|
π·π΄
INTEQ
|
|
Web attack from 150.109.4.49
|
Web App Attack
|
|
|
π«π·
Sklurk
|
|
Web App Attack
|
Web App Attack
|
|
|
π΅π±
sefinek.net
|
|
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from SG.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /documentation
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
|
Bad Web Bot
|
|
|
π·π΄
INTEQ
|
|
Web attack from 150.109.4.49
|
Web App Attack
|
|
|
Anonymous
|
|
Reported from Nginx log analysis 18. Log: 150.109.4.49 - - [08/Sep/2025:xx:xx:xx 0200] "GET /tag/in ...
show more
Reported from Nginx log analysis 18. Log: 150.109.4.49 - - [08/Sep/2025:xx:xx:xx 0200] "GET /tag/infection/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue" | 150.109.4.49 - - [08/Sep/2025:xx:xx:xx 0200] "GET /tag/politics/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue"
show less
|
Port Scan
Brute-Force
SSH
|
|
|
πΉπ·
rtbh.com.tr
|
|
list.rtbh.com.tr report: tcp/0
|
Brute-Force
|
|
|
Anonymous
|
|
Reported from Nginx log analysis 18. Log: 150.109.4.49 - - [06/Sep/2025:xx:xx:xx 0200] "GET /tag/co ...
show more
Reported from Nginx log analysis 18. Log: 150.109.4.49 - - [06/Sep/2025:xx:xx:xx 0200] "GET /tag/constituency/ HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36" "-" "SG Singapore Singapore" "AS132203" "Tencent Building, Kejizhongyi Avenue"
show less
|
Port Scan
Brute-Force
SSH
|
|
|
πΊπΈ
TPI-Abuse
|
|
(mod_security) mod_security (id:210730) triggered by 150.109.4.49 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210730) triggered by 150.109.4.49 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Sep 06 00:40:10.670547 2025] [security2:error] [pid 17391:tid 17406] [client 150.109.4.49:41308] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||batonrougegazette.com|F|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "batonrougegazette.com"] [uri "/uncategorized/adams-turns-maga/storyinst.com"] [unique_id "aLu7Kn-P0fD9I0S4x6w8oAAAAI0"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
πΉπ·
rtbh.com.tr
|
|
list.rtbh.com.tr report: tcp/0
|
Brute-Force
|
|
|
πΉπ·
rtbh.com.tr
|
|
list.rtbh.com.tr report: tcp/0
|
Brute-Force
|
|
|
π·π΄
INTEQ
|
|
Web attack from 150.109.4.49
|
Web App Attack
|
|
|
πΊπΈ
etu brutus
|
|
150.109.4.49 Blocked by [Attack Vector List]
...
|
Hacking
Brute-Force
Exploited Host
|
|
|
πΈπ¬
mypatricks
|
|
150.109.4.49 | Port: 21352 | DNS: 150.109.4.49 2025-09-05T15:29:47+08:00 Asia/Singapore | FETCH Spro ...
show more
150.109.4.49 | Port: 21352 | DNS: 150.109.4.49 2025-09-05T15:29:47+08:00 Asia/Singapore | FETCH Sproofing Activity Detetced. | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 HTTP/1.1 443 GET | URL: /page/2/?beae8d8d9bfdde=266&1750716248 | Ref: - | Country: SG/Singapore/+08:00 IP City: Singapore 97a4047c2f9581a2-SIN/Singapore, Singapore 1 hits/0 secs Robots 2
show less
|
Web Spam
Blog Spam
Brute-Force
Exploited Host
Web App Attack
|
|
|
π©πͺ
ghostwarriors
|
|
Webpage scraping
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
π©πͺ
ksol-hostmaster
|
|
2025/09/04 16:56:33 [error] 53719#644348: *2955 access forbidden by rule, client: 150.109.4.49, serv ...
show more
2025/09/04 16:56:33 [error] 53719#644348: *2955 access forbidden by rule, client: 150.109.4.49, server: git.ksol.io, request: "GET /karolyi/py3-validate-email/pulls?q=&type=all&sort=recentupdate&state=all&labels=0&milestone=0&project=0&assignee=0&poster=0&fuzzy=true HTTP/1.1", host: "git.ksol.io"
...
show less
|
Web Spam
|
|