๐ฉ๐ช
FeG Deutschland
2026-06-30 00:51:32
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-30 05:03:11
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 01:03:06.471661 2026] [security2:error] [pid 11816:tid 11816] [client 153.76.10.153:28671] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||ftp.pdc14.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "ftp.pdc14.com"] [uri "/robots.txt"] [unique_id "ahpvihzWutOPg1PS-5Op-wAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
MatStef132
2026-05-19 21:11:06
(1 month ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
๐ณ๐ฑ
MatStef132
2026-05-19 21:09:01
(1 month ago)
MatShield L7: blocked on dstat.selify.io (ua-quarantined)
Bad Web Bot
๐ซ๐ท
MatStef132
2026-05-14 21:32:40
(1 month ago)
[mathost.eu] ua-q
DDoS Attack
Bad Web Bot
Web App Attack
๐จ๐ญ
Danny-CH
2026-04-25 15:29:00
(2 months ago)
searches for admin login pages and admin scripts
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-04-20 17:33:47
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 13:33:39.656930 2026] [security2:error] [pid 1613060:tid 1613060] [client 153.76.10.153:12645] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||manaplas.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "manaplas.com"] [uri "/adminer.php"] [unique_id "aeZjcwRMiIbSqo9GtIGdfQAAABg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-20 13:27:15
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 09:27:11.264904 2026] [security2:error] [pid 3307815:tid 3307815] [client 153.76.10.153:5021] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||investorscalifornia.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "investorscalifornia.com"] [uri "/_adminer.php"] [unique_id "aeYpr-76Ea2SnjRa0kwFbAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-15 20:16:20
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.10.153 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 15 16:16:03.871511 2026] [security2:error] [pid 3485077:tid 3485077] [client 153.76.10.153:11173] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||mail.comsew.com.au|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "mail.comsew.com.au"] [uri "/admin/adminer.php"] [unique_id "ad_yA5y5PZkDQYbNAfBucAAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack