AbuseIPDB » 212.193.30.189

212.193.30.189 was found in our database!

This IP was reported 182 times. Confidence of Abuse is 100%: ?

100%

ISP	Des Capital B.V.
Usage Type	Data Center/Web Hosting/Transit
Domain Name	des.capital
Country	Netherlands
City	Brielle, Zuid-Holland

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 212.193.30.189

Whois 212.193.30.189

IP Abuse Reports for 212.193.30.189:

This IP address has been reported a total of 182 times from 56 distinct sources. 212.193.30.189 was first reported on October 6th 2021, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
blinx	12 hours ago	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
Clapper	13 hours ago	(mod_security) mod_security (id:949110) triggered by 212.193.30.189 (CZ/Czechia/-): 5 in the last 14 ... show more(mod_security) mod_security (id:949110) triggered by 212.193.30.189 (CZ/Czechia/-): 5 in the last 14400 secs; ID: luc show less	Brute-Force Bad Web Bot
gwynethllewelyn.net	13 hours ago	212.193.30.189 - - [24/May/2022:12:31:11 +0100] "GET /.env HTTP/2.0" 301 162 "-" "Mozilla/5.0 (Macin ... show more212.193.30.189 - - [24/May/2022:12:31:11 +0100] "GET /.env HTTP/2.0" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" 2022/05/24 12:31:19 [error] 2515941#2515941: *363416 access forbidden by rule, client: 212.193.30.189, server: simetria.org, request: "GET /.env HTTP/2.0", host: "simetria.org" 212.193.30.189 - - [24/May/2022:12:31:19 +0100] "GET /.env HTTP/2.0" 403 1166 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Web App Attack
Epimetheus	14 hours ago	Unauthorized access attempts: From: 212.193.30.189 Method: H ... show moreUnauthorized access attempts: From: 212.193.30.189 Method: HTTP GET URI Path: /wp-content/ UA: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Web App Attack
rstular	15 hours ago	[2022-05-24T10:24:04.084240912+00:00] 212.193.30.189 - GET /.env	Hacking Bad Web Bot Web App Attack
MortimerCat	23 May 2022	Attempting to download environment file	Web App Attack
el-brujo	23 May 2022	24/May/2022:00:38:15 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 212.193 ... show more24/May/2022:00:38:15 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 212.193.30.189] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "124"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "hostench.eu"] [uri "/.env"] [unique_id "YowM15VdbEQHTWHfWDot7gAAABQ"] ... show less	Hacking Web App Attack
el-brujo	23 May 2022	23/May/2022:22:39:11 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 212.193 ... show more23/May/2022:22:39:11 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 212.193.30.189] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "124"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "oriolhostench.net"] [uri "/.env"] [unique_id "Yovw76LCVAq7OT4IXAwcWAAAAZA"] ... show less	Hacking Web App Attack
HoneyPot-DE	23 May 2022	Tried to access .env file	Web App Attack
Maykson	23 May 2022	212.193.30.189 - - [23/May/2022:16:21:12 -0300] "GET /.env HTTP/2.0" 403 415 "-" "Mozilla/5.0 (Macin ... show more212.193.30.189 - - [23/May/2022:16:21:12 -0300] "GET /.env HTTP/2.0" 403 415 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" ... show less	Exploited Host Web App Attack
Ba-Yu	23 May 2022	General hacking/exploits/scanning	Web Spam Hacking Brute-Force Exploited Host Web App Attack
el-brujo	23 May 2022	23/May/2022:20:09:30 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 212.193 ... show more23/May/2022:20:09:30 +0200Apache-Error: [file "apache2_util.c"] [line 273] [level 3] [client 212.193.30.189] ModSecurity: Warning. Matched phrase "/.env" at REQUEST_FILENAME. [file "/etc/httpd/modsecurity.d/activated_rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf"] [line "124"] [id "930130"] [msg "Restricted File Access Attempt"] [data "Matched Data: /.env found within REQUEST_FILENAME: /.env"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-lfi"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/255/153/126"] [tag "PCI/6.5.4"] [hostname "www.hostench.eu"] [uri "/.env"] [unique_id "YovN2pVdbEQHTWHfWDooTAAAAAk"] ... show less	Hacking Web App Attack
vfinder	23 May 2022	Backdrop CMS module - Request: /wp-content/	Bad Web Bot Web App Attack
conseilgouz	23 May 2022	pre-17 : Block hidden directories=>/.env(/)	Hacking
Epimetheus	21 May 2022	Unauthorized access attempts: From: 212.193.30.189 Method: H ... show moreUnauthorized access attempts: From: 212.193.30.189 Method: HTTPS GET URI Path: /.env UA: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Web App Attack

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩