JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 93.123.109.102

93.123.109.102 was found in our database!

This IP was reported 510 times. Confidence of Abuse is 100%: ?

100%

ISP	TECHOFF SRV LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS48090
Domain Name	dmzhost.co
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 93.123.109.102

Whois 93.123.109.102

IP Abuse Reports for 93.123.109.102:

This IP address has been reported a total of 510 times from 262 distinct sources. 93.123.109.102 was first reported on February 1st 2025, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 FeG Deutschland	2026-06-28 23:14:25 (1 hour ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 1247	Exploited Host Web App Attack
🇧🇪 cmbplf	2026-06-28 23:13:28 (1 hour ago)	1015 limiting connections by zone (1w3d4h)	DDoS Attack
🇩🇪 todix	2026-06-28 22:44:28 (1 hour ago)	Web App Attack Exploid from 93.123.109.102	Web App Attack
Anonymous	2026-06-28 22:20:47 (2 hours ago)	93.123.109.102 - - [29/Jun/2026:00:20:46 +0200] "GET /.git/config HTTP/1.1" 301 549 "-" "Mozilla/5.0 ... show more 93.123.109.102 - - [29/Jun/2026:00:20:46 +0200] "GET /.git/config HTTP/1.1" 301 549 "-" "Mozilla/5.0 (Windows NT 10.0; rv:91.0) Gecko/20100101 Firefox/91.0" ... show less	Brute-Force Web App Attack
🇩🇪 gadix	2026-06-28 21:40:54 (2 hours ago)	[28/Jun/2026:23:40:49.196071 +0200] akGU4X30FaTq8Xe2fmNmBAAAAEM 93.123.109.102 53330 127.0.0.1 7080 ... show more [28/Jun/2026:23:40:49.196071 +0200] akGU4X30FaTq8Xe2fmNmBAAAAEM 93.123.109.102 53330 127.0.0.1 7080 [28/Jun/2026:23:40:49.482198 +0200] akGU4eiDuDyjI9XIwOq-YgAAAQo 93.123.109.102 53338 127.0.0.1 7080 [28/Jun/2026:23:40:52.110451 +0200] akGU5H30FaTq8Xe2fmNmBQAAAFQ 93.123.109.102 53348 127.0.0.1 7080 ... show less	Web App Attack
🇨🇦 SoteriaCovenant	2026-06-28 20:53:02 (3 hours ago)	Automated probe: /.svn/wc.db on Soteria Global infrastructure. No vulnerable software present.	Hacking
🇺🇸 stvnrdg.me	2026-06-28 20:05:17 (4 hours ago)	93.123.109.102 - - [28/Jun/2026:20:05:16 +0000] "GET /phpinfo.php HTTP/1.1" 404 396 "-" "Mozilla/5.0 ... show more 93.123.109.102 - - [28/Jun/2026:20:05:16 +0000] "GET /phpinfo.php HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/47.0" ... show less	Hacking
🇫🇷 phoenix1jl96	2026-06-28 19:31:14 (5 hours ago)	2026/06/28 21:31:02 [error] 5155#5155: 77515 open() "/usr/local/lib/roundcubemail/.env" failed (2: ... show more 2026/06/28 21:31:02 [error] 5155#5155: 77515 open() "/usr/local/lib/roundcubemail/.env" failed (2: No such file or directory), client: 93.123.109.102, server: mta-sts.epouville.info, request: "GET /mail/.env HTTP/1.1", host: "mta-sts.epouville.info" 2026/06/28 21:31:02 [error] 5155#5155: *77515 open() "/home/user-data/www/default/mailer/.env" failed (2: No such file or directory), client: 93.123.109.102, server: mta-sts.epouville.info, request: "GET /mailer/.env HTTP/1.1", host: "mta-sts.epouville.info" ... show less	DNS Compromise DNS Poisoning DDoS Attack Ping of Death Web Spam Email Spam Blog Spam Port Scan Hacking Brute-Force Bad Web Bot SSH Web App Attack
🇩🇪 raph	2026-06-28 18:20:37 (6 hours ago)	[URL BRUTE-FROCE] >50 404 in <1 min	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dbmwebdesign	2026-06-28 17:25:39 (7 hours ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
Anonymous	2026-06-28 16:41:11 (7 hours ago)	[Sun Jun 28 16:41:10.254604 2026] [security2:error] [pid 1351602:tid 1351602] [client 93.123.109.102 ... show more [Sun Jun 28 16:41:10.254604 2026] [security2:error] [pid 1351602:tid 1351602] [client 93.123.109.102:53826] [client 93.123.109.102] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.5"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "lithomessiniaki.gr"] [uri "/env/.env"] [unique_id "akFOpj-av2xAO9l9WjR3gAAAAAI"] [Sun Jun 28 16:41:10.370003 2026] [security2:error] [pid 1349036:tid 1349036] [client 93.123.109.102:53832] [client 93.123.109.102] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Sco ... show less	Web App Attack
🇺🇸 kosada.com	2026-06-28 15:55:15 (8 hours ago)	Web vulnerability probing: /.svn/entries	Web App Attack
🇩🇪 Dennis	2026-06-28 15:52:10 (8 hours ago)	93.123.109.102 has been banned for triggering http-probing (15 events over 45.17207498s).	Brute-Force Web App Attack
🇩🇪 patrisei	2026-06-28 15:51:36 (8 hours ago)	You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-sensitive-fil ... show more You are now banned for 10 years by Schiffdorf-West Patrol. Trigger: crowdsecurity/http-sensitive-files show less	Port Scan Web App Attack
Anonymous	2026-06-28 13:26:57 (11 hours ago)	93.123.109.102 - - [28/Jun/2026:15:26:38 +0200] "GET /api/.env HTTP/1.1" 403 164 "-" "Mozilla/5.0 (W ... show more 93.123.109.102 - - [28/Jun/2026:15:26:38 +0200] "GET /api/.env HTTP/1.1" 403 164 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/47.0" 93.123.109.102 - - [28/Jun/2026:15:26:40 +0200] "GET /app/.env HTTP/1.1" 403 164 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/47.0" 93.123.109.102 - - [28/Jun/2026:15:26:42 +0200] "GET /dev/.env HTTP/1.1" 403 164 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/47.0" 93.123.109.102 - - [28/Jun/2026:15:26:42 +0200] "GET /new/.env HTTP/1.1" 403 164 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/47.0" 93.123.109.102 - - [28/Jun/2026:15:26:42 +0200] "GET /new/.env.local HTTP/1.1" 403 164 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox/47.0" 93.123.109.102 - - [28/Jun/2026:15:26:44 +0200] "GET /new/.env.production HTTP/1.1" 403 164 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:47.0) Gecko/20100101 Firefox ... show less	Bad Web Bot Web App Attack

Showing 1 to 15 of 510 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇦 176.16.77.167

🇺🇸 137.184.193.19

🇸🇬 103.189.235.176

🇳🇴 93.89.113.60

🇺🇸 66.132.172.181

🇨🇳 39.184.74.42

🇹🇼 34.80.78.42

🇺🇸 136.144.35.146

🇸🇬 136.110.59.157

🇨🇳 123.234.207.11

🇵🇭 122.3.55.100

🇮🇪 95.45.165.129

🇩🇪 85.214.114.18

🇷🇺 77.82.172.112

🇧🇷 45.172.182.118

🇯🇵 34.85.20.12

🇨🇳 27.18.79.124

🇮🇳 223.233.87.52

🇻🇳 203.113.174.15

🇹🇼 198.235.24.76