SCARD

Suspicious activity by IP address 104.23.175.147

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Mon, 08 Jun 2026 01:05:00 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 104.23.175.147

Description Count
ET SCAN LeakIX Inbound User-Agent 5
ET EXPLOIT GraphQL Introspection Query Attempt 2
SERVER-WEBAPP PHPUnit PHP remote code execution attempt 2
ET SCAN SFTP/FTP Password Exposure via sftp-config.json 2

Detailed activity by IP address 104.23.175.147

Timestamp Description Protocol Destination Port
2026-06-08 01:05:00 ET EXPLOIT GraphQL Introspection Query Attempt TCP 80
2026-06-08 01:05:00 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-08 01:04:59 ET EXPLOIT GraphQL Introspection Query Attempt TCP 80
2026-06-08 01:04:59 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-08 00:04:18 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-08 00:04:18 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-06-08 00:04:18 ET SCAN LeakIX Inbound User-Agent TCP 80
2026-03-31 04:33:49 ET SCAN SFTP/FTP Password Exposure via sftp-config.json TCP 80
2026-03-31 04:33:49 ET SCAN SFTP/FTP Password Exposure via sftp-config.json TCP 80
2026-03-31 02:06:01 SERVER-WEBAPP PHPUnit PHP remote code execution attempt TCP 80
2026-03-31 02:06:01 SERVER-WEBAPP PHPUnit PHP remote code execution attempt TCP 80

 

Back to top