๐บ๐ธ
TPI-Abuse
2026-07-04 04:22:14
(6 days ago)
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 00:22:04.764960 2026] [security2:error] [pid 16959:tid 16959] [client 120.240.178.169:9364] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||hughhart.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "hughhart.com"] [uri "/"] [unique_id "akiKbJQ4y0VptuD6MVAIwQAAAAU"], referer: http://hughhart.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 18:34:58
(1 week ago)
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 14:34:49.225648 2026] [security2:error] [pid 13898:tid 13898] [client 120.240.178.169:55472] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.teleplussolutions.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.teleplussolutions.com"] [uri "/"] [unique_id "akgAyZ-8jmKnKjpM0sItlQAAAAY"], referer: http://www.teleplussolutions.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
xmission.com
2026-06-29 05:04:55
(1 week ago)
Blocked by UFW (ICMP on )
Source port:
TTL: 106
Packet length: 104
TOS: 0x00
This report (for 120. ...
show more
Blocked by UFW (ICMP on )
Source port:
TTL: 106
Packet length: 104
TOS: 0x00
This report (for 120.240.178.169) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan
๐บ๐ธ
TPI-Abuse
2026-06-28 20:28:18
(1 week ago)
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 16:28:10.653872 2026] [security2:error] [pid 15230:tid 15230] [client 120.240.178.169:25877] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||ithacalions.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "ithacalions.com"] [uri "/"] [unique_id "akGD2pb1jPdJBHHTuN3SPgAAAAA"], referer: http://ithacalions.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 15:17:17
(2 weeks ago)
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 11:17:09.428184 2026] [security2:error] [pid 5896:tid 5899] [client 120.240.178.169:11733] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||philacentric.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "philacentric.com"] [uri "/"] [unique_id "aj6X9cun9jtSYRs3LVoP8wAAAIE"], referer: http://philacentric.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 20:29:37
(2 weeks ago)
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 16:29:28.933982 2026] [security2:error] [pid 25558:tid 25558] [client 120.240.178.169:26569] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.lakesideshelving.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.lakesideshelving.com"] [uri "/"] [unique_id "aj2PqDnEp_GElecxueUJtwAAAAA"], referer: http://www.lakesideshelving.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-24 04:48:25
(2 weeks ago)
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210831) triggered by 120.240.178.169 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 00:48:17.966455 2026] [security2:error] [pid 23363:tid 23363] [client 120.240.178.169:44653] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.chezlubacov.org|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.chezlubacov.org"] [uri "/"] [unique_id "ajthkVtPFeDZ0WhVENk5GgAAABw"], referer: http://www.chezlubacov.org/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
botreporter
2026-06-04 04:23:03
(1 month ago)
botnet ignoring robots.txt
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-06-03 16:19:24
(1 month ago)
Unidentified crawling: not a self-announced bot in user-agent
Bad Web Bot
๐ฆ๐บ
MAGIC
2026-06-03 02:29:41
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-06-02 15:33:45
(1 month ago)
Unidentified crawling: not a self-announced bot in user-agent
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-05-31 05:36:55
(1 month ago)
Unidentified crawling: not a self-announced bot in user-agent
Bad Web Bot
๐ซ๐ท
bigorre.org
2026-05-28 10:25:25
(1 month ago)
Unidentified crawling: not a self-announced bot in user-agent
Bad Web Bot
Anonymous
2026-05-28 09:34:15
(1 month ago)
FortiWeb WAF: 16 attacks detected. Threat Score: 5200. Types: Client Management(8), GEO IP(8). Origi ...
show more
FortiWeb WAF: 16 attacks detected. Threat Score: 5200. Types: Client Management(8), GEO IP(8). Origin: China.
show less
Web App Attack
๐บ๐ธ
xmission.com
2026-05-27 18:46:17
(1 month ago)
Blocked by UFW (ICMP on )
Source port:
TTL: 42
Packet length: 104
TOS: 0x00
This report (for 120.2 ...
show more
Blocked by UFW (ICMP on )
Source port:
TTL: 42
Packet length: 104
TOS: 0x00
This report (for 120.240.178.169) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Port Scan