JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.115.239.206

161.115.239.206 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 20%: ?

20%

ISP	Flux Telecom, LLC
Usage Type	Fixed Line ISP
ASN	AS6079
Domain Name	fluxtelecom.com
Country	🇺🇸 United States of America
City	Leesburg, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.115.239.206

Whois 161.115.239.206

IP Abuse Reports for 161.115.239.206:

This IP address has been reported a total of 16 times from 8 distinct sources. 161.115.239.206 was first reported on January 29th 2026, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇭 blinx	2026-06-26 19:33:30 (10 hours ago)	Suspicious activity detected by Modsecurity	Web Spam Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 08:24:30 (3 days ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 04:24:26.376621 2026] [security2:error] [pid 29609:tid 29609] [client 161.115.239.206:40097] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|militaryordnance.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "militaryordnance.com"] [uri "/"] [unique_id "ajpCuutCotjohihCPfeBcwAAABY"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-23 02:11:08 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 22:11:04.265200 2026] [security2:error] [pid 32623:tid 32623] [client 161.115.239.206:42337] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.itibitico.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.itibitico.com"] [uri "/Intro/"] [unique_id "ajnrOPfRj4FdXNXQMfS9ZgAAAA0"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-18 11:27:02 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 18 07:26:53.433490 2026] [security2:error] [pid 18346:tid 18346] [client 161.115.239.206:38967] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|watongalodging.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "watongalodging.com"] [uri "/"] [unique_id "ajPV_XhF4QDgeEg5ON6u3wAAAAQ"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Lezetho	2026-05-30 14:00:13 (3 weeks ago)	DDoS, WebSpam, Web Attack, and Brute-force blocked by Cloudflare	DDoS Attack Email Spam Hacking Brute-Force
🇺🇸 TPI-Abuse	2026-05-24 12:20:58 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 08:20:53.927994 2026] [security2:error] [pid 32611:tid 32611] [client 161.115.239.206:45567] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.affourtit-bowmaker.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.affourtit-bowmaker.com"] [uri "/"] [unique_id "ahLtJfE54wrrVQs3PlNYcQAAAAY"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-23 12:50:26 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 08:50:21.608696 2026] [security2:error] [pid 10626:tid 10626] [client 161.115.239.206:33663] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|prostar.industries\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "prostar.industries"] [uri "/"] [unique_id "ahGijb9BLQIi51ncHEbncQAAAAs"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-23 04:30:42 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 00:30:34.185909 2026] [security2:error] [pid 6585:tid 6585] [client 161.115.239.206:51531] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.itibitico.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.itibitico.com"] [uri "/Intro/"] [unique_id "ahEtahiE-6KBv5p1qKdHqwAAAAY"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-18 14:22:18 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 18 10:22:10.537313 2026] [security2:error] [pid 15990:tid 16006] [client 161.115.239.206:47399] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.financialanalyst.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.financialanalyst.org"] [uri "/"] [unique_id "agsgkmd6me6_Xm5TUMDNJgAAAQg"], referer: http://aafmboard.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 16:05:43 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 12:05:35.593589 2026] [security2:error] [pid 16745:tid 16745] [client 161.115.239.206:50693] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.liveinbirminghamalabama.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.liveinbirminghamalabama.com"] [uri "/"] [unique_id "agnnT578HMYk5WmRMwK2MgAAAAk"], referer: http://mountainbrookalabamahomes.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-05 08:05:27 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 161.115.239.206 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 05 04:05:22.229533 2026] [security2:error] [pid 11675:tid 11675] [client 161.115.239.206:39965] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.wendykim.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.wendykim.com"] [uri "/"] [unique_id "afmkwozw8Wll5ezHKekQrAAAAA8"], referer: http://wendykim.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2026-03-03 01:24:33 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 Reinhard	2026-02-06 11:17:03 (4 months ago)	Unknown activity, but too many attacks with too many users.	Hacking
Anonymous	2026-01-31 13:55:08 (4 months ago)	SuspiciousB Activity detected by FMBAD System 2026-01-31 16:55:08	Port Scan Hacking Bad Web Bot Web App Attack
🇫🇷 conseilgouz	2026-01-31 04:18:50 (4 months ago)	saw-(visforms) : try to access forms...	Hacking

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 212.102.61.137

🇻🇳 157.10.44.121

🇲🇴 125.31.4.70

🇮🇷 109.125.139.68

🇩🇪 94.16.17.140

🇬🇧 35.203.210.208

🇷🇺 87.229.254.207

🇳🇱 81.19.216.73

🇩🇪 69.5.169.130

🇩🇪 43.158.91.71

🇺🇸 208.69.161.214

🇲🇽 187.191.48.23

🇺🇸 162.216.150.236

🇭🇰 150.5.148.103

🇫🇮 147.185.133.154

🇮🇳 139.59.39.219

🇺🇸 104.243.37.202

🇳🇱 45.148.10.151

🇫🇷 204.93.187.102

🇳🇱 193.176.31.251