๐บ๐ธ
TPI-Abuse
2026-07-02 21:08:34
(2 days ago)
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 17:08:29.451143 2026] [security2:error] [pid 32692:tid 32692] [client 161.115.235.18:43981] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.beckersystems.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.beckersystems.com"] [uri "/partners/lakeworthcity.com"] [unique_id "akbTTZOicmrA2ClK-aa73wAAAAo"], referer: http://www.lakeworthcity.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
HandyTreff.de
2026-06-27 08:27:29
(1 week ago)
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -35.789 (Bad < -10 / Very Bad < -20 ...
show more
Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -35.789 (Bad < -10 / Very Bad < -20 / Extreme < -35) | UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.51
show less
Web App Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-05-24 04:57:50
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 00:57:42.605835 2026] [security2:error] [pid 23869:tid 23940] [client 161.115.235.18:36973] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.flutelesson.nl|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.flutelesson.nl"] [uri "/nl"] [unique_id "ahKFRvkXg2_VaHKinJlp-gAAAVA"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
Michael McCarthy
2026-05-23 18:37:28
(1 month ago)
Web Spam
๐บ๐ธ
TPI-Abuse
2026-05-17 22:01:00
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 18:00:54.043767 2026] [security2:error] [pid 9131:tid 9131] [client 161.115.235.18:50633] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.abakada.net|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.abakada.net"] [uri "/scmicron"] [unique_id "ago6loFOyRVpnYCU-ApX9wAAABY"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-08 03:05:34
(1 month ago)
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 07 23:05:28.740005 2026] [security2:error] [pid 396:tid 441] [client 161.115.235.18:46891] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||rawsynergy.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "rawsynergy.com"] [uri "/"] [unique_id "af1S-FZZFoTjrazcxpaTawAAAMI"], referer: https://www.google.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
Progetto1
2026-05-03 10:55:02
(2 months ago)
Website Scanning / Scraping
Bad Web Bot
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-04-30 19:46:23
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 161.115.235.18 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Apr 30 15:46:19.100999 2026] [security2:error] [pid 5344:tid 5344] [client 161.115.235.18:59117] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||cmcnyc.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "cmcnyc.com"] [uri "/"] [unique_id "afOxi0WpPy6dtt1pV5XeQQAAAAE"], referer: http://wagehour.us/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ช๐ธ
masterguru
2026-04-06 02:35:34
(2 months ago)
Request content type is not allowed by policy. Match of "within %{tx.allowed_request_content_type}" ...
show more
Request content type is not allowed by policy. Match of "within %{tx.allowed_request_content_type}" against "TX:content_type" required. (920420-122)
show less
Hacking
Web App Attack
๐บ๐ธ
MirrorImageGaming
2026-02-14 14:14:31
(4 months ago)
GET / HTTP/1.1 https://www.google.com Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 ( ...
show more
GET / HTTP/1.1 https://www.google.com Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.4844.51 Safari/537.36 Edg/99.0.1150.30
show less
Web App Attack
๐ช๐จ
icp77
2025-12-20 17:42:00
(6 months ago)
Abuse DDoS
DDoS Attack
FTP Brute-Force
Port Scan
Hacking
SQL Injection
Brute-Force
Exploited Host
Web App Attack
SSH
๐ฎ๐น
LTM
2025-11-23 07:20:01
(7 months ago)
IP/Port Scan
Port Scan
Brute-Force