๐บ๐ธ
mawan
2026-07-07 05:51:30
(2 hours ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
Anonymous
2026-07-06 22:51:32
(9 hours ago)
104.23.229.44 - - [07/Jul/2026:00:51:30 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 " ...
show more
104.23.229.44 - - [07/Jul/2026:00:51:30 +0200] "GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [07/Jul/2026:00:51:30 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [07/Jul/2026:00:51:31 +0200] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [07/Jul/2026:00:51:31 +0200] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [07/Jul/2026:00:51:31 +0200] "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 40
...
show less
Brute-Force
Web App Attack
Anonymous
2026-07-05 17:10:25
(1 day ago)
104.23.229.44 - - [05/Jul/2026:19:10:23 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 ...
show more
104.23.229.44 - - [05/Jul/2026:19:10:23 +0200] "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [05/Jul/2026:19:10:23 +0200] "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [05/Jul/2026:19:10:23 +0200] "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [05/Jul/2026:19:10:24 +0200] "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 184 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36"
104.23.229.44 - - [05/Jul/2026:19:10:24 +0200] "GET /test/wp-includes/wlwmanifest.xml HTTP/1.
...
show less
Brute-Force
Web App Attack
๐ธ๐ฌ
serverutama
2026-07-04 05:18:10
(3 days ago)
104.23.229.44 - - [04/Jul/2026:12:18:09 +0700] "GET /%2egit/config.old HTTP/1.1" 404 146 "-" "curl/8 ...
show more
104.23.229.44 - - [04/Jul/2026:12:18:09 +0700] "GET /%2egit/config.old HTTP/1.1" 404 146 "-" "curl/8.7.1"
104.23.229.44 - - [04/Jul/2026:12:18:10 +0700] "GET /%2f%2eenv HTTP/1.1" 404 146 "-" "curl/8.7.1"
...
show less
Web App Attack
Hacking
Anonymous
2026-06-24 03:16:58
(1 week ago)
104.23.229.44 - - [24/Jun/2026:05:16:54 +0200] "GET /docker/registry/config.yml HTTP/1.1" 403 124 "- ...
show more
104.23.229.44 - - [24/Jun/2026:05:16:54 +0200] "GET /docker/registry/config.yml HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:54 +0200] "GET /.docker/config.json HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:54 +0200] "GET /attacker/docker-compose.yml HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:54 +0200] "GET /vercel.json HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:54 +0200] "GET /aws/buckets HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:55 +0200] "GET /aws/s3/credentials HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:55 +0200] "GET /aws_s3_bucket HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:55 +0200] "GET /s3/.aws/config HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:55 +0200] "GET /.aws/config HTTP/1.1" 403 124 "-" "curl/8.7.1"
104.23.229.44 - - [24/Jun/2026:05:16:55 +0200] "G
...
show less
Bad Web Bot
Web App Attack
Anonymous
2026-06-17 18:57:05
(2 weeks ago)
Web App Attack
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-08 18:00:57
(4 weeks ago)
(mod_security) mod_security (id:210492) triggered by 104.23.229.44 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 104.23.229.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 14:00:49.478628 2026] [security2:error] [pid 7205:tid 7205] [client 104.23.229.44:10573] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jeffreylowenstein.thelowensteinfamily.com"] [uri "/.git/config"] [unique_id "aicDUXlRxcxFwmT8msYR5gAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
S.O.B.A. Dev.
2026-06-06 10:48:19
(1 month ago)
Persistent port scanning or vulnerability scanning
Port Scan
๐ซ๐ฎ
Shaik Sai Meera
2026-04-30 00:01:12
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ซ๐ฎ
Shaik Sai Meera
2026-04-28 00:01:01
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ซ๐ฎ
Shaik Sai Meera
2026-04-27 00:00:39
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ซ๐ฎ
Shaik Sai Meera
2026-04-25 00:00:51
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ซ๐ฎ
Shaik Sai Meera
2026-04-23 00:00:49
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ซ๐ฎ
Shaik Sai Meera
2026-04-21 00:00:58
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force
๐ซ๐ฎ
Shaik Sai Meera
2026-04-19 00:20:36
(2 months ago)
IM360 WAF: Hidden file access
Brute-Force