NotTheITperson - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User NotTheITperson joined AbuseIPDB in January 2026 and has reported 5 IP addresses.

Standing (weight) is good.

INACTIVE USER

IP	Date	Comment	Categories
🇨🇳 113.77.55.132	07 Apr 2026	Repeated suspicious requests involving automated fetch and POST activity. Behavior consistent with p ... show more Repeated suspicious requests involving automated fetch and POST activity. Behavior consistent with probing and potential exploitation attempts against web endpoints. IP was blocked after multiple hits indicating bot-driven scanning and possible brute-force or injection attempts. show less	Port Scan Brute-Force Bad Web Bot Web App Attack
🇩🇪 95.140.152.224	24 Mar 2026	High-volume automated traffic targeting Adobe Commerce (Magento) GraphQL endpoints. Observed appr ... show more High-volume automated traffic targeting Adobe Commerce (Magento) GraphQL endpoints. Observed approximately 190,000+ requests to /graphql within a 24-hour period. Additional probing of alternate GraphQL paths was detected, including: /v1/graphql, /v2/graphql, /api/v2/graphql, /graphql/v1, /graphql/v2, and /gql. Also observed requests to GraphQL tooling endpoint (/altair) and malformed/random payloads. Traffic pattern is non-human and consistent with automated scanning and resource abuse of uncached, backend-intensive endpoints. This is not consistent with legitimate crawler or user behavior. show less	DDoS Attack Bad Web Bot Web App Attack
🇺🇸 34.21.127.150	19 Mar 2026	Automated vulnerability scanning activity observed from this IP hosted on Google Cloud (34.21.127.15 ... show more Automated vulnerability scanning activity observed from this IP hosted on Google Cloud (34.21.127.150). Behavior includes: - Requests to non-Magento admin paths (/manager/html, /wp-admin/admin-ajax.php, /login, /login.php) - Enumeration of API endpoints (/api/v1/database/) - Probing for arbitrary files (/files/.php, /console/, /login.rst) - High-frequency requests inconsistent with human or legitimate crawler behavior show less	Port Scan Bad Web Bot Web App Attack
🇷🇴 194.242.46.72	19 Mar 2026	Automated bot traffic targeting Adobe Commerce (Magento) storefront. Observed behavior includes: ... show more Automated bot traffic targeting Adobe Commerce (Magento) storefront. Observed behavior includes: - High-frequency requests to /graphql endpoint (~49k requests in 24h) - Repeated calls to /customer/section/load and other AJAX endpoints (session-related, uncached) - Multiple automated add-to-cart requests across various product IDs - Requests to form submission endpoints (/customForm/index/saveform, review/product/post) - Encoded payload-style URL requests (base64-like paths), indicating scripted/browser emulation Traffic pattern is non-human and consistent with scraping and backend resource abuse. show less	Bad Web Bot Web App Attack
🇩🇪 83.217.208.26	05 Mar 2026	Automated web application scanning against an Adobe Commerce (Magento) storefront. Probing GraphQL ... show more Automated web application scanning against an Adobe Commerce (Magento) storefront. Probing GraphQL endpoint: GET /graphql → 400 Attempting controller manipulation and path-based probing: /checkout/cart/updatePost/ /checkout/cart/couponPost/ /review/product/post/ Trying random filenames and executable extensions to detect routing or execution vulnerabilities: /checkout/cart/couponPost/0hev7hq0iaau.php /checkout/cart/couponPost/0hev7hq0iaau.jsp /checkout/cart/couponPost/0hev7hq0iaau.html /review/product/post/id/88149/bekt9mdhjsho.php /review/product/post/id/88149/bekt9mdhjsho.jsp Simulated cart interactions: POST /checkout/cart/add/product/147593 All malicious probes returned 404/400 responses and were blocked at the application level. Activity occurred on 2026-03-05 between approximately 01:15–01:18 UTC show less	Port Scan Hacking Web App Attack