This IP address has been reported a total of
34
times from
25 distinct
sources.
34.80.115.218 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
{"level":"info","ts":1781193633.1214535,"logger":"http.log.access.log1","msg":"handled request","req ...
show more{"level":"info","ts":1781193633.1214535,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.80.115.218","remote_port":"53604","client_ip":"34.80.115.218","proto":"HTTP/1.1","method":"GET","host":"hgfedcfedgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io","uri":"/v2/.env","headers":{"User-Agent":["Mozilla/5.0 (iPad; CPU OS 12_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) CriOS/76.0.3809.81 Mobile/15E148 Safari/605.1"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]}},"bytes_read":0,"user_id":"","duration":0.000114869,"size":0,"status":308,"resp_headers":{"Content-Type":[],"Server":["Caddy"],"Connection":["close"],"Location":["https://hgfedcfedgc7402a95-6fc9-4756-b4e6-fa6c7eeb29c6.random.159.89.98.98.nip.io/v2/.env"]}}
{"level":"info","ts":1781193633.1258752,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.80.115.218","remote_port":"53612","client_ip":"34.80.115.218",
...
show less
(mod_security) mod_security (id:210492) triggered by 34.80.115.218 (TW/Taiwan/218.115.80.34.bc.googl ...
show more(mod_security) mod_security (id:210492) triggered by 34.80.115.218 (TW/Taiwan/218.115.80.34.bc.googleusercontent.com): 10 in the last 3600 secs
show less
*Port Scan* detected from 34.80.115.218 (TW/Taiwan/Taipei City/Taipei/218.115.80.34.bc.googleusercon ...
show more*Port Scan* detected from 34.80.115.218 (TW/Taiwan/Taipei City/Taipei/218.115.80.34.bc.googleusercontent.com).
show less
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show moreAuto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-09.
show less
[WedJun1011:24:16.7511212026][security2:error][pid141183:tid141299][client34.80.115.218:0]ModSecurit ...
show more[WedJun1011:24:16.7511212026][security2:error][pid141183:tid141299][client34.80.115.218:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\|passwd\|group\)\|www_\?acl\)\|global\\\\\\\\.asa\|httpd\\\\\\\\.conf\|boot\\\\\\\\.ini\|web.config\)\\\\\\\\b\|\(\|\^\|\\\\\\\\.\\\\\\\\.\)/etc/\|/\\\\\\\\.\(\?:history\|bash_history\|sh_history\|env\)\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"spazi-web-hosting.artisteer-italia.org\"][uri\"/private/.env\"][unique_id\"aiktQEQYy5tj7k5szppxjAAAAQo\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
34.80.115.218 pi.patrz.eu - [10/Jun/2026:10:03:33 +0200] "GET /.env.testing HTTP/1.1" 404 1211 "-" " ...
show more34.80.115.218 pi.patrz.eu - [10/Jun/2026:10:03:33 +0200] "GET /.env.testing HTTP/1.1" 404 1211 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows CE; IEMobile 6.12; Microsoft ZuneHD 4.3)"
...
show less