๐ซ๐ท
tavis.page
2026-05-18 05:41:18
(1 month ago)
Blocked by UFW on server [443/tcp]
Source port: 14056
TTL: 49
Packet length: 60
TOS: 0x00
This repo ...
show more
Blocked by UFW on server [443/tcp]
Source port: 14056
TTL: 49
Packet length: 60
TOS: 0x00
This report was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐ง๐ท
Peregrine
2026-04-17 19:22:52
(2 months ago)
Fail2Ban ct101 Jail: tomcat-honeypot | Evidence: 172.70.174.189 - - [16/Apr/2026:18:51:18 -0300] "GE ...
show more
Fail2Ban ct101 Jail: tomcat-honeypot | Evidence: 172.70.174.189 - - [16/Apr/2026:18:51:18 -0300] "GET /wp-admin/ HTTP/1.1" 404 18149
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-07 03:28:51
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 23:28:43.633136 2026] [security2:error] [pid 1407746:tid 1407746] [client 172.70.174.189:10875] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rocketbattle.org"] [uri "/.git/refs/heads/main"] [unique_id "adR56_ZY8kjLp7VY9E6DCwAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-04-06 19:05:47
(3 months ago)
Scanning/Probing (13)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 19:46:10
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 15:46:02.459249 2026] [security2:error] [pid 26064:tid 26064] [client 172.70.174.189:12208] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.ouguergouz.com"] [uri "/.env.test"] [unique_id "adK7-utCAWhBGTtPjX5sFAAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-05 18:03:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 14:03:02.373016 2026] [security2:error] [pid 9104:tid 9104] [client 172.70.174.189:11376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.zztp.ws"] [uri "/.env.local"] [unique_id "adKj1vchQf6i35wgaYPMbAAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 18:21:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 14:21:26.291112 2026] [security2:error] [pid 6681:tid 6681] [client 172.70.174.189:14116] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.cherylpelletier.com"] [uri "/.env.dev"] [unique_id "adFWpqyhOlyPKOW_MLiVoQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-04-04 08:08:27
(3 months ago)
Scanning/Probing (13)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-04 03:28:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 23:28:20.136616 2026] [security2:error] [pid 28929:tid 28929] [client 172.70.174.189:9324] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gallery.pcoecsi.com"] [uri "/.env.backup"] [unique_id "adCFVDPBR_VKNQ5BCEO87QAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 19:52:13
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 15:52:03.251157 2026] [security2:error] [pid 11559:tid 11559] [client 172.70.174.189:11240] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.paavoharkonen.com"] [uri "/backend/.env"] [unique_id "adAaYwb8UgfNLMDKyyCHcgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 15:21:26
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 11:21:23.107563 2026] [security2:error] [pid 27102:tid 27102] [client 172.70.174.189:13448] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.cms2020.com"] [uri "/.env.production.bak"] [unique_id "ac_a85qdLNTPfyAssah-ZAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 07:12:49
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 03:12:44.729940 2026] [security2:error] [pid 31781:tid 31781] [client 172.70.174.189:12852] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.affourtit-bowmaker.com"] [uri "/srv/.env"] [unique_id "ac9obAFw0cR-bd5zwANwsQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 05:26:48
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 01:26:43.025128 2026] [security2:error] [pid 29834:tid 29834] [client 172.70.174.189:11710] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sutherlandyogastudio.com"] [uri "/.env2"] [unique_id "ac9Pk1E-sCR4lcxwAmkmOQAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 03:29:31
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 23:29:17.326659 2026] [security2:error] [pid 19413:tid 19413] [client 172.70.174.189:10855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.gfs-essl.com.ferienwohnung-buchen.com"] [uri "/.env.bak"] [unique_id "ac80DV2WXI1jKHglruJ3YAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-03 02:05:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 172.70.174.189 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 02 22:05:24.906320 2026] [security2:error] [pid 5515:tid 5515] [client 172.70.174.189:11104] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.orchestrateyouraptitudes.com"] [uri "/.env.production"] [unique_id "ac8gZGbbrfuy9AFUP3ik-AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack