Anonymous
2026-07-13 05:57:49
(5 days ago)
Malicious activity detected
Hacking
Web App Attack
π©πͺ
KI-Netzwerk
2026-06-26 08:01:15
(3 weeks ago)
Bad Calls: Webpage scraping, Web App Attack
Bad Web Bot
Exploited Host
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-22 04:57:35
(3 weeks ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 00:57:30.886141 2026] [security2:error] [pid 31092:tid 31092] [client 146.112.163.37:34327] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||karenbernsteinlaw.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "karenbernsteinlaw.com"] [uri "/wp-content/themes/Magnificent/js/jquery.easing.1.3.js"] [unique_id "ajjAukaru00MHc94-caoOAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-16 05:45:30
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 01:45:24.459435 2026] [security2:error] [pid 11414:tid 11414] [client 146.112.163.37:39597] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.nationalenq.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.nationalenq.com"] [uri "/wp-content/uploads/2020/03/National-ENQ-NationalENQ.com-USA-Angel-Investors-USAAngelinvestors.com-US-Angel-Investors-Los-Angeles-Angel-Investors-for-Personal-Loans-1024x576.png"] [unique_id "ajDi9EykJF6j_T4_sjC09wAAACo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π¦πΊ
MAGIC
2026-06-13 03:02:39
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
πΊπΈ
TPI-Abuse
2026-06-07 04:12:36
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 07 00:12:32.504868 2026] [security2:error] [pid 6574:tid 6574] [client 146.112.163.37:9422] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||totenclaus.es|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "totenclaus.es"] [uri "/public/css/prettyPhoto.css"] [unique_id "aiTvsM3-iCTd-k_pUvy8jwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-06-05 04:38:47
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 00:38:44.139987 2026] [security2:error] [pid 31339:tid 31357] [client 146.112.163.37:8146] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.hawk-av.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.hawk-av.com"] [uri "/css2/hawk_gallery_shop.css"] [unique_id "aiJS1OuFbpAeV03qkTcqnAAAAVA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
grassau.com
2026-06-05 04:19:24
(1 month ago)
*Port Scan* detected from 146.112.163.37 (US/United States/Virginia/Reston/-).
Port Scan
πΊπΈ
TPI-Abuse
2026-06-03 04:47:50
(1 month ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 00:47:47.386227 2026] [security2:error] [pid 15328:tid 15341] [client 146.112.163.37:59043] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.tvpin.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.tvpin.com"] [uri "/index.cgi"] [unique_id "ah-x8_4CjKzREAGvLKjMOAAAAQs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-05-26 06:02:24
(1 month ago)
Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy ...
show more
Probing for known exploit paths (.env, .git, wp-admin, shell files, etc.). Single-strike ban policy β zero tolerance for exploit scanning. Banned May 26, 06:02 UTC. Origin: United States, Reston.
show less
Hacking
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-18 05:15:23
(2 months ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 01:15:11.228224 2026] [security2:error] [pid 22216:tid 22216] [client 146.112.163.37:12630] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.patrickstrain.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.patrickstrain.com"] [uri "/favicon.ico"] [unique_id "agqgX7DbbUt60BNwIV7GQAAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-14 04:17:55
(2 months ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 00:17:52.386681 2026] [security2:error] [pid 16771:tid 17218] [client 146.112.163.37:4587] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||seal-block.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "seal-block.com"] [uri "/rvsincludefile/rvsheadpage.js"] [unique_id "agVM8IC0TD5T_EBvVKBmLgAAAVQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-05-04 13:08:32
(2 months ago)
Part of large DDoS Botnet Controlled via GoLang
DDoS Attack
Bad Web Bot
Exploited Host
Web App Attack
π΅πΉ
Information Security
2026-04-22 18:27:20
(2 months ago)
Web App Attack
Web App Attack
πΊπΈ
TPI-Abuse
2026-04-13 06:11:52
(3 months ago)
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210740) triggered by 146.112.163.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 02:11:45.623922 2026] [security2:error] [pid 1343196:tid 1343196] [client 146.112.163.37:55793] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/Proxy-Connection/" at TX:header_name. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "33"] [id "210740"] [rev "2"] [msg "COMODO WAF: HTTP header is restricted by policy||www.vicmackenzie.com|F|4"] [data "/Proxy-Connection/"] [severity "WARNING"] [tag "CWAF"] [tag "HTTP"] [hostname "www.vicmackenzie.com"] [uri "/pics/logo.ico"] [unique_id "adyJITMRESr5YyQh-m9aGAAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack