๐บ๐ธ
TPI-Abuse
2026-06-23 19:24:15
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.239 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 15:24:07.635940 2026] [security2:error] [pid 4562:tid 4562] [client 161.115.234.239:41291] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||noelramos.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "noelramos.com"] [uri "/unit2.html"] [unique_id "ajrdV6-xuOwnDZalwb0y6wAAAAQ"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 15:24:58
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.239 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 11:24:51.709281 2026] [security2:error] [pid 4417:tid 4417] [client 161.115.234.239:33375] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||aliciagrant.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "aliciagrant.com"] [uri "/"] [unique_id "ajlTw4-4M8cpUgmYJN9DwAAAAAA"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-22 09:41:01
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.239 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.239 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 05:40:53.833050 2026] [security2:error] [pid 15537:tid 15537] [client 161.115.234.239:53717] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||prostar.industries|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "prostar.industries"] [uri "/"] [unique_id "ajkDJcEinCGVIPJZ59nLDwAAAEY"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ท
ludarkstar99
2026-06-06 15:40:15
(3 weeks ago)
Blocked by os-abuseipdb; 35 hits, proto=tcp, ports=443,80
Port Scan
Hacking
๐ฉ๐ช
ghostwarriors
2026-06-05 12:20:11
(4 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ghostwarriors
2026-06-04 03:20:11
(4 weeks ago)
Webpage scraping
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
BlueWire Hosting
2026-06-03 20:07:23
(4 weeks ago)
Bad bot ignoring robot.txt
Bad Web Bot
๐ซ๐ท
masterguru
2026-06-03 11:08:22
(1 month ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 161.115.234.239 (US/United States/-): ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 161.115.234.239 (US/United States/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐ซ๐ท
SpaceHost-Server
2026-06-01 22:28:17
(1 month ago)
Brute-Force
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-05-31 22:27:52
(1 month ago)
Brute-Force
Web App Attack
๐ฆ๐น
penguin-solutions.at
2026-05-31 15:00:45
(1 month ago)
Excessive 403/404 errors
...
Brute-Force
Web App Attack
๐ฎ๐ฑ
Dolphi
2026-05-31 04:41:16
(1 month ago)
Excessive POST /xmlrpc.php requests
Brute-Force
Web App Attack
Anonymous
2026-05-30 07:52:25
(1 month ago)
Attac
Brute-Force
๐บ๐ธ
TAY
2026-05-29 22:36:15
(1 month ago)
161.115.234.239 - - [30/May/2026:06:35:57 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5095 "-" "Go-http-c ...
show more
161.115.234.239 - - [30/May/2026:06:35:57 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5095 "-" "Go-http-client/1.1"
161.115.234.239 - - [30/May/2026:06:36:05 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5095 "-" "Go-http-client/1.1"
161.115.234.239 - - [30/May/2026:06:36:05 +0800] "POST /xmlrpc.php HTTP/1.1" 200 5095 "-" "Go-http-client/1.1"
...
show less
Brute-Force
๐ซ๐ท
SpaceHost-Server
2026-05-29 22:27:22
(1 month ago)
Brute-Force
Web App Attack