๐ซ๐ท
Sklurk
2025-09-16 10:28:49
(9 months ago)
Web App Attack
Web App Attack
๐ท๐ด
INTEQ
2025-09-13 09:28:55
(10 months ago)
Web attack from 150.109.12.14
Web App Attack
๐ต๐ฑ
sefinek.net
2025-09-13 07:25:11
(10 months ago)
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /documentation
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/103.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
Anonymous
2025-09-13 01:38:02
(10 months ago)
Malicious activity detected
Hacking
Web App Attack
๐ซ๐ท
Sklurk
2025-09-12 19:36:40
(10 months ago)
Web App Attack
Web App Attack
๐ธ๐ฌ
mypatricks
2025-09-12 07:37:31
(10 months ago)
150.109.12.14 | Port: 34880 | DNS: 150.109.12.14 2025-09-12T15:37:30+08:00 Asia/Singapore | FETCH Sp ...
show more
150.109.12.14 | Port: 34880 | DNS: 150.109.12.14 2025-09-12T15:37:30+08:00 Asia/Singapore | FETCH Sproofing Activity Detetced. | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 HTTP/1.1 443 GET | URL: /?f8acabacfcb999c=89&1757608688 | Ref: - | Country: SG/Singapore/+08:00 IP City: Singapore 97ddbd696ab7fe8b-SIN/Singapore, Singapore 1 hits/0 secs Robots 2
show less
Web Spam
Blog Spam
Brute-Force
Exploited Host
Web App Attack
๐น๐ท
rtbh.com.tr
2025-09-10 20:08:43
(10 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐น๐ท
rtbh.com.tr
2025-09-09 20:08:43
(10 months ago)
list.rtbh.com.tr report: tcp/0
Brute-Force
๐ฉ๐ช
ghostwarriors
2025-09-08 16:50:06
(10 months ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ksol-hostmaster
2025-09-08 16:47:15
(10 months ago)
2025/09/08 18:47:15 [error] 66244#745062: *350455 access forbidden by rule, client: 150.109.12.14, s ...
show more
2025/09/08 18:47:15 [error] 66244#745062: *350455 access forbidden by rule, client: 150.109.12.14, server: git.ksol.io, request: "GET /user/login?redirect_to=%2fexplore%2fusers HTTP/1.1", host: "git.ksol.io"
...
show less
Web Spam
๐ธ๐ฌ
mypatricks
2025-09-08 10:22:26
(10 months ago)
150.109.12.14 | Port: 10176 | DNS: 150.109.12.14 2025-09-08T18:22:25+08:00 Asia/Singapore | Bad Beha ...
show more
150.109.12.14 | Port: 10176 | DNS: 150.109.12.14 2025-09-08T18:22:25+08:00 Asia/Singapore | Bad Behavior Activity | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 HTTP/1.1 443 GET | URL: /cupcakes-my-melody/ | Ref: - | Country: SG/Singapore/+08:00 IP City: Singapore 97bdb97dfdd59cee-SIN/Singapore, Singapore 1 hits/0 secs Robots 1
show less
Web Spam
Blog Spam
Brute-Force
Exploited Host
Web App Attack
Anonymous
2025-09-07 21:56:50
(10 months ago)
Reported from Nginx log analysis 18. Log: 150.109.12.14 - - [07/Sep/2025:xx:xx:xx 0200] "GET /tag/l ...
show more
Reported from Nginx log analysis 18. Log: 150.109.12.14 - - [07/Sep/2025:xx:xx:xx 0200] "GET /tag/liz-truss-2/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue" | 150.109.12.14 - - [07/Sep/2025:xx:xx:xx 0200] "GET /tag/missile-bsn/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue" | 150.109.12.14 - - [07/Sep/2025:xx:xx:xx 0200] "GET /tag/defense/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue"
show less
Port Scan
Brute-Force
SSH
๐ท๐ด
INTEQ
2025-09-07 20:53:01
(10 months ago)
Web attack from 150.109.12.14
Web App Attack
Anonymous
2025-09-06 09:56:41
(10 months ago)
Reported from Nginx log analysis 18. Log: 150.109.12.14 - - [06/Sep/2025:xx:xx:xx 0200] "GET /2022/ ...
show more
Reported from Nginx log analysis 18. Log: 150.109.12.14 - - [06/Sep/2025:xx:xx:xx 0200] "GET /2022/10/11/israel-pm-hails-historic-agreement-with-lebanon-on-sea-border/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue"
show less
Port Scan
Brute-Force
SSH
๐บ๐ธ
TPI-Abuse
2025-09-06 08:33:39
(10 months ago)
(mod_security) mod_security (id:210730) triggered by 150.109.12.14 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210730) triggered by 150.109.12.14 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 04:33:31.143130 2025] [security2:error] [pid 27903:tid 27903] [client 150.109.12.14:39430] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||www.scoutinsignia.com|F|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.scoutinsignia.com"] [uri "/WS_FTP.LOG"] [unique_id "aLvx252UOl1husAYIWo2_wAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack