๐จ๐ฟ
Prcek
2026-06-08 11:02:49
(3 weeks ago)
PortScan:HOST=195.179.238.15,DPORTS=443
Port Scan
๐ฉ๐ช
Ba-Yu
2026-06-08 10:32:25
(3 weeks ago)
General hacking/exploits/scanning
Web Spam
Hacking
Brute-Force
Exploited Host
Web App Attack
๐ฒ๐พ
Rizzy
2026-06-08 10:03:39
(3 weeks ago)
Multiple WAF Violations
Brute-Force
Web App Attack
๐บ๐ธ
sandap1
2026-06-08 08:55:00
(3 weeks ago)
Blocked by os-abuseipdb; 36 hits, proto=tcp, ports=443,src_ip=195.179.238.15
Port Scan
Hacking
๐ฆ๐บ
paulshipley.com.au
2026-06-08 08:12:56
(3 weeks ago)
[Mon Jun 08 18:12:56.062348 2026] [security2:error] [pid 78120] [client 195.179.238.15:38354] [clien ...
show more
[Mon Jun 08 18:12:56.062348 2026] [security2:error] [pid 78120] [client 195.179.238.15:38354] [client 195.179.238.15] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "dlcarterauthor.com"] [uri "/.env"] [unique_id "aiZ5iO1alEFtKZDYm2ghDAAAAAo"]
...
show less
Web App Attack
๐ธ๐ช
nekopavel
2026-06-08 07:07:49
(3 weeks ago)
195.179.238.15 - - [08/Jun/2026:09:07:46 +0200]"GET / HTTP/1.1" 200 127121"https://reze.moe/dev/.env ...
show more
195.179.238.15 - - [08/Jun/2026:09:07:46 +0200]"GET / HTTP/1.1" 200 127121"https://reze.moe/dev/.env" mishashto.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36""0.113" "0.000""Asheville" "US"
195.179.238.15 - - [08/Jun/2026:09:07:46 +0200]"GET / HTTP/1.1" 200 127121"https://reze.moe/admin/.env" mishashto.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36""0.119" "0.001""Asheville" "US"
195.179.238.15 - - [08/Jun/2026:09:07:46 +0200]"GET / HTTP/1.1" 200 127121"https://reze.moe/members/.env" mishashto.com "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36""0.122" "0.000""Asheville" "US"
...
show less
Hacking
Bad Web Bot
Web App Attack
๐ฏ๐ต
Watch40x
2026-06-08 06:46:23
(3 weeks ago)
Automated report from Watch40x security system. Web application probing detected.
Web App Attack
๐บ๐ธ
antlac1
2026-06-08 03:52:29
(3 weeks ago)
crowdsecurity/http-sensitive-files
Brute-Force
Web App Attack
๐ฉ๐ช
Nevermind
2026-06-08 02:24:29
(3 weeks ago)
195.179.238.15 - - [08/Jun/2026:04:24:28 +0200] "GET /laravel/.env HTTP/1.1" 403 4206 "-" "Mozilla/5 ...
show more
195.179.238.15 - - [08/Jun/2026:04:24:28 +0200] "GET /laravel/.env HTTP/1.1" 403 4206 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
195.179.238.15 - - [08/Jun/2026:04:24:28 +0200] "GET /api/.env.save HTTP/1.1" 403 4206 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
195.179.238.15 - - [08/Jun/2026:04:24:28 +0200] "GET /api/.env HTTP/1.1" 403 4206 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
195.179.238.15 - - [08/Jun/2026:04:24:28 +0200] "GET /.env.save HTTP/1.1" 403 4206 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36"
...
show less
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-07 23:43:53
(3 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 127
Exploited Host
Web App Attack
๐ฌ๐ง
WebNiraj
2026-06-07 23:01:38
(3 weeks ago)
(mod_security) mod_security (id:949110) triggered by 195.179.238.15 (US/United States/-): 5 in the l ...
show more
(mod_security) mod_security (id:949110) triggered by 195.179.238.15 (US/United States/-): 5 in the last 3600 secs [SIGMA]
show less
Brute-Force
๐ฌ๐ง
Shadymint
2026-06-07 22:25:32
(3 weeks ago)
url probing from IP marked as abusive
Web App Attack
๐ฉ๐ช
LRob.fr
2026-06-07 18:45:09
(3 weeks ago)
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
Bad Web Bot
Anonymous
2026-06-07 18:37:08
(3 weeks ago)
(caddyscan) Scanner path probe from 195.179.238.15 (US/United States/-): 5 in the last 3600 secs; Po ...
show more
(caddyscan) Scanner path probe from 195.179.238.15 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: [REDACTED] 200 2627 195.179.238.15 - - [07/Jun/2026:18:37:02 +0000] "GET /backend/.env HTTP/1.1"
[REDACTED] 200 2627 195.179.238.15 - - [07/Jun/2026:18:37:02 +0000] "GET /app/.env HTTP/1.1"
[REDACTED] 200 2627 195.179.238.15 - - [07/Jun/2026:18:37:02 +0000] "GET /admin/.env HTTP/1.1"
[REDACTED] 200 2627 195.179.238.15 - - [07/Jun/2026:18:37:02 +0000] "GET /.env HTTP/1.1"
[REDACTED] 200 2627 195.179.238.15 - - [07/Jun/2026:18:37:02 +0000] "GET /core/.env.save HTTP/1.1"
show less
Port Scan
๐ฌ๐ง
consul.to
2026-06-07 16:52:53
(3 weeks ago)
Web attack/malicious scanning detected
Web App Attack