๐ซ๐ท
Catalin Negru
2026-07-04 17:05:39
(5 days ago)
2026-06-06 05:49:05,948 fail2ban.actions [1034576]: NOTICE [apache-dirscan] Ban 194.140.199. ...
show more
2026-06-06 05:49:05,948 fail2ban.actions [1034576]: NOTICE [apache-dirscan] Ban 194.140.199.137
2026-06-06 05:49:05,989 fail2ban.actions [1034576]: NOTICE [apache-404] Ban 194.140.199.137
2026-06-06 05:49:06,151 fail2ban.actions [1034576]: NOTICE [web-scanner] Ban 194.140.199.137
2026-06-06 05:49:06,183 fail2ban.actions [1034576]: NOTICE [laravel-auth] Ban 194.140.199.137
2026-06-06 05:49:06,363 fail2ban.actions [1034576]: NOTICE [laravel-env] Ban 194.140.199.137
...
show less
Brute-Force
Web App Attack
๐บ๐ธ
RH5
2026-06-12 01:47:54
(4 weeks ago)
Restricted URL probing (/.env) (UTC 2026-06-12 01:47)
Web App Attack
๐ซ๐ท
cityhunter_rhone
2026-06-11 07:30:04
(4 weeks ago)
Mercurius Guide auto detection | source=Fail2Ban | scraper score=5 | events=1 | decision=datacenter ...
show more
Mercurius Guide auto detection | source=Fail2Ban | scraper score=5 | events=1 | decision=datacenter | actions=fail2ban failed plesk-modsecurity | last_seen=2026-06-11 09:17:16
show less
Brute-Force
SSH
Web App Attack
๐จ๐ฆ
john doe
2026-06-11 05:00:38
(4 weeks ago)
SentinelBot: Env File Hunting (score: 73)
Bad Web Bot
๐ง๐ช
cmbplf
2026-06-10 20:05:20
(4 weeks ago)
2.878 requests from abuseipdb.com blacklisted IP (1yr2w2d)
Brute-Force
Bad Web Bot
๐ซ๐ท
Lino Project
2026-06-10 19:53:56
(4 weeks ago)
194.140.199.137 - - [10/Jun/2026:21:53:53 +0200] "GET /.env HTTP/1.1" 302 505 "-" "Mozilla/5.0 (Maci ...
show more
194.140.199.137 - - [10/Jun/2026:21:53:53 +0200] "GET /.env HTTP/1.1" 302 505 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
194.140.199.137 - - [10/Jun/2026:21:53:54 +0200] "GET /vendor/.env HTTP/1.1" 302 519 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
...
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
elcruzado.es
2026-06-10 17:45:56
(4 weeks ago)
(mod_security) mod_security triggered on hostname [redacted] 194.140.199.137 (US/United States/vmi32 ...
show more
(mod_security) mod_security triggered on hostname [redacted] 194.140.199.137 (US/United States/vmi3225528.contaboserver.net)
show less
SQL Injection
๐ญ๐บ
whitehoodie
2026-06-09 21:26:00
(1 month ago)
AUTOMATED REPORT: Tried to access .env file
Hacking
Bad Web Bot
Web App Attack
๐ซ๐ท
Catalin Negru
2026-06-09 17:04:51
(1 month ago)
2026-06-06 05:49:05,948 fail2ban.actions [1034576]: NOTICE [apache-dirscan] Ban 194.140.199. ...
show more
2026-06-06 05:49:05,948 fail2ban.actions [1034576]: NOTICE [apache-dirscan] Ban 194.140.199.137
2026-06-06 05:49:05,989 fail2ban.actions [1034576]: NOTICE [apache-404] Ban 194.140.199.137
2026-06-06 05:49:06,151 fail2ban.actions [1034576]: NOTICE [web-scanner] Ban 194.140.199.137
2026-06-06 05:49:06,183 fail2ban.actions [1034576]: NOTICE [laravel-auth] Ban 194.140.199.137
2026-06-06 05:49:06,363 fail2ban.actions [1034576]: NOTICE [laravel-env] Ban 194.140.199.137
...
show less
Brute-Force
Web App Attack
๐บ๐ฆ
Scientific Route
2026-06-09 10:05:20
(1 month ago)
194.140.199.137 - - [09/Jun/2026:13:05:19 +0300] "GET /.env HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Maci ...
show more
194.140.199.137 - - [09/Jun/2026:13:05:19 +0300] "GET /.env HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
194.140.199.137 - - [09/Jun/2026:13:05:19 +0300] "GET /sendgrid.env HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-06-09 10:05:19
(1 month ago)
194.140.199.137 - - [09/Jun/2026:13:05:18 +0300] "GET /.env HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Maci ...
show more
194.140.199.137 - - [09/Jun/2026:13:05:18 +0300] "GET /.env HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
194.140.199.137 - - [09/Jun/2026:13:05:19 +0300] "GET /sendgrid.env HTTP/1.1" 404 493 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36"
...
show less
Web App Attack
๐ฎ๐ฉ
Burayot
2026-06-09 08:30:54
(1 month ago)
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.140.199.137 (US/United States/vm ...
show more
LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 194.140.199.137 (US/United States/vmi3225528.contaboserver.net): 1 in the last 3600 secs
show less
Web App Attack
๐ง๐ท
Peregrine
2026-06-09 03:13:06
(1 month ago)
Fail2Ban S3 Jail: tomcat-honeypot | Evidence: - 194.140.199.137 - - [02/Jun/2026:14:13:30 -0300] "GE ...
show more
Fail2Ban S3 Jail: tomcat-honeypot | Evidence: - 194.140.199.137 - - [02/Jun/2026:14:13:30 -0300] "GET /.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:31 -0300] "GET /sendgrid.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:31 -0300] "GET /core/.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:31 -0300] "GET /vendor/.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:32 -0300] "GET /assets/.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:32 -0300] "GET /storage/.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:33 -0300] "GET /public/.env HTTP/1.1" 404 414
- 194.140.199.137 - - [02/Jun/2026:14:13:34 -0300] "GET /admin/.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐ฉ๐ช
ecs.ge
2026-06-08 21:16:28
(1 month ago)
Automatic Fail2Ban report from jail plesk-modsecurity: multiple matching events detected.
Web App Attack
Hacking
๐ฑ๐ป
garmtech.com
2026-06-08 18:11:18
(1 month ago)
Attempted access to sensitive endpoint (/.env) detected. Automated scan or unauthorized probing.
Web App Attack