Anonymous
2026-07-15 17:31:09
(45 minutes ago)
Web App Attack
Brute-Force
Web App Attack
๐บ๐ธ
xmission.com
2026-07-07 10:03:30
(1 week ago)
Blocked by UFW (TCP on 8443)
Source port: 12342
TTL: 58
Packet length: 60
TOS: 0x00
This report (fo ...
show more
Blocked by UFW (TCP on 8443)
Source port: 12342
TTL: 58
Packet length: 60
TOS: 0x00
This report (for 172.69.214.23) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ฆ๐ฑ
router.al
2026-07-02 17:02:42
(1 week ago)
07/02/2026-17:02:41.811648 172.69.214.23 Protocol: 6 ET SCAN LeakIX Inbound User-Agent
Hacking
Anonymous
2026-05-07 00:58:27
(2 months ago)
Web App Attack
Brute-Force
Web App Attack
Anonymous
2026-04-21 18:28:10
(2 months ago)
Web App Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-20 08:18:56
(2 months ago)
(mod_security) mod_security (id:210730) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 04:18:52.548368 2026] [security2:error] [pid 208695:tid 208695] [client 172.69.214.23:10888] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||autodiscover.guardmagic.com|F|2"] [data "[email protected] "] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "autodiscover.guardmagic.com"] [uri "/autodiscover/autodiscover.json/v1.0/[email protected] "] [unique_id "aeXhbHZi8GFipre_4DNcIAAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wolfemium
2026-04-18 22:05:20
(2 months ago)
172.69.214.23 - - [19/Apr/2026:01:04:53 +0300] "GET /error.php HTTP/1.1" 502 150 "-" "-"
172.69.214. ...
show more
172.69.214.23 - - [19/Apr/2026:01:04:53 +0300] "GET /error.php HTTP/1.1" 502 150 "-" "-"
172.69.214.23 - - [19/Apr/2026:01:05:18 +0300] "GET /option.php HTTP/1.1" 502 150 "-" "-"
172.69.214.23 - - [19/Apr/2026:01:05:18 +0300] "GET /s.php HTTP/1.1" 502 150 "-" "-"
172.69.214.23 - - [19/Apr/2026:01:05:18 +0300] "GET /size.php HTTP/1.1" 502 150 "-" "-"
172.69.214.23 - - [19/Apr/2026:01:05:18 +0300] "GET /system_log.php HTTP/1.1" 502 150 "-" "-"
172.69.214.23 - - [19/Apr/2026:01:05:19 +0300] "GET /tool.php HTTP/1.1" 502 150 "-" "-"
...
show less
DDoS Attack
Anonymous
2026-04-16 12:24:38
(2 months ago)
Aggressive web scan
Web App Attack
๐จ๐ฆ
yukon.ca
2026-04-10 16:16:29
(3 months ago)
Web Server Enforcement Violation: Web Server Exposed Git Repository Information Disclosure
Port:80
Hacking
Exploited Host
๐บ๐ธ
TPI-Abuse
2026-04-05 01:05:55
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 21:05:48.881691 2026] [security2:error] [pid 11415:tid 11415] [client 172.69.214.23:13137] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.mrbaystreet.com"] [uri "/.git/refs/heads/master"] [unique_id "adG1bNpnwG5b9ZajfP6PygAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 21:40:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 17:40:04.125132 2026] [security2:error] [pid 32278:tid 32278] [client 172.69.214.23:9661] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.lsfpros.com"] [uri "/web/.env"] [unique_id "adGFNE4RgD9jCTf46UR9rwAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 20:47:36
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 16:47:30.246403 2026] [security2:error] [pid 25958:tid 25958] [client 172.69.214.23:14072] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kircali.net"] [uri "/.git/refs/heads/main"] [unique_id "adF44ncP6yFuCEhyXYv5MwAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 10:24:45
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 06:24:40.612581 2026] [security2:error] [pid 27723:tid 27723] [client 172.69.214.23:10471] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.sguard.co"] [uri "/.env.production.local"] [unique_id "adDm6GMOpgsPFPe8dSD3WgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 09:43:57
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 05:43:51.327780 2026] [security2:error] [pid 9699:tid 9699] [client 172.69.214.23:10681] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stigmatagram.com"] [uri "/.env.test"] [unique_id "adDdV_EKUylJGe9EazMHWAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 09:27:59
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 172.69.214.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 05:27:55.453014 2026] [security2:error] [pid 12647:tid 12647] [client 172.69.214.23:13576] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.jasonmcquain.com"] [uri "/.env.production.bak"] [unique_id "adDZm8SMPw5__Fw0ojxpogAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack