๐บ๐ธ
nationaleventpros.com
2026-07-14 18:13:38
(4 days ago)
vulnerability scan
Web App Attack
๐ฉ๐ฐ
HostingGroup
2026-07-14 17:46:53
(4 days ago)
Automated malicious activity (Honeypot Trap) detected and blocked at the CDN edge by NordicCDN Shiel ...
show more
Automated malicious activity (Honeypot Trap) detected and blocked at the CDN edge by NordicCDN Shield. Offenses: 1. First blocked: 2026-07-14.
show less
Bad Web Bot
Web App Attack
๐ต๐ฑ
nakordoni.eu
2026-07-14 17:30:03
(4 days ago)
Blocked by nakordoni.eu automated security: nakordoni-probe-gate. Jail: nakordoni-probe-gate, 1 matc ...
show more
Blocked by nakordoni.eu automated security: nakordoni-probe-gate. Jail: nakordoni-probe-gate, 1 matches. ISP: Internet Utilities NA LLC (US), Usage: Data Center/Web Hosting/Transit. Prior AbuseIPDB score at ban time: 56/100.
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 17:26:55
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 13:26:48.829475 2026] [security2:error] [pid 3793:tid 3793] [client 104.234.208.193:25957] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "goglobex.com"] [uri "/.env"] [unique_id "alZxWCRHQG7sHjzUGjJ0dAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
voormedia
2026-07-14 17:09:21
(4 days ago)
Accessed trap at '/.env'
Web App Attack
๐ฎ๐น
Inartis
2026-07-14 15:33:46
(4 days ago)
104.234.208.193 - - [14/Jul/2026:15:33:46 +0000] "GET /.env HTTP/1.1" 302 487 "-" "Mozilla/5.0 (X11; ...
show more
104.234.208.193 - - [14/Jul/2026:15:33:46 +0000] "GET /.env HTTP/1.1" 302 487 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐น
Subnet Shadow Specter
2026-07-14 14:40:39
(4 days ago)
[CRITICAL][Security Alert] Targeted exploit scanning against Textbook Vulnerabilities. Bot hunting f ...
show more
[CRITICAL][Security Alert] Targeted exploit scanning against Textbook Vulnerabilities. Bot hunting for PHP backdoors. [Method]: => GET. [Request]: /public/_profiler/phpinfo. Access revoked. [User-Agent]: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36. [OS]: Linux. [IP Address]: 104.234.208.193. [IoA Datetime]: 2026-07-14 14:45:52 UTC.
show less
Bad Web Bot
Hacking
Port Scan
Web App Attack
๐ฉ๐ช
konseptit
2026-07-01 00:03:49
(2 weeks ago)
(wordpress) Failed wordpress login from 104.234.208.193 (US/United States/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-12 12:52:15
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 08:52:10.538736 2026] [security2:error] [pid 7696:tid 7717] [client 104.234.208.193:47201] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hotelpuertadelsolcr.com"] [uri "/.env"] [unique_id "aiwA-gDt7kkvR2zL4hrqmgAAARM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-06-12 12:45:52
(1 month ago)
105 requests with url.path *.env
Brute-Force
Bad Web Bot
๐ฑ๐ป
garmtech.com
2026-06-12 12:19:18
(1 month ago)
IM360 WAF: Direct access to sensitive file or dotfile MV:/.env
Web App Attack
๐ฉ๐ช
Bedios GmbH
2026-06-12 12:05:08
(1 month ago)
Login credentials theft attempt
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-12 11:48:00
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:47:56.021021 2026] [security2:error] [pid 11772:tid 11772] [client 104.234.208.193:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "hvacs-aircon.com"] [uri "/.env"] [unique_id "aivx7F-M_GC78bynIbPaJwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 10:24:35
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:24:29.633360 2026] [security2:error] [pid 2148:tid 2148] [client 104.234.208.193:21187] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "citadeltitle.com"] [uri "/.env"] [unique_id "aiveXbV30Hl_-CMJaFD87gAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-12 08:53:02
(1 month ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack