๐บ๐ธ
TPI-Abuse
2026-06-25 09:12:47
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 05:12:41.970869 2026] [security2:error] [pid 10059:tid 10108] [client 161.115.234.7:53515] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||dailysavershbg.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "dailysavershbg.com"] [uri "/"] [unique_id "ajzxCc_mla6gaXUUqe0XtAAAAVQ"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Vegascosmetics
2026-06-18 08:59:05
(2 weeks ago)
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after repeated server errors (fuzzing). Vegas ...
show more
(Kingcopy.org-AI-IDS-Report):IP automatically blocked after repeated server errors (fuzzing). Vegas Security
show less
Hacking
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-18 03:52:48
(2 weeks ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 23:52:43.098627 2026] [security2:error] [pid 25497:tid 25507] [client 161.115.234.7:51561] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.utahhoaservices.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.utahhoaservices.com"] [uri "/"] [unique_id "ajNri9G8qNRh5F6QCx42ngAAAUg"], referer: http://utahhoacommunities.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
MAGIC
2026-05-30 00:17:05
(1 month ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ณ๐ฑ
soverin
2026-05-28 01:42:33
(1 month ago)
Network scan on port 443
Email Spam
๐ฉ๐ช
KI-Netzwerk
2026-05-27 03:50:04
(1 month ago)
Bad Calls: Webpage scraping, Web App Attack
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-27 03:03:49
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 26 23:03:44.188598 2026] [security2:error] [pid 15531:tid 15531] [client 161.115.234.7:50059] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.starfrontiers.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.starfrontiers.com"] [uri "/HouseRules/WDC/"] [unique_id "ahZfEDBHVAzFDtfx8L8UmwAAAAk"], referer: http://wolfebanedevelopmentcorp.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-24 16:18:29
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 12:18:23.451026 2026] [security2:error] [pid 18542:tid 18542] [client 161.115.234.7:60097] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||nsdorganogram.org|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "nsdorganogram.org"] [uri "/"] [unique_id "ahMkzzhQrKgma2JCowfkQgAAAAo"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-22 14:29:34
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.234.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 10:29:28.723198 2026] [security2:error] [pid 26043:tid 26043] [client 161.115.234.7:60073] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||arcadiapropertiesllc.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "arcadiapropertiesllc.com"] [uri "/"] [unique_id "ahBoSNDE9jd2ELva8fvrOwAAABU"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
Bread
2026-04-27 23:59:00
(2 months ago)
Triggered honeypot
Brute-Force
Bad Web Bot
Exploited Host
Web App Attack
๐ฆ๐บ
MAGIC
2026-03-23 01:37:30
(3 months ago)
VM1 Bad user agents ignoring web crawling rules. Draing bandwidth
DDoS Attack
Bad Web Bot
๐ฉ๐ช
dbmwebdesign
2026-02-12 05:05:41
(4 months ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack
๐บ๐ธ
Rip
2026-02-12 01:24:29
(4 months ago)
Authentication attack attempt. CMS Brute Force - Access Forbidden
Brute-Force
Web App Attack
๐ฉ๐ช
abdubhai
2026-02-12 00:24:54
(4 months ago)
161.115.234.7 - - [12/Feb/2026:0
...
Brute-Force
๐บ๐ธ
WeekendWeb
2026-02-11 03:53:17
(4 months ago)
Wordpress Vunerability attack
Web App Attack