๐ฉ๐ช
LRob
2026-07-14 18:29:47
(5 hours ago)
CrowdSec: crowdsecurity/http-bad-user-agent | req: /.env.encrypted | 2 distinct paths | UA: Mozlila/ ...
show more
CrowdSec: crowdsecurity/http-bad-user-agent | req: /.env.encrypted | 2 distinct paths | UA: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bulid/NRD90M; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/60.0.3112.107 Moblie Safari/537.
show less
Bad Web Bot
๐ฉ๐ช
todix
2026-07-14 17:46:01
(6 hours ago)
Web App Attack Exploid from 165.245.186.111
Web App Attack
Anonymous
2026-07-14 05:05:13
(18 hours ago)
Sensitive file access attempt
Hacking
๐บ๐ธ
donarev419
2026-07-14 05:00:10
(18 hours ago)
Connection to port 80 with data transfer.
Data preview: GET /.env.1 HTTP/1.1
Host: 67.215.244.172
...
show more
Connection to port 80 with data transfer.
Data preview: GET /.env.1 HTTP/1.1
Host: 67.215.244.172
User-Agent: Mozlila/5.0 (Linux; Android 7.0; SM-G892A Bu
show less
Port Scan
Hacking
๐บ๐ธ
donarev419
2026-07-14 03:32:41
(20 hours ago)
Connection to port 80 with data transfer.
Data preview: GET /.env.0 HTTP/1.1
Host: 198.23.188.201
...
show more
Connection to port 80 with data transfer.
Data preview: GET /.env.0 HTTP/1.1
Host: 198.23.188.201
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Ap
show less
Port Scan
Hacking
๐ช๐ธ
NullBlue
2026-07-13 15:13:25
(1 day ago)
Web app attack: scanning for secrets/exploits (.env/.git/PHPUnit CVE). Captured by NullBlue67 honeyp ...
show more
Web app attack: scanning for secrets/exploits (.env/.git/PHPUnit CVE). Captured by NullBlue67 honeypot.
show less
Hacking
Web App Attack
๐ง๐ท
dominioz
2026-07-13 09:14:22
(1 day ago)
2026-07-13 09:14:12 GET /.env - - 165.245.186.111 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64; ...
show more
2026-07-13 09:14:12 GET /.env - - 165.245.186.111 HTTP/1.1 Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64;+rv:134.0)+Gecko/20100101+Firefox/134.0 - 301 666
2026-07-13 09:14:13 GET /.env - - 165.245.186.111 HTTP/1.1 Mozilla/5.0+(Linux;+Android+14;+SM-S928B)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/131.0.0.0+Mobile+Safari/537.36 - 301 666
2026-07-13 09:14:15 GET /.env - - 165.245.186.111 HTTP/1.1 Mozilla/5.0+(Linux;+Android+14;+SM-S928B)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/131.0.0.0+Mobile+Safari/537.36 http://dominioz.com.br/.env 301 786
2026-07-13 09:14:16 GET /err/ 404;https://dominioz.com.br:443/.env - 165.245.186.111 HTTP/1.1 Mozilla/5.0+(Linux;+Android+14;+SM-S928B)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/131.0.0.0+Mobile+Safari/537.36 https://dominioz.com.br//.env 200 0
...
show less
Web App Attack
๐ณ๐ฑ
ConsulHosting
2026-07-13 08:58:48
(1 day ago)
Excessive failed CAPTCHA attempts (CAPTCHA DoS)
Web App Attack
๐ฌ๐ง
Yosi
2026-07-13 07:50:54
(1 day ago)
RdpGuard detected brute-force attempt on HTTP
Brute-Force
๐บ๐ธ
Matthew Ping
2026-07-13 03:15:01
(1 day ago)
ModSecurity rule 949110 triggered on dedicated. Web application attack blocked by CSF/LFD.
Web App Attack
Hacking
Anonymous
2026-07-13 02:17:21
(1 day ago)
165.245.186.111 - - [13/Jul/2026:11:17:20 +0900] "GET /.env.docker HTTP/1.1" 403 495 "-" "Mozilla/5. ...
show more
165.245.186.111 - - [13/Jul/2026:11:17:20 +0900] "GET /.env.docker HTTP/1.1" 403 495 "-" "Mozilla/5.0 (Linux; Android 14; SM-S928B) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36"
165.245.186.111 - - [13/Jul/2026:11:17:20 +0900] "GET /.env.backup HTTP/1.1" 403 495 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
165.245.186.111 - - [13/Jul/2026:11:17:20 +0900] "GET /.env.local HTTP/1.1" 403 495 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Brute-Force
๐ฌ๐ง
andypiper
2026-07-13 01:02:29
(1 day ago)
CrowdSec ban for AbuseIPDB Top List
Brute-Force
Web App Attack
๐ฉ๐ช
NxtGenIT
2026-07-13 00:29:53
(1 day ago)
Tanner Honeypot hit, Event Type: , HTTP Method: POST, User Agent: , URI: /
SSH
๐ณ๐ฑ
Savvii
2026-07-13 00:26:20
(1 day ago)
20 attempts against mh-misbehave-ban on milky
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
โจ
2026-07-13 00:12:10
(1 day ago)
Domain : ws04.awebsheep.nl
Rule : env
2026-07-13 00:10:39 ***hidden-privacy*** GET /.env.defaults - ...
show more
Domain : ws04.awebsheep.nl
Rule : env
2026-07-13 00:10:39 ***hidden-privacy*** GET /.env.defaults - 80 - 165.245.186.111 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 Edg/131.0.0.0 - ws04.awebsheep.nl 403 0 0 12767 444 791 - -
show less
Hacking
SQL Injection