JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.115.234.167

161.115.234.167 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 13%: ?

13%

ISP	Flux Telecom, LLC
Usage Type	Fixed Line ISP
ASN	AS6079
Domain Name	fluxtelecom.com
Country	🇺🇸 United States of America
City	Leesburg, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.115.234.167

Whois 161.115.234.167

IP Abuse Reports for 161.115.234.167:

This IP address has been reported a total of 17 times from 6 distinct sources. 161.115.234.167 was first reported on November 22nd 2025, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-23 02:11:03 (3 days ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 22:10:57.726446 2026] [security2:error] [pid 31991:tid 31991] [client 161.115.234.167:57273] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.itibitico.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.itibitico.com"] [uri "/Intro/"] [unique_id "ajnrMUJ8UYmxXNTHcXwB-QAAAAw"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 20:50:49 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 16:50:42.625868 2026] [security2:error] [pid 31505:tid 31505] [client 161.115.234.167:58881] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|roguetechhub.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "roguetechhub.com"] [uri "/contact/"] [unique_id "ajhOokv5zz-DKsk-LaTKpgAAAAM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 13:03:17 (6 days ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 09:03:10.193656 2026] [security2:error] [pid 32359:tid 32359] [client 161.115.234.167:38215] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.mdgcontrols.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mdgcontrols.com"] [uri "/"] [unique_id "ajaPjpXYyAc1SfKqHM90FQAAAA8"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-06-05 00:22:04 (3 weeks ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-25 11:53:58 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 07:53:51.493494 2026] [security2:error] [pid 32742:tid 32742] [client 161.115.234.167:46739] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|aliciagrant.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "aliciagrant.com"] [uri "/"] [unique_id "ahQ4T7lU78uuIuL8DaFzUAAAAAc"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 02:45:06 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 22:44:59.701871 2026] [security2:error] [pid 30868:tid 30868] [client 161.115.234.167:59479] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.darkhorseyachting.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.darkhorseyachting.com"] [uri "/dhweb/winchpro.html"] [unique_id "ahO3q6jJvoa93qzyI6V8pgAAAA4"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 06:25:58 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 02:25:51.583358 2026] [security2:error] [pid 1113:tid 1113] [client 161.115.234.167:41043] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.motioncontrolpartners.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.motioncontrolpartners.com"] [uri "/"] [unique_id "agqw79e54HAO_3YHPOOgIQAAAAM"], referer: http://nstarelectserv.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-05-09 01:24:08 (1 month ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-06 14:51:26 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 06 10:51:19.898848 2026] [security2:error] [pid 15786:tid 15814] [client 161.115.234.167:53959] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.alzooma.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.alzooma.com"] [uri "/wiwox/magnetbay/magnetbay_o.htm"] [unique_id "aftVZ3jAjWxKvmCGVqPtpQAAARU"], referer: http://magnetbay.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 19:12:10 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 15:12:03.900789 2026] [security2:error] [pid 13998:tid 13998] [client 161.115.234.167:59039] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|cyclelytz.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "cyclelytz.com"] [uri "/"] [unique_id "afpBAwdg4ki1-t5Fhgq3wAAAABM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-04 11:28:54 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 04 07:28:47.690126 2026] [security2:error] [pid 27606:tid 27606] [client 161.115.234.167:43293] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.fractalsky.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.fractalsky.com"] [uri "/blackhorrormovie.com"] [unique_id "afiC7zC05YysKuriqiduLQAAAAg"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-01 09:01:26 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.234.167 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 01 05:01:21.991398 2026] [security2:error] [pid 16753:tid 16753] [client 161.115.234.167:58951] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.beckersystems.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.beckersystems.com"] [uri "/partners/businesstobusinessassociation.com"] [unique_id "afRr4U88cua41HMJ7z81AQAAAAE"], referer: http://downtownmerchants.net/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-04-07 01:51:22 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇨🇭 blinx	2026-04-04 18:09:28 (2 months ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
Anonymous	2026-03-01 08:15:06 (3 months ago)	spambot	Web Spam

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇱🇻 81.30.98.75

🇺🇸 52.240.168.203

🇬🇧 35.203.211.92

🇷🇴 2.57.122.150

🇫🇷 203.55.81.2

🇵🇰 156.238.86.2

🇨🇳 116.31.237.141

🇧🇬 91.191.209.118

🇺🇸 66.132.195.17

🇺🇸 20.163.15.96

🇩🇪 4.184.246.230

🇺🇸 162.216.150.62

🇺🇸 162.216.149.154

🇫🇮 147.185.133.29

🇨🇳 112.51.227.212

🇫🇷 88.167.240.104

🇺🇸 65.49.1.162

🇮🇩 36.68.186.7

🇨🇳 14.103.112.5

🇱🇻 195.123.211.33