๐จ๐ญ
backslash
2026-07-02 08:06:10
(2 days ago)
block ruleset bad bot: misc bad content F608233CC4C86EE814CE8DDDA9C4A0D3C79882F6
Bad Web Bot
๐ฆ๐ฑ
router.al
2026-07-01 19:35:56
(2 days ago)
07/01/2026-19:35:55.787036 104.23.229.34 Protocol: 6 ET SCAN WordPress Scanner Performing Multiple R ...
show more
07/01/2026-19:35:55.787036 104.23.229.34 Protocol: 6 ET SCAN WordPress Scanner Performing Multiple Requests to Windows Live Writer XML
show less
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-23 11:15:47
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 07:15:43.176734 2026] [security2:error] [pid 9385:tid 9385] [client 104.23.229.34:11965] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mikeneame.com"] [uri "/.git/config"] [unique_id "ajpq3x_PLpGZGjL8s03s8gAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-19 16:27:27
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 12:27:23.724433 2026] [security2:error] [pid 12745:tid 12745] [client 104.23.229.34:12729] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.bigfootofmaine.com"] [uri "/.git/config"] [unique_id "ajVt6yZ2W5ZRzvrUGLl0mwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-16 06:42:28
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 02:42:21.829300 2026] [security2:error] [pid 21999:tid 21999] [client 104.23.229.34:12222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "avanyupublishing.com"] [uri "/.git/config"] [unique_id "ajDwTYmjK1XEzv2qhwWOLgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
mnsf
2026-06-16 01:05:17
(2 weeks ago)
Abuse Detected (1)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 19:50:35
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.229.34 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 15:50:31.491592 2026] [security2:error] [pid 7276:tid 7289] [client 104.23.229.34:11983] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jrbllc.idealcentralvac.com"] [uri "/.git/config"] [unique_id "aicdB4xdjp2NQDXFnbmkRAAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-12 16:08:36
(1 month ago)
Web App Attack
Brute-Force
Exploited Host
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-05-10 12:38:09
(1 month ago)
104.23.229.34 - - [10/May/2026:15:36:44 +0300] "GET /config/.env HTTP/1.1" 404 768 "-" "curl/8.7.1"
...
show more
104.23.229.34 - - [10/May/2026:15:36:44 +0300] "GET /config/.env HTTP/1.1" 404 768 "-" "curl/8.7.1"
104.23.229.34 - - [10/May/2026:15:38:08 +0300] "GET ////www////.env HTTP/1.1" 404 767 "-" "curl/8.7.1"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-17 00:07:56
(2 months ago)
104.23.229.34 - - [17/Apr/2026:03:07:53 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ...
show more
104.23.229.34 - - [17/Apr/2026:03:07:53 +0300] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 768 "-" "-"
104.23.229.34 - - [17/Apr/2026:03:07:55 +0300] "GET /wp-includes/theme-compat/wp-login.php HTTP/1.1" 404 683 "-" "-"
...
show less
Web App Attack
๐บ๐ฆ
URAN Publishing Service
2026-04-01 19:02:33
(3 months ago)
104.23.229.34 - - [01/Apr/2026:22:02:13 +0300] "GET /srv/.env HTTP/1.1" 404 789 "-" "Mozilla/5.0 (X1 ...
show more
104.23.229.34 - - [01/Apr/2026:22:02:13 +0300] "GET /srv/.env HTTP/1.1" 404 789 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:123.0) Gecko/20100101 Firefox/123.0"
104.23.229.34 - - [01/Apr/2026:22:02:33 +0300] "GET /wp-content/debug.log HTTP/1.1" 404 789 "https://www.bing.com/" "Mozilla/5.0 (iPhone; CPU iPhone OS 17_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.3 Mobile/15E148 Safari/604.1"
...
show less
Web App Attack
๐ฉ๐ช
Starburst SysOp Team
2026-03-24 06:16:49
(3 months ago)
(CT) IP 104.23.229.34 (FR/France/Paris Department/Paris/-/[AS13335 Cloudflare, Inc.]) found to have ...
show more
(CT) IP 104.23.229.34 (FR/France/Paris Department/Paris/-/[AS13335 Cloudflare, Inc.]) found to have 101 connections (0-nue6-2)
show less
Hacking
๐บ๐ธ
mnsf
2026-03-20 18:07:29
(3 months ago)
Scanning/Probing (19)
Brute-Force
Web App Attack
๐ฉ๐ช
ps-center
2026-02-21 11:45:37
(4 months ago)
SS1: Web Attack GET /admin.php
Web Spam
Hacking
Bad Web Bot
Web App Attack
๐ฉ๐ช
ps-center
2026-01-30 13:44:24
(5 months ago)
SS1: Web Attack GET /wp-includes/blocks/code/
Web Spam
Hacking
Bad Web Bot
Web App Attack