๐ฌ๐ง
thetomtaylor.co.uk
2026-07-02 02:09:01
(6 hours ago)
Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [mx02,mx03]
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-02 01:08:02
(7 hours ago)
Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice01,ice02,wa01,wa02]
Hacking
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Lee Daniel
2026-07-01 22:49:01
(9 hours ago)
34.162.199.240 - - [01/Jul/2026:18:49:01 -0400] "GET /.env HTTP/1.1" 403 4799 "-" "python-requests/2 ...
show more
34.162.199.240 - - [01/Jul/2026:18:49:01 -0400] "GET /.env HTTP/1.1" 403 4799 "-" "python-requests/2.34.2"
...
show less
DDoS Attack
Web Spam
Email Spam
Port Scan
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 22:12:40
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 18:12:35.954418 2026] [security2:error] [pid 27673:tid 27673] [client 34.162.199.240:50264] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "auditsupports.com"] [uri "/.env"] [unique_id "akWQ02dALSB-_OKXEd5_kQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-07-01 22:05:12
(10 hours ago)
Abuse Detected (4)
Brute-Force
Web App Attack
Anonymous
2026-07-01 22:00:15
(10 hours ago)
IP banned by Fail2Ban in jail nginx-abusive-ips
Web App Attack
Brute-Force
Bad Web Bot
๐บ๐ธ
jsjdmediallc
2026-07-01 22:00:05
(10 hours ago)
Auto-blocked: score 19 (threshold 10). Tier: HIGH. Hits: 3. Flags: script-ua, env-file. Paths: /.env ...
show more
Auto-blocked: score 19 (threshold 10). Tier: HIGH. Hits: 3. Flags: script-ua, env-file. Paths: /.env, /.env, /.env
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:53:44
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:53:38.959159 2026] [security2:error] [pid 25961:tid 25961] [client 34.162.199.240:50864] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "atame.com"] [uri "/.env"] [unique_id "akWMYnYu6u5ZFoIVbCXtmwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-01 21:34:10
(10 hours ago)
34.162.199.240 - - [01/Jul/2026:21:34:09 +0000] "GET /.env HTTP/1.1" 404 437 "-" "python-requests/2. ...
show more
34.162.199.240 - - [01/Jul/2026:21:34:09 +0000] "GET /.env HTTP/1.1" 404 437 "-" "python-requests/2.34.2"
...
show less
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 21:31:06
(11 hours ago)
(mod_security) mod_security (id:949110) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:949110) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:30:59.339973 2026] [security2:error] [pid 31909:tid 31909] [client 34.162.199.240:50832] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "asegreen.com"] [uri "/.env"] [unique_id "akWHE5FSbnEwhOEPjE0OKQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-07-01 21:20:18
(11 hours ago)
Bad bot ignoring robot.txt
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-01 21:09:35
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 17:09:31.672484 2026] [security2:error] [pid 4825:tid 4825] [client 34.162.199.240:50806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aromatherapyricebags.com"] [uri "/.env"] [unique_id "akWCCwTDf1K8Ec4ndWxI6AAAAB4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-01 20:58:32
(11 hours ago)
dot file probe
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-07-01 20:55:07
(11 hours ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-01 20:54:29
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercon ...
show more
(mod_security) mod_security (id:210492) triggered by 34.162.199.240 (240.199.162.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 16:54:25.063551 2026] [security2:error] [pid 3805:tid 3805] [client 34.162.199.240:50682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ardeeapps.com"] [uri "/.env"] [unique_id "akV-gYMtwnsuO8sBJ22m1wAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack