๐ซ๐ท
polido
2026-07-06 06:22:42
(8 hours ago)
[Oracle] Unauthorized connection attempt to port 443 from 213.180.203.124
Port Scan
๐บ๐ธ
Starburst SysOp Team
2026-07-02 23:52:32
(3 days ago)
BAD BOT, BAD BOT, WHAT YA GONNA DO - Detected and Blocked.. Matched phrase "Yandex" at REQUEST_HEADE ...
show more
BAD BOT, BAD BOT, WHAT YA GONNA DO - Detected and Blocked.. Matched phrase "Yandex" at REQUEST_HEADERS:User-Agent. (1100000-mnz6-1)
show less
Bad Web Bot
Anonymous
2026-07-01 14:39:52
(5 days ago)
213.180.203.124 - - [01/Jul/2026:16:39:51 +0200] "GET / HTTP/1.1" 301 169 "-" "Mozilla/5.0 (compatib ...
show more
213.180.203.124 - - [01/Jul/2026:16:39:51 +0200] "GET / HTTP/1.1" 301 169 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http:///bots)"
show less
Bad Web Bot
๐ซ๐ท
Sklurk
2026-06-27 00:06:08
(1 week ago)
Web App Attack
Web App Attack
๐ซ๐ท
polido
2026-06-25 01:36:04
(1 week ago)
Unauthorized connection attempt to port 443 from 213.180.203.124
Port Scan
๐ฌ๐ท
setupgr
2026-06-24 13:33:48
(1 week ago)
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tse ...
show more
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tsentralnyy administrativnyy okrug)/-/[AS208398 TELETECH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 16:33:45.129056 2026] [security2:error] [pid 22183:tid 22279] [client 213.180.203.124:54408] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "yandex.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213-180-203-124.spider.yandex.com"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/robots.txt"] [unique_id "ajvcuZPczxnZE4m6hLi1SAAAAMg"]
show less
Port Scan
๐ฌ๐ท
setupgr
2026-06-24 12:52:16
(1 week ago)
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tse ...
show more
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tsentralnyy administrativnyy okrug)/-/[AS208398 TELETECH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 15:52:15.239551 2026] [security2:error] [pid 137194:tid 137337] [client 213.180.203.124:42292] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "yandex.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213-180-203-124.spider.yandex.com"] [severity "CRITICAL"] [hostname "asteriassantorini.com"] [uri "/robots.txt"] [unique_id "ajvS_wKcA9mXO7n_2qLbEQAAAIw"]
show less
Port Scan
๐ฌ๐ท
setupgr
2026-06-24 09:58:57
(1 week ago)
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tse ...
show more
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tsentralnyy administrativnyy okrug)/-/[AS208398 TELETECH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 12:58:55.776104 2026] [security2:error] [pid 63968:tid 75619] [remote 213.180.203.124:46328] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "yandex.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213-180-203-124.spider.yandex.com"] [severity "CRITICAL"] [hostname "asteriassantorini.com"] [uri "/wp-content/plugins/woocommerce-multilingual/templates/products-list/"] [unique_id "ajuqXz_tjI8vsxY4WxO3rgAAkSM"]
show less
Port Scan
๐ฌ๐ง
Bytemark
2026-06-24 07:09:00
(1 week ago)
213.180.203.124 - - [24/Jun/2026:08:08:59 +0100] "GET /robots.txt HTTP/1.1" 200 7294 "-" "Mozilla/5. ...
show more
213.180.203.124 - - [24/Jun/2026:08:08:59 +0100] "GET /robots.txt HTTP/1.1" 200 7294 "-" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)"
show less
Brute-Force
Web App Attack
๐ฌ๐ท
setupgr
2026-06-24 02:56:39
(1 week ago)
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tse ...
show more
(mod_security) mod_security (id:11000011) triggered by 213.180.203.124 (RU/Russia/Moscow/Moscow (Tsentralnyy administrativnyy okrug)/-/[AS208398 TELETECH]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 05:56:38.216165 2026] [security2:error] [pid 2329:tid 2460] [client 213.180.203.124:42062] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "yandex.com" at REMOTE_HOST. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "131"] [id "11000011"] [msg "BLOCKED BAD DOMAIN: 213-180-203-124.spider.yandex.com"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/robots.txt"] [unique_id "ajtHZjpFmYcDdPif-9NrtgAAAFA"]
show less
Port Scan
๐ช๐ธ
librebit
2026-06-22 22:31:04
(1 week ago)
Brute force
Brute-Force
๐ง๐ท
ICS Labs
2026-06-22 15:47:04
(1 week ago)
ICS Labs identified 213.180.203.124 as a malicious indicator from threat intelligence.
DDoS Attack
Port Scan
Hacking
Brute-Force
Exploited Host
๐ซ๐ท
Sklurk
2026-06-18 03:42:10
(2 weeks ago)
Web App Attack
Web App Attack
๐ช๐ธ
librebit
2026-06-18 00:37:12
(2 weeks ago)
Brute force
Brute-Force
๐ท๐บ
genokrad
2026-06-15 19:17:37
(2 weeks ago)
Website scan TCP 80/443 "/robots.txt" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bo ...
show more
Website scan TCP 80/443 "/robots.txt" "Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)"
show less
Port Scan
Web App Attack