๐ญ๐บ
kranem
2026-07-08 21:00:06
(6 hours ago)
Triggered Cloudflare WAF from US.
Action taken: BLOCK
ASN: 8075 (Microsoft Corporation)
Protocol: HT ...
show more
Triggered Cloudflare WAF from US.
Action taken: BLOCK
ASN: 8075 (Microsoft Corporation)
Protocol: HTTP/2 (GET method)
Endpoint: /_nuxt/ylIk6rIj.js
Timestamp: 2026-07-08T20:56:11Z
User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/136.0.0.0 Safari/537.36
show less
Bad Web Bot
๐ฌ๐ท
setupgr
2026-06-16 22:38:42
(3 weeks ago)
(mod_security) mod_security (id:11000010) triggered by 40.77.178.213: 1 in the last 86400 secs; Port ...
show more
(mod_security) mod_security (id:11000010) triggered by 40.77.178.213: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 17 01:38:40.104181 2026] [security2:error] [pid 2210176:tid 2210237] [remote 40.77.178.213:7622] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "bingbot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "104"] [id "11000010"] [msg "BLOCKED BOT: bingbot - in ftiaxtomonosou.gr"] [severity "CRITICAL"] [hostname "ftiaxtomonosou.gr"] [uri "/wp-content/cache/min/1/wp-content/plugins/revslider/admin/includes/shortcode_generator/elementor/assets/js/sr7-elementor-preview.js"] [unique_id "ajHQcI0pb6dkgQfaMdDRjAABCxg"], referer: https://ftiaxtomonosou.gr/
show less
Port Scan
๐ฌ๐ท
setupgr
2026-06-15 23:57:18
(3 weeks ago)
(mod_security) mod_security (id:11000010) triggered by 40.77.178.213: 1 in the last 86400 secs; Port ...
show more
(mod_security) mod_security (id:11000010) triggered by 40.77.178.213: 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Jun 16 02:57:15.292910 2026] [security2:error] [pid 1917012:tid 1917047] [remote 40.77.178.213:39683] ModSecurity: Access denied with code 406 (phase 1). Matched phrase "bingbot" at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "103"] [id "11000010"] [msg "BLOCKED BOT: bingbot - in asteriassantorini.com"] [severity "CRITICAL"] [hostname "asteriassantorini.com"] [uri "/wp-content/uploads/elementor/google-fonts/css/amaticsc.css"] [unique_id "ajCRW0CXHuxGK7C8F7o-MQAAVwo"], referer: https://asteriassantorini.com/
show less
Port Scan
Anonymous
2026-05-18 19:40:19
(1 month ago)
40.77.178.213 - - [18/May/2026:19:40:13 +0000] "GET /workbox-835c8c05.js HTTP/2.0" 444 0 "https://ta ...
show more
40.77.178.213 - - [18/May/2026:19:40:13 +0000] "GET /workbox-835c8c05.js HTTP/2.0" 444 0 "https://taiwan.suann.net/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/146.0.7680.165 Safari/537.36"
40.77.178.213 - - [18/May/2026:19:40:13 +0000] "GET /svg/moon-phase-7.svg HTTP/2.0" 444 0 "https://taiwan.suann.net/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/146.0.7680.165 Safari/537.36"
40.77.178.213 - - [18/May/2026:19:40:15 +0000] "GET /svg/moon-phase-6.svg HTTP/2.0" 444 0 "https://taiwan.suann.net/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) HeadlessChrome/146.0.7680.165 Safari/537.36"
...
show less
Bad Web Bot
Web App Attack
๐ฆ๐บ
Anytech
2026-04-03 17:27:31
(3 months ago)
Blocked by Conn-Monitor: Automated bot activity
Web App Attack
๐ฆ๐บ
Anytech
2026-04-02 09:04:42
(3 months ago)
Blocked by Conn-Monitor: Automated bot activity
Web App Attack
๐จ๐ณ
ThreatBook.io
2025-09-11 23:34:12
(9 months ago)
ThreatBook Intelligence: Whitelist,Info more details on https://threatbook.io/ip/40.77.178.213
2025- ...
show more
ThreatBook Intelligence: Whitelist,Info more details on https://threatbook.io/ip/40.77.178.213
2025-09-11 14:12:54 /i18n/zh_TW/event.txt
show less
Web App Attack
๐ฎ๐ฉ
hermawan
2025-09-09 05:22:36
(9 months ago)
[Tue Sep 09 12:21:27.751887 2025] [security2:error] [pid 1150734:tid 139979978491584] [client 40.77. ...
show more
[Tue Sep 09 12:21:27.751887 2025] [security2:error] [pid 1150734:tid 139979978491584] [client 40.77.178.213:46980] ModSecurity: Access denied with code 403 (phase 1). Match of "pm googlebot " against "REQUEST_HEADERS:From" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "98"] [id "448105"] [msg "BAD REQUEST Header From "] [data "Matched Data: found within REQUEST_HEADERS:From: bingbot(at)microsoft.com request_line = GET /disquss-v5.js HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/disquss-v5.js"] [unique_id "aL-5V148L1QheoKvYGDfbwADAwE"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[1150736] [dcPSeVdip7s] [aL-5V148L1QheoKvYGDfbwADAwE] keep_alive=[1] [2025-09-09 12:21:27.751890] [R:aL-5V148L1QheoKvYGDfbwADAwE] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/100.0.4896.127 Safari/537.36' Host:'staklim-jatim.bmkg.go.id
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-06 01:10:35
(10 months ago)
(mod_security) mod_security (id:210730) triggered by 40.77.178.213 (msnbot-40-77-178-213.search.msn. ...
show more
(mod_security) mod_security (id:210730) triggered by 40.77.178.213 (msnbot-40-77-178-213.search.msn.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 05 21:10:31.384091 2025] [security2:error] [pid 12980:tid 12980] [client 40.77.178.213:46976] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy||civilwarzone.com|F|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "aLuKB5kpGeMyHa6Gm6tBsgAAAAw"], referer: http://civilwarzone.com/MyFatherHowLong.html
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ด
j458rjqwi348fhjq46
2025-08-11 07:10:39
(10 months ago)
Malicious IP detected by WAF with anomaly score 11.0. Attack types: Timestamp deviates by 13.7 hours ...
show more
Malicious IP detected by WAF with anomaly score 11.0. Attack types: Timestamp deviates by 13.7 hours, Timestamp deviates by 2.0 hours, Timestamp deviates by 2.9 hours (+7 more). Activity: 5135 requests to 50 URLs. Period: 2025-08-11 00:58:05 - 2025-08-11 00:58:05 (America/Bogota). Origin: US. Source: Automated WAF log analysis.
show less
Web App Attack
๐ฎ๐ฉ
hermawan
2025-08-01 22:15:04
(11 months ago)
[Sat Aug 02 05:12:53.162627 2025] [security2:error] [pid 282458:tid 140286310201024] [client 40.77.1 ...
show more
[Sat Aug 02 05:12:53.162627 2025] [security2:error] [pid 282458:tid 140286310201024] [client 40.77.178.213:10308] ModSecurity: Access denied with code 403 (phase 1). Match of "pm googlebot " against "REQUEST_HEADERS:From" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "98"] [id "448105"] [msg "BAD REQUEST Header From "] [data "Matched Data: found within REQUEST_HEADERS:From: bingbot(at)microsoft.com request_line = GET /TableFilter/filtergrid.css HTTP/2.0"] [severity "NOTICE"] [hostname "staklim-jatim.bmkg.go.id"] [uri "/TableFilter/filtergrid.css"] [unique_id "aI075amoINHP9v_Ifqv86gAAkwQ"] [staklim-jatim.bmkg.go.id] [staklim-jatim.bmkg.go.id] top=[282490] [+t8iD9VUPAY] [aI075amoINHP9v_Ifqv86gAAkwQ] keep_alive=[1] [2025-08-02 05:12:53.162636] [R:aI075amoINHP9v_Ifqv86gAAkwQ] UA:'Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm) Chrome/100.0.4896.127 Safari/537.36' Host:'
...
show less
Hacking
Web App Attack