JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 62.93.179.138

62.93.179.138 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 59%: ?

59%

ISP	GTT Communications Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	gtt.net
Country	🇪🇸 Spain
City	Madrid, Madrid

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 62.93.179.138

Whois 62.93.179.138

IP Abuse Reports for 62.93.179.138:

This IP address has been reported a total of 38 times from 19 distinct sources. 62.93.179.138 was first reported on November 15th 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 Peregrine	2026-06-19 03:11:35 (1 day ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 62.93.179.138 162.158.123.191 - - [17/Jun/2026:03:13:54 - ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 62.93.179.138 162.158.123.191 - - [17/Jun/2026:03:13:54 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-17 09:24:19 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 05:24:15.093256 2026] [security2:error] [pid 8031:tid 8031] [client 62.93.179.138:50170] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "toppress.ca"] [uri "/.env"] [unique_id "ajJnvwg9bjttvkZloIDFWAAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 09:06:34 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 05:06:28.657838 2026] [security2:error] [pid 26442:tid 26442] [client 62.93.179.138:55104] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "teamgravity.ca"] [uri "/.env"] [unique_id "ajJjlLy5C1wzGeHJlcw50gAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 08:20:27 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 04:20:21.637555 2026] [security2:error] [pid 26795:tid 26795] [client 62.93.179.138:56956] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ricketyshack.ca"] [uri "/.env"] [unique_id "ajJYxWnOW18WUPjV96B9JQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 vfAcceloReporter	2026-06-17 07:59:55 (2 days ago)	62.93.179.138 - - [17/Jun/2026:04:59:55 -0300] "GET /.env HTTP/2.0" 301 169 "-" "Mozilla/5.0 (Androi ... show more 62.93.179.138 - - [17/Jun/2026:04:59:55 -0300] "GET /.env HTTP/2.0" 301 169 "-" "Mozilla/5.0 (Android 16; Mobile; rv:148.0) Gecko/148.0 Firefox/148.0" ... show less	Brute-Force Web App Attack Exploited Host
Anonymous	2026-06-17 07:39:37 (2 days ago)	62.93.179.138 - - [17/Jun/2026:04:32:19 -0300] "GET /.env HTTP/2.0" 403 555 "-" "Mozilla/5.0 (X11; L ... show more 62.93.179.138 - - [17/Jun/2026:04:32:19 -0300] "GET /.env HTTP/2.0" 403 555 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" 62.93.179.138 - - [17/Jun/2026:04:39:36 -0300] "GET /.env HTTP/2.0" 403 548 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" ... show less	Port Scan
🇺🇸 paulo.apoloni	2026-06-17 07:02:29 (2 days ago)	62.93.179.138 - - [17/Jun/2026:04:02:15 -0300] "GET /.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows ... show more 62.93.179.138 - - [17/Jun/2026:04:02:15 -0300] "GET /.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0" 62.93.179.138 - - [17/Jun/2026:04:02:17 -0300] "GET /.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0" 62.93.179.138 - - [17/Jun/2026:04:02:20 -0300] "GET /.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0" 62.93.179.138 - - [17/Jun/2026:04:02:25 -0300] "GET /.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0" 62.93.179.138 - - [17/Jun/2026:04:02:27 -0300] "GET /.env HTTP/2.0" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:148.0) Gecko/20100101 Firefox/148.0" ... show less	Bad Web Bot Web App Attack
🇧🇷 Francisco Carlos	2026-06-17 06:15:29 (2 days ago)	Honeypot captured 1 automated attack/scan requests (JR Save Tech). Types: env-leak. Sample: GET /.en ... show more Honeypot captured 1 automated attack/scan requests (JR Save Tech). Types: env-leak. Sample: GET /.env show less	Bad Web Bot Web App Attack
🇧🇷 Peregrine	2026-06-17 06:13:57 (2 days ago)	Fail2Ban Jail: tomcat-honeypot \| Evidence: 62.93.179.138 162.158.123.191 - - [17/Jun/2026:03:13:54 - ... show more Fail2Ban Jail: tomcat-honeypot \| Evidence: 62.93.179.138 162.158.123.191 - - [17/Jun/2026:03:13:54 -0300] "GET /.env HTTP/1.1" 404 414 show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-17 05:46:08 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 01:46:03.321029 2026] [security2:error] [pid 29580:tid 29580] [client 62.93.179.138:57400] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kirklandplumbing.ca"] [uri "/.env"] [unique_id "ajI0m1geKuZUSPlZS6TNFQAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 internetworld	2026-06-17 05:19:36 (2 days ago)	internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from interne ... show more internetworld-prod-01 Fail2Ban ban. Jail=nginx-web-probe-iw. Sanitized automatic report from internetworld.ca server security monitoring. show less	Brute-Force Web App Attack
🇨🇦 Anymous	2026-06-17 05:05:25 (2 days ago)	GET /.env HTTP/1.1 404 3730 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML	Port Scan Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 03:31:12 (3 days ago)	(mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 62.93.179.138 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 23:31:05.476632 2026] [security2:error] [pid 19669:tid 19669] [client 62.93.179.138:57538] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dosfordogs.ca"] [uri "/.env"] [unique_id "ajIU-dFaYzWTySuvQNpqNwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-06-17 03:05:18 (3 days ago)	Abuse Detected (3)	Brute-Force Web App Attack
🇧🇷 Halux	2026-06-17 02:56:14 (3 days ago)	62.93.179.138 Probing protected path or service	Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 175.17.184.8

🇨🇳 115.190.213.206

🇺🇸 32.216.89.231

🇧🇷 185.72.240.203

🇺🇸 173.252.87.15

🇺🇸 147.185.132.240

🇯🇵 118.194.229.94

🇻🇳 117.4.178.122

🇨🇳 116.179.33.144

🇧🇩 103.213.238.91

🇩🇪 64.226.71.148

🇸🇬 47.128.96.236

🇳🇱 45.148.10.157

🇧🇷 43.164.192.40

🇨🇳 221.202.25.60

🇺🇸 205.210.31.92

🇧🇷 189.113.47.155

🇩🇪 185.242.3.226

🇳🇱 176.65.139.42

🇨🇳 118.196.51.94