This IP address has been reported a total of
32
times from
28 distinct
sources.
144.225.204.250 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Automated Joomla Helix3 template exploitation / webshell probe. Repeated POST to /index.php?option=c ...
show moreAutomated Joomla Helix3 template exploitation / webshell probe. Repeated POST to /index.php?option=com_ajax&plugin=helix3&format=json followed by GET requests for 'cox.json' across multiple directories (/, /images/, /media/, /tmp/, /templates/) checking for a dropped webshell. User-Agent rotated per request (iPhone/Firefox/Chrome/Edge/Linux) from one source IP within ~20 seconds. Activity: 2026-07-08 02:55:49 to 02:56:12 CEST (UTC+2). All responses 301/302/403 - attempt failed.
show less
144.225.204.250 - - [08/Jul/2026:09:04:07 +0300] "GET /images/cox.json HTTP/1.1" 404 236 "-" "Mozill ...
show more144.225.204.250 - - [08/Jul/2026:09:04:07 +0300] "GET /images/cox.json HTTP/1.1" 404 236 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
144.225.204.250 - - [08/Jul/2026:09:04:07 +0300] "GET /media/cox.json HTTP/1.1" 404 236 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36"
...
show less
Web App Attack
Hacking
Anonymous
Bot / scanning and/or hacking attempts: GET / HTTP/1.1, GET /api/index.php/v1/config/application?pub ...
show moreBot / scanning and/or hacking attempts: GET / HTTP/1.1, GET /api/index.php/v1/config/application?public=true HTTP/1.1, GET /administrator/index.php HTTP/1.1, GET /wp-login.php HTTP/1.1
show less
(modsecurity) srv104 ModSecurity 144.225.204.250 (SG/Singapore/144-225-204-250.ips.acedatacenter.com ...
show more(modsecurity) srv104 ModSecurity 144.225.204.250 (SG/Singapore/144-225-204-250.ips.acedatacenter.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less