π¬π§
thetomtaylor.co.uk
2026-06-12 14:06:02
(2 weeks ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01]
Bad Web Bot
Web App Attack
π¬π§
thetomtaylor.co.uk
2026-06-12 13:08:01
(2 weeks ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03,wa ...
show more
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice02,mx01,mx02,mx03,wa01]
show less
Bad Web Bot
Web App Attack
πΊπΈ
interbiznw.com
2026-06-12 13:00:32
(2 weeks ago)
fail2ban-ban
Hacking
Brute-Force
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 12:36:58
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 08:36:55.220903 2026] [security2:error] [pid 13650:tid 13670] [client 104.234.208.204:37871] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aafmgcc.com"] [uri "/.env"] [unique_id "aiv9Z-Wk3wvKOTmYC-g5fAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 11:26:02
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 07:25:55.008611 2026] [security2:error] [pid 17980:tid 17980] [client 104.234.208.204:27253] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pseudospace.com"] [uri "/.env"] [unique_id "aivsw59Ti21fdkagp5rF9AAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-12 10:29:11
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:29:06.638620 2026] [security2:error] [pid 7173:tid 7173] [client 104.234.208.204:31683] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "idatex.us"] [uri "/.env"] [unique_id "aivfcmyhsrNZnJusrPGzsQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¬π§
thetomtaylor.co.uk
2026-06-12 10:07:01
(2 weeks ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-12 08:52:47
(2 weeks ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
π§πͺ
cmbplf
2026-06-12 07:35:01
(2 weeks ago)
195 requests with url.path *.env
Brute-Force
Bad Web Bot
πΊπΈ
mnsf
2026-06-11 20:05:48
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
πΊπΈ
ambor
2026-06-11 19:30:25
(2 weeks ago)
Honeypot access: Environment file access attempt. Path: /.env
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-11 19:23:08
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:23:05.029490 2026] [security2:error] [pid 1827:tid 1827] [client 104.234.208.204:24319] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jackielangley.com"] [uri "/.env"] [unique_id "aisLGULPSg0r0fFqZxkUUQAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-11 17:33:25
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 13:33:20.710546 2026] [security2:error] [pid 17350:tid 17350] [client 104.234.208.204:47471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dantobinlaw.com"] [uri "/.env"] [unique_id "airxYIZYCXvTmSTkBQYHXQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-11 15:20:45
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 11:20:37.515474 2026] [security2:error] [pid 24405:tid 24516] [client 104.234.208.204:33671] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "adetnw.com"] [uri "/.env"] [unique_id "airSRaj6d9Cs1i-WUx0EtgAAAM8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-11 14:53:39
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210492) triggered by 104.234.208.204 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 10:53:31.959118 2026] [security2:error] [pid 29162:tid 29162] [client 104.234.208.204:64237] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pyxelstudios.com"] [uri "/.env"] [unique_id "airL64P71ociCuwWOvpS0wAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack