This IP address has been reported a total of
27
times from
15 distinct
sources.
168.144.116.131 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Blocked by UFW (TCP on 443)
Source port: 48870
TTL: 52
Packet length: 60
TOS: 0x00
This report (for ...
show moreBlocked by UFW (TCP on 443)
Source port: 48870
TTL: 52
Packet length: 60
TOS: 0x00
This report (for 168.144.116.131) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Triggered Cloudflare WAF (firewallCustom) from IN.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (G ...
show moreTriggered Cloudflare WAF (firewallCustom) from IN.
Action: MANAGED_CHALLENGE | Protocol: HTTP/1.1 (GET) | Endpoint: /welcome | UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/93.0.4577.0 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
[WedJun1019:02:34.4876842026][security2:error][pid686459:tid686553][client168.144.116.131:0]ModSecur ...
show more[WedJun1019:02:34.4876842026][security2:error][pid686459:tid686553][client168.144.116.131:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"server8.4host.ch\"][uri\"/\"][unique_id\"aimYqkhr5UcB6kA2BWo_3AAAAMc\"]
show less
{"level":"info","ts":1781029631.3274446,"logger":"http.log.access.log0","msg":"handled request","req ...
show more{"level":"info","ts":1781029631.3274446,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"168.144.116.131","remote_port":"25412","client_ip":"168.144.116.131","proto":"HTTP/1.1","method":"GET","host":"gl82.status.updown.io","uri":"/","headers":{"Connection":["close"],"Accept-Encoding":["gzip"],"User-Agent":["Go-http-client/1.1"]}},"bytes_read":0,"user_id":"","duration":0.000070304,"size":0,"status":308,"resp_headers":{"Location":["https://gl82.status.updown.io/"],"Content-Type":[],"Server":["Caddy"],"Connection":["close"]}}
{"level":"info","ts":1781029948.9010165,"logger":"http.log.access.log0","msg":"handled request","request":{"remote_ip":"168.144.116.131","remote_port":"61300","client_ip":"168.144.116.131","proto":"HTTP/1.1","method":"GET","host":"ze7m.status.updown.io","uri":"/","headers":{"User-Agent":["Go-http-client/1.1"],"Connection":["close"],"Accept-Encoding":["gzip"]}},"bytes_read":0,"user_id":"","duration":0.000071146,"size":0,"status":308,"res
...
show less
[TueJun0904:54:33.1157302026][security2:error][pid2213440:tid2213564][client168.144.116.131:0]ModSec ...
show more[TueJun0904:54:33.1157302026][security2:error][pid2213440:tid2213564][client168.144.116.131:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"autodiscover.restaurantgandria.ch\"][uri\"/\"][unique_id\"aieAaWp8TW4efZFdPlgHvAAAAQw\"]
show less