๐ช๐ธ
DXC-0
2026-06-15 03:00:28
(3 weeks ago)
Multiple attacks on Honeypot servers
Web Spam
Brute-Force
Web App Attack
Hacking
๐ฎ๐ฑ
spd.co.il
2026-06-14 19:01:44
(3 weeks ago)
Port scan detected on multiple ports
Port Scan
Anonymous
2026-06-14 14:05:07
(3 weeks ago)
WAF repeated trigger detected by Fail2Ban
Web App Attack
Anonymous
2026-06-14 08:17:38
(3 weeks ago)
194.163.153.247 - - [14/Jun/2026:07:52:21 +0000] "GET /.env.development HTTP/1.1" 404 4079 "-" "Mozi ...
show more
194.163.153.247 - - [14/Jun/2026:07:52:21 +0000] "GET /.env.development HTTP/1.1" 404 4079 "-" "Mozilla/5.0 (compatible)" "-"
194.163.153.247 - - [14/Jun/2026:07:52:55 +0000] "GET /.env.local.php HTTP/1.1" 404 4082 "-" "Mozilla/5.0 (compatible)" "-"
194.163.153.247 - - [14/Jun/2026:08:17:37 +0000] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible)" "-"
194.163.153.247 - - [14/Jun/2026:08:17:37 +0000] "GET /.env.production HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible)" "-"
194.163.153.247 - - [14/Jun/2026:08:17:37 +0000] "GET /.env.local HTTP/1.1" 444 0 "-" "Mozilla/5.0 (compatible)" "-"
...
show less
Port Scan
Brute-Force
๐บ๐ธ
markawes
2026-06-14 03:30:34
(3 weeks ago)
[SynFast] Auto banned by Fail2Ban. Reason: Web vulnerability scan detected. Evidence:
194.163.153.2 ...
show more
[SynFast] Auto banned by Fail2Ban. Reason: Web vulnerability scan detected. Evidence:
194.163.153.247 - - [14/Jun/2026:03:30:29 +0000] "GET /.env HTTP/1.1" 404 134 "-" "Mozilla/5.0 (compatible)"
194.163.153.247 - - [14/Jun/2026:03:30:33 +0000] "GET /.env.example HTTP/1.1" 404 134 "-" "Mozilla/5.0 (compatible)"
show less
Web App Attack
Port Scan
๐บ๐ธ
xxkodedxx
2026-06-14 01:23:22
(3 weeks ago)
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 12ร edge-block in 1 ...
show more
[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost)
Trigger: 12ร edge-block in 10m window.
Origin: DE / AS51167 Contabo GmbH
Active: 01:22:20 UTC
Volume: 12 HTTP req
Probed: /.env, /config/.env, /.env.backup, /.env.dev, /.env.bak
Status mix: 444ร12
Vhost fishing: 67.217.240.72
UA: "Mozilla/5.0 (compatible)"
Auto-banned 30d. zorvexus-banner.
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
zupan
2026-06-14 00:26:23
(3 weeks ago)
Blocked by UFW on vps [4000/tcp] | SPT: 56682 | TTL: 245 | LEN: 40 | TOS: 0x00 โข Reported by: github ...
show more
Blocked by UFW on vps [4000/tcp] | SPT: 56682 | TTL: 245 | LEN: 40 | TOS: 0x00 โข Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ฉ๐ช
et-a_network
2026-06-14 00:24:04
(3 weeks ago)
194.163.153.247 - - [14/Jun/2026:00:23:56 +0000] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (comp ...
show more
194.163.153.247 - - [14/Jun/2026:00:23:56 +0000] "GET /.env HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible)" host=87.106.176.162
194.163.153.247 - - [14/Jun/2026:00:23:56 +0000] "GET /.env.production HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible)" host=87.106.176.162
194.163.153.247 - - [14/Jun/2026:00:23:56 +0000] "GET /.env.local HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible)" host=87.106.176.162
194.163.153.247 - - [14/Jun/2026:00:24:04 +0000] "GET /.env.example HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible)" host=87.106.176.162
194.163.153.247 - - [14/Jun/2026:00:24:04 +0000] "GET /.env.prod HTTP/1.1" 301 162 "-" "Mozilla/5.0 (compatible)" host=87.106.176.162
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
todix
2026-06-13 23:39:59
(3 weeks ago)
Web App Attack Exploid from 194.163.153.247
Web App Attack
๐ฉ๐ช
Teufel100
2026-06-13 22:13:41
(3 weeks ago)
ModSecurity rejected a query
Brute-Force
Hacking
Web App Attack
๐ฉ๐ช
HoneyPotFRI
2026-06-13 21:41:11
(3 weeks ago)
194.163.153.247 - - [13/Jun/2026:23:40:55 +0200] "GET /docker-compose.override.yml HTTP/1.1" 404 125 ...
show more
194.163.153.247 - - [13/Jun/2026:23:40:55 +0200] "GET /docker-compose.override.yml HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible)"
194.163.153.247 [redacted] (51167-Contabo GmbH Germany DxC3xBCss
...
show less
Bad Web Bot
Web App Attack
๐ฉ๐ช
YF
2026-06-13 19:00:12
(3 weeks ago)
Environment file probe
Web App Attack
๐ฉ๐ช
Progetto1
2026-06-13 17:20:01
(3 weeks ago)
Detected via HAProxyScanner at 2026-06-13 17:20:01 UTC on destination port WEB (80/443). Repeated sc ...
show more
Detected via HAProxyScanner at 2026-06-13 17:20:01 UTC on destination port WEB (80/443). Repeated scan / connection.
show less
Port Scan
Hacking
Brute-Force
๐ฉ๐ช
Vegascosmetics
2026-06-13 15:34:03
(3 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after attack pattern. Vegas Security
Hacking
Brute-Force
๐ฉ๐ช
BlueWire Hosting
2026-06-13 11:40:59
(3 weeks ago)
Probing websites for vulnerabilities
Web App Attack
SQL Injection