๐บ๐ธ
TPI-Abuse
2026-07-10 20:48:07
(1 day ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 16:48:03.525483 2026] [security2:error] [pid 31491:tid 31491] [client 120.82.82.125:11761] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||ecomim.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "ecomim.com"] [uri "/index.html"] [unique_id "alFag2FlZz_osh9SfbmtggAAAAY"], referer: http://ecomim.com/index.html
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-10 17:51:40
(1 day ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 13:51:34.384405 2026] [security2:error] [pid 445071:tid 445071] [client 120.82.82.125:9379] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||yacht-register-holland.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "yacht-register-holland.com"] [uri "/"] [unique_id "alExJkdmdqMB8XWxeU7g0QAAABo"], referer: http://yacht-register-holland.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-04 19:15:15
(1 month ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 15:15:07.979459 2026] [security2:error] [pid 16502:tid 16502] [client 120.82.82.125:61451] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||jiggajones.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "jiggajones.com"] [uri "/index.html"] [unique_id "aiHOu-jjI0seykRaQMWNBQAAABg"], referer: https://jiggajones.com/index.html
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-05-14 22:26:22
(1 month ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.125
2026-05-14 19 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.125
2026-05-14 19:00:48 /robots.txt
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-13 18:58:19
(1 month ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 14:58:10.278138 2026] [security2:error] [pid 5057:tid 5057] [client 120.82.82.125:23908] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||3dsportschannel.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "3dsportschannel.com"] [uri "/"] [unique_id "agTJwkoyu73Q2uYMY_y2rwAAAAU"], referer: http://3dsportschannel.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-05-12 22:28:57
(1 month ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.125
2026-05-12 12 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.125
2026-05-12 12:17:12 /sitemap.xml
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-12 19:22:42
(1 month ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.125 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 15:22:38.272612 2026] [security2:error] [pid 21559:tid 21559] [client 120.82.82.125:22355] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.dougrhodes.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.dougrhodes.com"] [uri "/"] [unique_id "agN9_t2Iz-P1a29Hw73l4gAAAA0"], referer: http://www.dougrhodes.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-05-05 22:39:46
(2 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.125
2026-05-05 21 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.125
2026-05-05 21:50:59 /config.json
2026-05-05 21:19:58 /
show less
Web App Attack
๐จ๐ณ
ThreatBook.io
2025-03-31 22:43:05
(1 year ago)
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.82.82.125
2025-03- ...
show more
ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/120.82.82.125
2025-03-31 12:47:10 /guard.html
show less
Web App Attack