๐บ๐ธ
TPI-Abuse
2026-07-02 13:03:36
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 09:03:29.360512 2026] [security2:error] [pid 20828:tid 20828] [client 104.23.223.34:12691] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "musicpolitan.com"] [uri "/.git/config"] [unique_id "akZhoWc6mEZNm5F5ndUx7wAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-07-01 23:56:08
(6 days ago)
104.23.223.34 - - [02/Jul/2026:02:56:07 +0300] "GET /wp-includes/css/index.php HTTP/1.1" 404 683 "-" ...
show more
104.23.223.34 - - [02/Jul/2026:02:56:07 +0300] "GET /wp-includes/css/index.php HTTP/1.1" 404 683 "-" "-"
104.23.223.34 - - [02/Jul/2026:02:56:07 +0300] "GET /wp-content/uploads/2021/02/index.php HTTP/1.1" 404 683 "-" "-"
...
show less
Web App Attack
๐ธ๐ฌ
securejdprop
2026-06-28 14:13:34
(1 week ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-probing. crowdsecurity/http-probing
Hacking
Web App Attack
๐ฏ๐ต
S.O.B.A. Dev.
2026-06-26 19:41:23
(1 week ago)
Persistent port scanning or vulnerability scanning
Port Scan
๐ณ๐ฑ
oisecnet
2026-06-20 21:01:15
(2 weeks ago)
Automated report: Unauthorized vulnerability scanning detected on 2026-06-20. 1 requests from this I ...
show more
Automated report: Unauthorized vulnerability scanning detected on 2026-06-20. 1 requests from this IP.
show less
Brute-Force
Web App Attack
SSH
๐บ๐ธ
TPI-Abuse
2026-06-20 01:41:06
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 21:41:01.281685 2026] [security2:error] [pid 21874:tid 21874] [client 104.23.223.34:11286] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "casinoaffiliateprogramsonline.com.crazycoin.net"] [uri "/.git/config"] [unique_id "ajXvrb-AV49-_T7SAifIUgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ญ
4server
2026-06-17 22:59:00
(2 weeks ago)
[ThuJun1800:58:54.7788532026][security2:error][pid3168598:tid3168989][client104.23.223.34:0]ModSecur ...
show more
[ThuJun1800:58:54.7788532026][security2:error][pid3168598:tid3168989][client104.23.223.34:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"365\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"mail.hosting-dominio.ch\"][uri\"/.git/config\"][unique_id\"ajMmrkcNExxkdXEtE74zzgAAAIs\"]
show less
Hacking
Web App Attack
๐ท๐บ
DZBOT
2026-06-14 11:53:51
(3 weeks ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 19:31:21
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:31:17.856883 2026] [security2:error] [pid 5999:tid 5999] [client 104.23.223.34:9530] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.frenosilent.ar"] [uri "/.git/config"] [unique_id "aisNBSkk6kHoJW_gvMfopQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-11 06:09:05
(3 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12
Exploited Host
Web App Attack
๐ซ๐ฎ
SamJUK
2026-06-11 00:40:45
(3 weeks ago)
Multiple WAF Violations
...
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-23 18:16:24
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 14:16:20.410058 2026] [security2:error] [pid 30026:tid 30026] [client 104.23.223.34:13182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "vaxd.org"] [uri "/.git/config"] [unique_id "ahHu9ABbq4EHtchI-76uWAAAAIk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ท๐บ
DZBOT
2026-05-21 06:44:21
(1 month ago)
DZBOT: Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-17 18:10:31
(1 month ago)
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.223.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 14:10:24.731356 2026] [security2:error] [pid 3864:tid 3864] [client 104.23.223.34:11275] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "d.stoneast.com"] [uri "/.git/config"] [unique_id "agoEkH19X-HX-tlScbbTPAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-16 07:41:55
(1 month ago)
104.23.223.34 - - [16/May/2026:10:41:54 +0300] "GET /wp-content/languages/about.php HTTP/1.1" 404 32 ...
show more
104.23.223.34 - - [16/May/2026:10:41:54 +0300] "GET /wp-content/languages/about.php HTTP/1.1" 404 3294 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36"
...
show less
Web App Attack