๐บ๐ธ
TPI-Abuse
2026-07-02 13:11:38
(1 week ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 09:11:31.564163 2026] [security2:error] [pid 16348:tid 16348] [client 120.82.82.242:21842] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.uniquelimo.org|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.uniquelimo.org"] [uri "/"] [unique_id "akZjg9QfKIFwmA8Z2MWGNgAAAB0"], referer: http://www.uniquelimo.org/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 03:22:29
(1 week ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:22:23.728960 2026] [security2:error] [pid 5660:tid 5660] [client 120.82.82.242:22242] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.dualspiralsystems.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.dualspiralsystems.com"] [uri "/"] [unique_id "akXZb6pozeh1o8CYZZOTgAAAAAY"], referer: http://www.dualspiralsystems.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 22:27:38
(3 weeks ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 18:27:31.739103 2026] [security2:error] [pid 29877:tid 29877] [client 120.82.82.242:4664] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||philipma.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "philipma.com"] [uri "/"] [unique_id "ajRw016P-4SFcMW40d--JQAAABY"], referer: http://philipma.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 19:17:49
(3 weeks ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 15:17:42.905526 2026] [security2:error] [pid 13132:tid 13132] [client 120.82.82.242:4822] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||cottrel.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "cottrel.com"] [uri "/"] [unique_id "ajREVoZqvseU8PG9p12GEAAAAAQ"], referer: http://cottrel.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-04-02 22:40:11
(3 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-04-02 20 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-04-02 20:48:24 /sitemap.xml
show less
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-04-01 22:33:46
(3 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-04-01 17 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-04-01 17:03:43 /favicon.ico
show less
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-03-31 22:30:16
(3 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-03-31 10 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-03-31 10:34:06 /
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-19 11:57:58
(4 months ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 19 06:57:53.805655 2026] [security2:error] [pid 8950:tid 8950] [client 120.82.82.242:22886] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.forwardti.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.forwardti.com"] [uri "/"] [unique_id "aZb6wZP0NZzISxLY5Rw-oQAAAAw"], referer: https://www.forwardti.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-15 22:28:33
(4 months ago)
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210831) triggered by 120.82.82.242 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 15 17:28:26.076809 2026] [security2:error] [pid 19210:tid 19210] [client 120.82.82.242:7289] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url|user-Agent|www\\\\.weblogs\\\\.com|(?:jakart|vi)a|(google|i{0,1}explorer{0,1}\\\\.exe|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)|\\\\bdatacha0s\\\\b|; widows|\\\\\\\\r|a(?: href=|d(?:sarobot|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler||www.vplow.com|F|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.vplow.com"] [uri "/"] [unique_id "aZJIijzLIFd_a1uvOalsdAAAABY"], referer: http://www.vplow.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ณ
ThreatBook.io
2026-02-14 22:33:09
(4 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-02-14 14 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2026-02-14 14:04:11 /config.json
show less
Web App Attack
๐จ๐ณ
ThreatBook.io
2025-10-07 22:12:24
(9 months ago)
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2025-10-07 01 ...
show more
ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.82.82.242
2025-10-07 01:57:04 /
show less
Web App Attack