Grant - AbuseIPDB User Profile

JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

User Grant , the webmaster of grantcallant.com, joined AbuseIPDB in April 2021 and has reported 61 IP addresses.

Standing (weight) is good.

INACTIVE USER WEBMASTER SUPPORTER

IP	Date	Comment	Categories
🇮🇳 165.22.217.220	17 Nov 2024	Over 8K requests to various random endpoints (4xx mostly) in < 20m.	DDoS Attack Brute-Force Web App Attack
🇺🇸 144.126.145.214	17 Nov 2024	Request analyses Likely attack, score 45 Clean, XSS score 92 Clean, SQLi score 87 ... show more Request analyses Likely attack, score 45 Clean, XSS score 92 Clean, SQLi score 87 Likely clean, RCE score 63 0 uploaded content items scanned MaliciousNo Account abuse Leaked credentials scan resultNone Request details IP 144.126.145.214 Country United States ASN 40021 - NL-811-40021 User agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.51 Safari/537.36 Referer None Method GET Scheme HTTP/1.1 Path /buy/RoyalDress.co/$%27%22%60%20xid%3D1%20--%3E%3Cbms%3E%20%253cbms%253e%27%22%60 show less	DDoS Attack Hacking SQL Injection Brute-Force Web App Attack
🇺🇸 154.12.229.4	17 Nov 2024	841 bad requests in < 20m Request details IP 154.12.229.4 Country United States ASN 40021 - ... show more 841 bad requests in < 20m Request details IP 154.12.229.4 Country United States ASN 40021 - NL-811-40021 User agent Mozilla/5.0 (Knoppix; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36 Referer None Method GET Scheme HTTP/1.1 Path /test.sql.bz2 Query string None show less	DDoS Attack Brute-Force Web App Attack
🇹🇼 173.244.49.68	17 Nov 2024	Constantly trying to test endpoints with bad query params Request details IP 173.244.49.68 Cou ... show more Constantly trying to test endpoints with bad query params Request details IP 173.244.49.68 Country Taiwan ASN 137409 - GSLNETWORKS-AS-AP GSL Networks Pty LTD User agent Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:121.0) Gecko/20100101 Firefox/121.0 Referer None Method GET Scheme HTTP/1.1 Path / Query string ?weigj=canwm show less	DDoS Attack Hacking SQL Injection Brute-Force Web App Attack
🇩🇪 84.247.167.104	17 Nov 2024	Request analyses Attack, score 1 Clean, XSS score 98 Clean, SQLi score 98 Attack, ... show more Request analyses Attack, score 1 Clean, XSS score 98 Clean, SQLi score 98 Attack, RCE score 1 0 uploaded content items scanned MaliciousNo Account abuse Leaked credentials scan resultNone Request details IP 84.247.167.104 Country Germany ASN 51167 - CONTABO User agent Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/34.0.1847.137 Safari/4E423F Referer None Method GET Scheme HTTP/1.1 Path /diamonds///////////..%5c..%5c..%5c..%5c..%5c..%5c..%5cetc/passwd show less	DDoS Attack Hacking SQL Injection Brute-Force Web App Attack
🇰🇼 78.154.219.124	17 Nov 2024	100+ rpm scanning endpoints Request details IP 78.154.219.124 Country Kuwait ASN 9155 - QNET ... show more 100+ rpm scanning endpoints Request details IP 78.154.219.124 Country Kuwait ASN 9155 - QNET Kuwait User agent Mozilla/5.0 (X11; Linux x86_64; rv:132.0) Gecko/20100101 Firefox/132.0 Method POST Scheme HTTP/3 Path /search/load-tld-prices Query string None show less	DDoS Attack Brute-Force Web App Attack
🇩🇪 91.148.239.26	17 Nov 2024	Request analyses Likely attack, score 21 Likely clean, XSS score 56 Clean, SQLi score 9 ... show more Request analyses Likely attack, score 21 Likely clean, XSS score 56 Clean, SQLi score 95 Likely clean, RCE score 75 0 uploaded content items scanned MaliciousNo Account abuse Leaked credentials scan resultNone Request details IP 91.148.239.26 Country Indonesia ASN 50525 - PRIVADO-DE User agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.3 Referer None Method POST Scheme HTTP/1.1 Path /shopping-cart-common/add-service Query string None show less	DDoS Attack Brute-Force Web App Attack
🇩🇪 91.148.238.140	17 Nov 2024	Likely attack, score 21 Likely clean, XSS score 59 Clean, SQLi score 95 Likely clea ... show more Likely attack, score 21 Likely clean, XSS score 59 Clean, SQLi score 95 Likely clean, RCE score 72 0 uploaded content items scanned MaliciousNo Account abuse Leaked credentials scan resultNone Request details IP 91.148.238.140 Country Germany ASN 50525 - PRIVADO-DE User agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.3 Referer None Method POST Scheme HTTP/1.1 Path /shopping-cart-common/add-service Query string None show less	DDoS Attack Brute-Force Web App Attack
🇺🇸 172.111.170.41	17 Nov 2024	IP 172.111.170.41 Country India ASN 9009 - M247 User agent Mozilla/5.0 (Macintosh; Intel Mac ... show more IP 172.111.170.41 Country India ASN 9009 - M247 User agent Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Safari/605.1.35 Referer None Method GET Scheme HTTP/1.1 Path /docker-compose.override.yml Query string None show less	Brute-Force Web App Attack
🇮🇳 139.59.6.80	17 Nov 2024	400 rpm scanning random endpoints IP 139.59.6.80 Country India ASN 14061 - DIGITALOCEAN-ASN U ... show more 400 rpm scanning random endpoints IP 139.59.6.80 Country India ASN 14061 - DIGITALOCEAN-ASN User agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36 Referer None Method GET Scheme HTTP/1.1 Path /admin/function.php Query string None show less	DDoS Attack Brute-Force Web App Attack
🇺🇸 77.81.142.58	17 Nov 2024	77.81.142.58 Country Mexico ASN 9009 - M247 User agent Mozilla/5.0 (X11; Linux x86_64) AppleWe ... show more 77.81.142.58 Country Mexico ASN 9009 - M247 User agent Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 Referer protocol/openid-connect/auth?userId=fsssiedxa+xx+psssiedx&comment=fsssiedxb+xx+psssiedx&n=fsssiedxc+xx+psssiedx&referrer_uri=fsssiedxd+xx+psssiedx&settings=fsssiedxe+xx+psssiedx&code=fsssiedxf+xx+psssiedx&ajax=fsssiedxg+xx+psssiedx&updated=fsssiedxh+xx+psssiedx&hasAccess=fsssiedxi+xx+psssiedx&p=fsssiedxj+xx+psssiedx&cookie=fsssiedxk+xx+psssiedx&i=fsssiedxl+xx+psssiedx&doc=fsssiedxm+xx+psssiedx&client_id=fsssiedxn+xx+psssiedx&redirect_uri=fsssiedxo+xx+psssiedx&config=fsssiedxp+xx+psssiedx&password=fsssiedxq+xx+psssiedx&locale=sssieddlocalexsx&session_code=sssieddsession_codexsx&rememberMe=sssieddrememberMexsx&code_challenge=sssieddcode_challengexsx&r=sssieddrxsx&onerror=sssieddonerrorxsx&o=sssieddoxsx&post=sssieddpostxsx&fsssiedx+xx+psssiedx=dummy show less	DDoS Attack Hacking SQL Injection Brute-Force Web App Attack
🇺🇸 23.108.108.200	17 Nov 2024	Huge number of requests hitting the same API endpoint IP 23.108.108.200 Country United States ... show more Huge number of requests hitting the same API endpoint IP 23.108.108.200 Country United States ASN 7203 - LEASEWEB-USA-SFO User agent None Referer None Method POST Scheme HTTP/1.1 Host usersapiv2 Path /v2/domains/colegiopsicologos.cl/create show less	DDoS Attack Web App Attack
🇩🇪 85.90.244.145	24 Aug 2024	Level 7 flood	DDoS Attack Port Scan Web App Attack
🇩🇪 172.104.142.150	24 Aug 2024	Level 7 flood	DDoS Attack Port Scan Web App Attack
🇩🇪 139.162.190.66	24 Aug 2024	Level 7 flood	DDoS Attack Port Scan Web App Attack
🇩🇪 172.105.70.6	24 Aug 2024	Level 7 flood	DDoS Attack Port Scan Web App Attack
🇩🇪 172.104.242.244	24 Aug 2024	Level 7 flood over multiple hosts	DDoS Attack Port Scan Web App Attack
🇩🇪 144.91.114.79	24 Aug 2024	Level 7 flood	DDoS Attack Port Scan
🇰🇷 108.181.50.182	24 Aug 2024	Constant polling of .dat paths	DDoS Attack Port Scan
🇻🇳 14.225.207.13	24 Aug 2024	WHOIS request flood	DDoS Attack
🇲🇽 77.81.142.235	24 Aug 2024	Level 7 flood	DDoS Attack
🇰🇿 46.226.123.155	01 Aug 2024	Transparently obvious phishing attempt using Docusign marks Date: 01 Aug 2024 03:36:44 +0200 From: DocuSign NA3 System <[email protected]> dmarc=fail reason="SPF not aligned (relaxed), No valid DKIM" header.from=docusign.net (policy=reject)	Phishing Email Spam
🇨🇿 46.29.224.18	31 Mar 2024	Repeated user iteration attempts [org.keycloak.services] (Brute Force Protector) KC-SERVICES0053: ... show more Repeated user iteration attempts [org.keycloak.services] (Brute Force Protector) KC-SERVICES0053: login failure for user from ip 46.29.224.18 show less	Brute-Force
🇩🇪 216.24.213.28	26 Mar 2024	Literal flood of logs: 2024-03-26 04:29:59,694 WARN [org.keycloak.events] (default task-26) type=R ... show more Literal flood of logs: 2024-03-26 04:29:59,694 WARN [org.keycloak.events] (default task-26) type=REGISTER_ERROR, clientId=null, userId=null, ipAddress=216.24.213.28, error=invalid_code 2024-03-26 04:30:04,340 WARN [org.keycloak.events] (default task-26) type=REGISTER_ERROR, clientId=null, userId=null, ipAddress=216.24.213.28, error=invalid_code 2024-03-26 04:30:09,474 WARN [org.keycloak.events] (default task-26) type=REGISTER_ERROR, clientId=null, userId=null, ipAddress=216.24.213.28, error=invalid_code 2024-03-26 04:30:13,067 WARN [org.keycloak.events] (default task-26) type=REGISTER_ERROR, clientId=null, userId=null, ipAddress=216.24.213.28, error=invalid_code 2024-03-26 04:30:17,526 WARN [org.keycloak.events] (default task-26) type=REGISTER_ERROR, clientId=null, userId=null, ipAddress=216.24.213.28, error=invalid_code show less	DDoS Attack Brute-Force
🇺🇸 107.174.102.137	26 Mar 2024	clientId=e5fa5d9f, userId=null, ipAddress=107.174.102.137, error=client_not_found 2024-03-26 05:14: ... show more clientId=e5fa5d9f, userId=null, ipAddress=107.174.102.137, error=client_not_found 2024-03-26 05:14:47,228 WARN [org.keycloak.events] (default task-33) type=LOGIN_ERROR, clientId=%61%62%63%65%35%65%39%33, userId=null, ipAddress=107.174.102.137, error=client_not_found 2024-03-26 05:14:53,215 WARN [org.keycloak.events] (default task-33) type=LOGIN_ERROR, clientId=%25%36%34%25%36%33%25%36%36%25%33%38%25%33%39%25%33%35%25%33%35%25%36%34, userId=null, ipAddress=107.174.102.137, error=client_not_found show less	DDoS Attack Brute-Force