๐ฌ๐ง
Oakley
2026-07-11 07:07:45
(1 hour ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐ง๐ท
Halux
2026-07-11 07:04:41
(1 hour ago)
45.61.148.157 Probing protected path or service
Web App Attack
๐ฉ๐ช
pltcldvlpr
2026-07-11 06:59:29
(1 hour ago)
CMS/framework probe: 45.61.148.157 - - [11/Jul/2026:08:59:29 +0200] "GET /.env HTTP/1.1" 200 455 "-" ...
show more
CMS/framework probe: 45.61.148.157 - - [11/Jul/2026:08:59:29 +0200] "GET /.env HTTP/1.1" 200 455 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" asn=14956 org="RouterHosting LLC" country=US
...
show less
Web App Attack
๐ซ๐ท
ecode hosting
2026-07-11 05:03:05
(3 hours ago)
Domain : 3dteknoloji.com.tr
Rule : env
2026-07-11 05:01:25 10.100.1.20 GET /.env - 80 - 45.61.148.15 ...
show more
Domain : 3dteknoloji.com.tr
Rule : env
2026-07-11 05:01:25 10.100.1.20 GET /.env - 80 - 45.61.148.157 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 - 3dteknoloji.com.tr 301 0 0 381 192 220 - -
show less
Hacking
SQL Injection
๐จ๐ญ
4server
2026-07-11 05:03:03
(3 hours ago)
[SatJul1107:02:57.3178902026][security2:error][pid88622:tid89171][client45.61.148.157:0]ModSecurity: ...
show more
[SatJul1107:02:57.3178902026][security2:error][pid88622:tid89171][client45.61.148.157:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"4-server.com\"][uri\"/.env\"][unique_id\"alHOgapIhZ7d188eK5uxBwAAAEY\"]
show less
Hacking
Web App Attack
๐บ๐ธ
dtorrer
2026-07-11 05:00:59
(3 hours ago)
General vulnerability scan.
Port Scan
๐ท๐บ
DZBOT
2026-07-11 04:53:59
(3 hours ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐ง๐ท
Peregrine
2026-07-11 03:17:12
(5 hours ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.61.148.157 - - [10/Jul/2026:07:58:20 -0300] "GET /.e ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: - 45.61.148.157 - - [10/Jul/2026:07:58:20 -0300] "GET /.env HTTP/1.1" 404 414
- 45.61.148.157 - - [10/Jul/2026:07:58:20 -0300] "GET /.env HTTP/1.1" 404 414
show less
Bad Web Bot
๐ซ๐ท
โจ
2026-07-11 03:07:16
(5 hours ago)
Domain : 133development.com
Rule : env
2026-07-11 03:06:01 ***hidden-privacy*** GET /.env - 80 - 45. ...
show more
Domain : 133development.com
Rule : env
2026-07-11 03:06:01 ***hidden-privacy*** GET /.env - 80 - 45.61.148.157 HTTP/1.1 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 - 133development.com 301 0 0 414 192 134 - -
show less
Hacking
SQL Injection
๐ณ๐ฑ
COMPLEX
2026-07-11 03:01:25
(5 hours ago)
Unsolicited TCP traffic | Action: DROP | Port 443
Phishing
๐ซ๐ฎ
000rosiu
2026-07-11 02:53:45
(5 hours ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoi ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoint: /.env | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
mw
2026-07-11 00:01:13
(8 hours ago)
GET /.env HTTP/1.1
Web App Attack
๐จ๐ณ
WMK965
2026-07-10 20:34:23
(11 hours ago)
45.61.148.157 - - [11/Jul/2026:04:25:20 +0800] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows ...
show more
45.61.148.157 - - [11/Jul/2026:04:25:20 +0800] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-"
45.61.148.157 - - [11/Jul/2026:04:25:21 +0800] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-"
45.61.148.157 - - [11/Jul/2026:04:34:22 +0800] "GET /.env HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-"
show less
Port Scan
Web App Attack
Anonymous
2026-07-10 15:52:47
(16 hours ago)
Reported from Nginx log analysis 11. Log: 45.61.148.157 - - [10/Jul/2026:xx:xx:xx 0200] "GET /.env ...
show more
Reported from Nginx log analysis 11. Log: 45.61.148.157 - - [10/Jul/2026:xx:xx:xx 0200] "GET /.env HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Safari/537.36" "-" "US United States Las Vegas" "AS14956" "RouterHosting LLC"
show less
Port Scan
Brute-Force
SSH
๐จ๐ณ
pengpeng
2026-07-10 13:47:19
(18 hours ago)
monitor: on VM-0-7-ubuntu | port: 443 | ttl: 250 script: github.com/sefinek/UFW-AbuseIPDB-Reporter
Port Scan