous
2026-06-30 17:23:09
(1 week ago)
Blocked by ModSec and CSF
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-30 16:47:28
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 12:47:20.725847 2026] [security2:error] [pid 25260:tid 25260] [client 223.247.180.24:35240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "willmarksynthetics.com"] [uri "/.env.backup"] [unique_id "akPzGI5CnNs1o-va3qie_wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 16:06:21
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 12:06:17.623562 2026] [security2:error] [pid 23322:tid 23322] [client 223.247.180.24:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "analisis.luisguacache.com"] [uri "/.env"] [unique_id "akPpeZydKYciilZhVJUq5gAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 12:39:35
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 08:39:27.692345 2026] [security2:error] [pid 19310:tid 19310] [client 223.247.180.24:38892] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ctrl-p.saltcityprint.com"] [uri "/.env.tmp"] [unique_id "akO4_wLCcfbKC7BFhiFsswAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 12:14:46
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 08:14:40.172583 2026] [security2:error] [pid 20176:tid 20176] [client 223.247.180.24:47143] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.drillworkscr.com"] [uri "/old/.env"] [unique_id "akOzMC5BlWRfp6TXK7bO2QAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
MPL
2026-06-30 12:06:42
(1 week ago)
tcp/443 (6 or more attempts)
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-30 11:55:43
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 07:55:39.335583 2026] [security2:error] [pid 6132:tid 6132] [client 223.247.180.24:33365] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fireteam.faith"] [uri "/.env.local"] [unique_id "akOuu91pcpeawsiiSVyO8QAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-30 10:55:16
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 223.247.180.24 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 30 06:55:08.739145 2026] [security2:error] [pid 14750:tid 14750] [client 223.247.180.24:38385] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.berklie.com"] [uri "/app/.env"] [unique_id "akOgjD_A90VhPyyH2MLk6AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack