AbuseIPDB » 114.119.146.98

114.119.146.98 was found in our database!

This IP was reported 641 times. Confidence of Abuse is 64%: ?

64%

ISP	Huawei International Pte. Ltd.
Usage Type	Search Engine Spider
Hostname(s)	petalbot-114-119-146-98.petalsearch.com
Domain Name	huawei.com
Country	Singapore
City	Singapore, Singapore

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 114.119.146.98

Whois 114.119.146.98

IP Abuse Reports for 114.119.146.98:

This IP address has been reported a total of 641 times from 53 distinct sources. 114.119.146.98 was first reported on December 3rd 2020, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
MAGIC	2023-12-06 00:21:36 (17 hours ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
AvonleaConsulting	2023-12-04 23:57:20 (1 day ago)	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	Bad Web Bot Web App Attack
AvonleaConsulting	2023-12-04 14:25:25 (2 days ago)	Unrecognised attack	IoT Targeted
MAGIC	2023-12-04 07:06:49 (2 days ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2023-12-03 08:32:30 (3 days ago)	Excessive crawling/scraping	Hacking Brute-Force
Bay13	2023-11-30 23:47:58 (5 days ago)	f2b http-badbots	Bad Web Bot
MAGIC	2023-11-30 19:03:35 (5 days ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2023-11-30 04:09:56 (6 days ago)		Web App Attack
Anonymous	2023-11-26 07:34:12 (1 week ago)	Excessive crawling/scraping	Hacking Brute-Force
hermawan	2023-11-26 04:21:56 (1 week ago)	[Sun Nov 26 11:21:36.430015 2023] [security2:error] [pid 383682:tid 140702096803392] [client 114.119 ... show more[Sun Nov 26 11:21:36.430015 2023] [security2:error] [pid 383682:tid 140702096803392] [client 114.119.146.98:45705] [client 114.119.146.98] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.5/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "5"] [id "440000"] [msg "BAD BOT - Detected and Blocked"] [data "Matched Data: bot found within REQUEST_HEADERS:User-Agent: Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot) request_line = GET /index.php/profil/meteorologi/list-all-categories/2110-agroklimatologi/kalender-tanam-katam-terpadu/kalender-tanam-katam-terpadu-nasional-indonesia/kalender-tanam-katam-terpadu-pulau-kalimantan/kalender-tanam-katam-terpadu-provinsi-kalimantan-barat/kalender-tanam-k..."] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/index.php/profil/m ... show less	Hacking Web App Attack
MAGIC	2023-11-25 15:16:44 (1 week ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
Anonymous	2023-11-21 11:30:15 (2 weeks ago)	Excessive crawling/scraping	Hacking Brute-Force
Bytemark	2023-11-19 18:12:08 (2 weeks ago)	114.119.146.98 - - [19/Nov/2023:18:12:07 +0000] "GET /phpBB3/viewtopic.php?p=41176 HTTP/1.1" 301 727 ... show more114.119.146.98 - - [19/Nov/2023:18:12:07 +0000] "GET /phpBB3/viewtopic.php?p=41176 HTTP/1.1" 301 7278 "https://www.distancelearningcentre.com/phpBB3/search.php?author_id=5648&sr=posts" "Mozilla/5.0 (Linux; Android 7.0;) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; PetalBot;+https://webmaster.petalsearch.com/site/petalbot)" show less	Brute-Force Web App Attack
TPI-Abuse	2023-11-19 09:06:34 (2 weeks ago)	(mod_security) mod_security (id:211190) triggered by 114.119.146.98 (petalbot-114-119-146-98.petalse ... show more(mod_security) mod_security (id:211190) triggered by 114.119.146.98 (petalbot-114-119-146-98.petalsearch.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 19 04:06:27.555307 2023] [security2:error] [pid 4153] [client 114.119.146.98:45843] [client 114.119.146.98] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|internationalseniortravel.com\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /pakeceweklu.php?path=/home/rbanis/etc/probabilityparables.banis-associates.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "internationalseniortravel.com"] [uri "/pakeceweklu.php"] [unique_id "ZVnQEy329Cwz9o2h6YFIdAAAAAQ"], referer: http://internationalseniortravel.com/pakeceweklu.php?path=/home/rbanis/etc show less	Brute-Force Bad Web Bot Web App Attack
TPI-Abuse	2023-11-17 01:56:49 (2 weeks ago)	(mod_security) mod_security (id:225080) triggered by 114.119.146.98 (petalbot-114-119-146-98.petalse ... show more(mod_security) mod_security (id:225080) triggered by 114.119.146.98 (petalbot-114-119-146-98.petalsearch.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Nov 16 20:56:45.041601 2023] [security2:error] [pid 25697] [client 114.119.146.98:30457] [client 114.119.146.98] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^[\\\\d\\\\.ab]+$" against "ARGS_GET:C" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "143"] [id "225080"] [rev "1"] [msg "COMODO WAF: XSS vulnerability in Plupload before 2.1.9 or MediaElement.js before 2.21.0, as used in WordPress before 4.5.2 (CVE-2016-4566 & CVE-2016-4567)\|\|qosmexico.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "qosmexico.com"] [uri "/wp-includes/js/"] [unique_id "ZVbIXfzZCP1R_b_hmNZ23gAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack