๐ง๐ช
Saec
2026-07-02 18:15:07
(5 days ago)
Jarvis auto-ban: CF honeypot path /xmlrpc.php (1ร on saec.me)
Port Scan
Web App Attack
๐ซ๐ท
MatStef132
2026-07-01 22:35:06
(5 days ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-10 01:59:07
(3 weeks ago)
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:58:55.916474 2026] [security2:error] [pid 22565:tid 22565] [client 153.76.14.17:17199] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||autodiscover.calvarycavaliers.org|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "autodiscover.calvarycavaliers.org"] [uri "/admin/adminer.php"] [unique_id "aijE3yYkTWfOXoEyVKRxggAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
MatStef132
2026-05-19 21:11:06
(1 month ago)
MatShield L7: blocked on mathost.eu (ua-quarantined)
Bad Web Bot
๐ณ๐ฑ
MatStef132
2026-05-19 20:21:18
(1 month ago)
MatShield L7: blocked on chat.justchat.icu (ua-quarantined)
Bad Web Bot
๐ณ๐ฑ
MatStef132
2026-05-15 13:30:00
(1 month ago)
MatShield L7 blocked request to fivemtest.mathost.eu for reason ua-q
DDoS Attack
Bad Web Bot
Web App Attack
๐ฉ๐ช
bescared
2026-05-06 19:55:52
(2 months ago)
F2B - Malicious activity detected. URL Probing. -c23856ef-
Hacking
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-20 12:41:12
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 20 08:41:08.526223 2026] [security2:error] [pid 3663844:tid 3663844] [client 153.76.14.17:58041] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||hjaltihjalmarsson.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "hjaltihjalmarsson.com"] [uri "/adminer/adminer.php"] [unique_id "aeYe5Bjg1RHfiLGRCQG3NwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-19 17:06:27
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 19 13:06:21.249371 2026] [security2:error] [pid 27661:tid 27661] [client 153.76.14.17:39057] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||cccorponline.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "cccorponline.com"] [uri "/adminer/adminer.php"] [unique_id "aeULjUBh-YKbuTUiI2YrlgAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-19 12:00:13
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 153.76.14.17 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 19 08:00:05.239697 2026] [security2:error] [pid 1599123:tid 1599123] [client 153.76.14.17:17895] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.ballantinepaintinganddrywall.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.ballantinepaintinganddrywall.com"] [uri "/403.shtml"] [unique_id "aeTDxe8aTt3U6pDudA0QrQAAABQ"], referer: https://ballantinepaintinganddrywall.com/adminer.php
show less
Brute-Force
Bad Web Bot
Web App Attack