πΊπΈ
TPI-Abuse
2026-07-02 10:19:03
(1 hour ago)
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 06:18:56.773088 2026] [security2:error] [pid 6188:tid 6188] [client 120.230.21.61:16559] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||aokatheists.org|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "aokatheists.org"] [uri "/index.html"] [unique_id "akY7EHTt00ppp5I6Ohi3mAAAAA0"], referer: http://aokatheists.org/index.html
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-28 23:54:03
(3 days ago)
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 19:53:55.416308 2026] [security2:error] [pid 26331:tid 26331] [client 120.230.21.61:16449] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||exhaustthelimits.org|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "exhaustthelimits.org"] [uri "/"] [unique_id "akG0E7y-UnB6sSnstK8dRQAAAAQ"], referer: http://exhaustthelimits.org/
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π³
ThreatBook.io
2026-05-15 22:48:47
(1 month ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2026-05-15 16 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2026-05-15 16:05:14 /sitemap.xml
show less
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-05 18:52:03
(2 months ago)
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 14:51:58.483016 2026] [security2:error] [pid 2088:tid 2088] [client 120.230.21.61:14022] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.aiagenttypes.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.aiagenttypes.com"] [uri "/"] [unique_id "adKvTrVNNjdTRxBAKrZ2DwAAAAQ"], referer: http://www.aiagenttypes.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-02-23 00:59:15
(4 months ago)
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.230.21.61 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 19:59:07.637737 2026] [security2:error] [pid 31948:tid 31976] [client 120.230.21.61:22661] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||aapm.info|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "aapm.info"] [uri "/"] [unique_id "aZumW2Qgz_1WxZcZbjR7hQAAAEc"], referer: https://aapm.info/
show less
Brute-Force
Bad Web Bot
Web App Attack
π¨π³
ThreatBook.io
2025-08-28 22:47:03
(10 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2025-08-28 03 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2025-08-28 03:03:19 /config.json
show less
Web App Attack
π¨π³
ThreatBook.io
2025-08-21 22:39:24
(10 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2025-08-21 02 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2025-08-21 02:51:47 /robots.txt
show less
Web App Attack
π¨π³
ThreatBook.io
2025-07-03 23:00:16
(11 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2025-07-03 09 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.230.21.61
2025-07-03 09:24:07 /config.json
show less
Web App Attack
π¨π³
ThreatBook.io
2025-04-04 23:07:20
(1 year ago)
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.230.21.61
2025-04- ...
show more
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.230.21.61
2025-04-04 08:22:10 /sitemap.xml
show less
Web App Attack