This IP address has been reported a total of
11
times from
9 distinct
sources.
34.83.254.112 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show moreAuto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-08.
show less
Web App Attack
SSH
Hacking
Anonymous
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ...
show moreBlocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing
show less
Bad Web Bot
Web App Attack
Anonymous
Blocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: Word ...
show moreBlocked by FortiWeb WAF ML threat detection. ML probability: 99%, Country: US, Attack patterns: WordPress scanning, Backup file probing, Cloud secrets probing
show less
[MonJun0813:10:07.3827352026][security2:error][pid1135271:tid1135396][client34.83.254.112:0]ModSecur ...
show more[MonJun0813:10:07.3827352026][security2:error][pid1135271:tid1135396][client34.83.254.112:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Patternmatch\"\(\?i\)\(\?:/\(\?:\^\|/\)\\\\\\\\.\(env\|git\|svn\|hg\|DS_Store\)\|/\(\?:wp-config\|\\\\\\\\.htaccess\|\\\\\\\\.htpasswd\)\|\\\\\\\\.\(\?:sql\|bak\|old\|log\)\$\)\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"156\"][id\"960720\"][msg\"Forbiddenfileaccessattempt\"][severity\"CRITICAL\"][hostname\"www.risanamento-funghi-muffa.ch.136-243-54-122.cpanel.site\"][uri\"/.env.prod.bak\"][unique_id\"aiajD1HwKwh0JBVK3zvOYQAAAQw\"]
show less
Port Scan
Brute-Force
Web App Attack
Anonymous
Multiple web server 400 error codes from same source ip
{"level":"info","ts":1780900359.7873104,"logger":"http.log.access.log1","msg":"handled request","req ...
show more{"level":"info","ts":1780900359.7873104,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.83.254.112","remote_port":"47312","client_ip":"34.83.254.112","proto":"HTTP/1.1","method":"GET","host":"status.managewarepro.nl","uri":"/env.backup","headers":{"User-Agent":["SonyEricssonT68/R201A"],"Accept-Charset":["utf-8"],"Accept-Encoding":["gzip"],"Connection":["close"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"","server_name":"status.managewarepro.nl","ech":false}},"bytes_read":0,"user_id":"","duration":0.004428304,"size":0,"status":429,"resp_headers":{"Server":["Caddy"],"Alt-Svc":["h3=\":443\"; ma=2592000"],"Retry-After":["1"]}}
{"level":"info","ts":1780900359.8143125,"logger":"http.log.access.log1","msg":"handled request","request":{"remote_ip":"34.83.254.112","remote_port":"47286","client_ip":"34.83.254.112","proto":"HTTP/1.1","method":"GET","host":"status.managewarepro.nl","uri":"/.env.test","headers":{"Accept-Encoding":["gzip"],"
...
show less