๐ง๐ท
Peregrine
2026-07-16 03:17:30
(1 day ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:25:58 -030 ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:25:58 -0300] "GET /.env HTTP/1.1" 404 414
8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:26:00 -0300] "GET /.git/config HTTP/1.1" 404 414
show less
Bad Web Bot
๐ง๐ท
Peregrine
2026-07-15 03:17:12
(2 days ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:25:58 -030 ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:25:58 -0300] "GET /.env HTTP/1.1" 404 414
8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:26:00 -0300] "GET /.git/config HTTP/1.1" 404 414
show less
Bad Web Bot
Anonymous
2026-07-14 16:32:12
(2 days ago)
Failed login attempt detected by Fail2Ban in plesk-modsecurity jail
Exploited Host
๐ง๐ท
Peregrine
2026-07-14 03:17:08
(3 days ago)
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:25:58 -030 ...
show more
Fail2Ban Jail: tomcat-honeypot | Evidence: 8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:25:58 -0300] "GET /.env HTTP/1.1" 404 414
8.222.196.230 172.70.142.7 - - [12/Jul/2026:22:26:00 -0300] "GET /.git/config HTTP/1.1" 404 414
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-13 05:24:33
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 01:24:28.052814 2026] [security2:error] [pid 15292:tid 15292] [client 8.222.196.230:37552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "abs.grabnerconsulting.com"] [uri "/.env"] [unique_id "alR2jGETB6xnSfbDX0hXYwAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:48:13
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:48:06.442332 2026] [security2:error] [pid 9268:tid 9276] [client 8.222.196.230:33030] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alexidevilliers.cynosureinternetservices.com"] [uri "/.env"] [unique_id "alRuBh7Qc2PYjpgua2kY5gAAAIQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-13 04:45:01
(4 days ago)
suspicious request in access.log
Web App Attack
๐จ๐ญ
ALPHANET
2026-07-13 04:43:42
(4 days ago)
web exploits
Hacking
Exploited Host
Web App Attack
๐ซ๐ท
masterguru
2026-07-13 04:38:42
(4 days ago)
Restricted File Access Attempt. Matched phrase ".env" at REQUEST_FILENAME. (930130-193)
Hacking
Web App Attack
Anonymous
2026-07-13 04:10:38
(4 days ago)
Web Server Exposed Git Repository Information Disclosure.
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-13 03:32:31
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:32:25.917884 2026] [security2:error] [pid 6409:tid 6409] [client 8.222.196.230:50360] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "harwoodmechanical.com"] [uri "/.env"] [unique_id "alRcScVXlz2-tODmZxJ8ZwAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
BlueWire Hosting
2026-07-13 03:20:58
(4 days ago)
Probing websites for vulnerabilities
Web App Attack
๐ช๐ธ
librebit
2026-07-13 03:09:10
(4 days ago)
Brute force
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-13 03:06:12
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:06:07.372314 2026] [security2:error] [pid 15674:tid 15674] [client 8.222.196.230:38738] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "d-sinema.com"] [uri "/.env"] [unique_id "alRWH3919aCYuvjHehJZkwAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 02:51:09
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 8.222.196.230 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 22:51:02.421384 2026] [security2:error] [pid 10298:tid 10298] [client 8.222.196.230:39390] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chickenchristmascards.com"] [uri "/.env"] [unique_id "alRSljtj65cRpKlyQQFeIwAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack