๐ซ๐ท
SpaceHost-Server
2026-07-09 22:29:25
(4 days ago)
Brute-Force
Web App Attack
๐ต๐ฑ
nakordoni.eu
2026-07-09 05:30:02
(5 days ago)
Blocked by nakordoni.eu automated security: nakordoni-probe-gate. Jail: nakordoni-probe-gate, 1 matc ...
show more
Blocked by nakordoni.eu automated security: nakordoni-probe-gate. Jail: nakordoni-probe-gate, 1 matches. ISP: Google LLC (NL), Usage: Data Center/Web Hosting/Transit. Prior AbuseIPDB score at ban time: 100/100.
show less
Bad Web Bot
Web App Attack
๐ณ๐ฑ
e.fierstra
2026-07-09 05:22:46
(5 days ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐ฉ๐ช
IloGus
2026-07-09 05:15:33
(5 days ago)
WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 05:10:01
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.147.21.110 (110.21.147.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.147.21.110 (110.21.147.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 01:09:54.277588 2026] [security2:error] [pid 21730:tid 21730] [client 34.147.21.110:42294] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cmcnyc.com"] [uri "/.env"] [unique_id "ak8tIsbbwcMzhZJ_MQxCcwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
danskefilm.dk
2026-07-09 05:00:01
(5 days ago)
wordpress login attempts
Web App Attack
Anonymous
2026-07-09 04:46:58
(5 days ago)
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compat ...
show more
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /backend/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /.env.production HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /.git/config HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /phpinfo.php HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /wp-config.php HTTP/1.1" 403 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /actuator/env HTTP/1.1" 404 124 "-" "Mozilla/5.0 (compatible; Precheck/1.0)"
34.147.21.110 - - [09/Jul/2026:06:46:54 +0200] "GET /backup/.env HTTP/1.1" 403 124 "-" "Mozilla/5.0 (co
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-07-09 04:46:00
(5 days ago)
Automatically blocked after 2 security events. Observed sensitive configuration-file probes. Source: ...
show more
Automatically blocked after 2 security events. Observed sensitive configuration-file probes. Source: Cloudflare security controls.
show less
Hacking
Web App Attack
๐บ๐ธ
Mundo Bueno
2026-07-09 04:43:58
(5 days ago)
[ISILIA Protection v2.1] Tentative d'accรจs: /.env | Pays: NL | UA: Mozilla/5.0 (compatible; Precheck ...
show more
[ISILIA Protection v2.1] Tentative d'accรจs: /.env | Pays: NL | UA: Mozilla/5.0 (compatible; Precheck/1.0)
show less
Hacking
Web App Attack
Anonymous
2026-07-09 04:41:04
(5 days ago)
Bot / scanning and/or hacking attempts: GET /backup/.env HTTP/1.1, GET /wp-config.php HTTP/1.1, GET ...
show more
Bot / scanning and/or hacking attempts: GET /backup/.env HTTP/1.1, GET /wp-config.php HTTP/1.1, GET / HTTP/1.1, GET /phpinfo.php HTTP/1.1, GET /.git/config HTTP/1.1, GET /.env.production HTTP/1.1, GET /backend/.env HTTP/1.1, GET /actuator/env HTTP/1.1, GET /.env HTTP/1.1
show less
Hacking
Web App Attack
๐ฌ๐ง
consul.to
2026-07-09 04:37:30
(5 days ago)
Web attack/malicious scanning detected
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 04:31:06
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.147.21.110 (110.21.147.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.147.21.110 (110.21.147.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 00:31:02.641024 2026] [security2:error] [pid 28300:tid 28300] [client 34.147.21.110:49818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.renomarsh.com"] [uri "/.env"] [unique_id "ak8kBk1IpM7wvo3QxPj9zwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
paissangroup
2026-07-09 04:30:24
(5 days ago)
Multiple WAF Violations
Web App Attack
๐ฌ๐ง
Apache
2026-07-09 04:23:49
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 34.147.21.110 (110.21.147.34.bc.googleuserconte ...
show more
(mod_security) mod_security (id:210492) triggered by 34.147.21.110 (110.21.147.34.bc.googleusercontent.com): 5 in the last 300 secs (CF_ENABLE)
show less
Brute-Force
Web App Attack
๐ฉ๐ช
macrob
2026-07-09 04:21:10
(5 days ago)
2026/07/09 04:21:08 [error] 2281905#2281905: *361795501 access forbidden by rule, client: 34.147.21. ...
show more
2026/07/09 04:21:08 [error] 2281905#2281905: *361795501 access forbidden by rule, client: 34.147.21.110, server: binixo.ph, request: "GET /.env HTTP/1.1", host: "binixo.ph"
2026/07/09 04:21:08 [error] 2281905#2281905: *361795501 access forbidden by rule, client: 34.147.21.110, server: binixo.ph, request: "GET /backend/.env HTTP/1.1", host: "binixo.ph"
2026/07/09 04:21:08 [error] 2281905#2281905: *361795501 access forbidden by rule, client: 34.147.21.110, server: binixo.ph, request: "GET /.env.production HTTP/1.1", host: "binixo.ph"
...
show less
Web App Attack