๐บ๐ธ
xmission.com
2025-09-14 22:07:02
(9 months ago)
Blocked by UFW (TCP on 8808)
Source port: 61015
TTL: 239
Packet length: 44
TOS: 0x08
This report (f ...
show more
Blocked by UFW (TCP on 8808)
Source port: 61015
TTL: 239
Packet length: 44
TOS: 0x08
This report (for 159.203.81.173) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2024-07-10 13:08:42
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 10 09:08:34.358450 2024] [security2:error] [pid 1631] [client 159.203.81.173:38436] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.217"] [uri "/.git/config"] [unique_id "Zo6H0hN8Zm76OJrmx8WAhgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
alliance
2024-07-10 12:29:22
(1 year ago)
10.07.2024 12:29:22 Git repository scan (/.git)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-10 12:17:02
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 10 08:16:57.983255 2024] [security2:error] [pid 18187:tid 47400485947136] [client 159.203.81.173:57158] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.22"] [uri "/.git/config"] [unique_id "Zo57uT5uqOLItnEb39oSdgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-10 11:57:01
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 10 07:56:57.601933 2024] [security2:error] [pid 20606] [client 159.203.81.173:48692] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.137"] [uri "/.git/config"] [unique_id "Zo53Cf-GrJl06hJNkxznmQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-10 09:04:46
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 10 05:04:39.485878 2024] [security2:error] [pid 28969] [client 159.203.81.173:40668] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.145"] [uri "/.git/config"] [unique_id "Zo5Op-yqRsX-OPteWTG9xAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐น
begou.dev
2024-07-10 08:32:19
(1 year ago)
[Threat Intelligence] FrozenThreat: Port Scanning and/or Unauthorized access -> HoneyPots:PORT/80
Port Scan
๐ณ๐ฑ
vestibtech
2024-07-10 08:26:50
(1 year ago)
159.203.81.173 - - [10/Jul/2024:02:26:50 -0600] "GET /.git/config HTTP/1.1" 300 3523 "-" "Mozilla/5. ...
show more
159.203.81.173 - - [10/Jul/2024:02:26:50 -0600] "GET /.git/config HTTP/1.1" 300 3523 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
...
show less
Web App Attack
Anonymous
2024-07-10 06:56:03
(1 year ago)
159.203.81.173 - - [10/Jul/2024:08:56:02 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 ...
show more
159.203.81.173 - - [10/Jul/2024:08:56:02 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36"
show less
Web App Attack
๐ธ๐ช
webbfabriken
2024-07-10 06:11:16
(1 year ago)
spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbf ...
show more
spam or other hacking activities reported by webbfabriken security servers
Attack reported by Webbfabiken Security API - WFSecAPI
show less
Web Spam
๐บ๐ธ
TPI-Abuse
2024-07-10 03:53:50
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 09 23:53:43.687691 2024] [security2:error] [pid 7712] [client 159.203.81.173:40724] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.215"] [uri "/.git/config"] [unique_id "Zo4Fx6k149FAQ3qfidlEHAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-10 03:17:40
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 09 23:17:37.001117 2024] [security2:error] [pid 16923] [client 159.203.81.173:60446] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.64"] [uri "/.git/config"] [unique_id "Zo39UQ8EdpGgiMYJ-FhwdAAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
raspi4
2024-07-10 02:26:48
(1 year ago)
Fail2Ban Ban Triggered
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-10 02:16:20
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 09 22:16:14.175998 2024] [security2:error] [pid 2360553] [client 159.203.81.173:47506] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.59"] [uri "/.git/config"] [unique_id "Zo3u7neEDIdoMrC2wrJzoQAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-07-10 01:27:22
(1 year ago)
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 159.203.81.173 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 09 21:27:18.584559 2024] [security2:error] [pid 21616] [client 159.203.81.173:38252] [client 159.203.81.173] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.179"] [uri "/.git/config"] [unique_id "Zo3jdj8fX1qaTyJBR1KYnAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack