๐จ๐ญ
SOC [GOLINE SA]
2026-07-01 06:03:50
(5 days ago)
FortiGate detected IPS attack from IPv4 address 161.248.14.96
Hacking
๐ซ๐ท
MatStef132
2026-06-30 22:11:42
(5 days ago)
MatShield L7: blocked on dev.mathost.eu (ua-quarantined)
Bad Web Bot
๐ญ๐บ
Lacika555
2026-06-30 18:08:42
(5 days ago)
RdpGuard detected brute-force attempt on SMTP
Brute-Force
Anonymous
2026-06-30 16:30:55
(5 days ago)
Failed login attempt detected by Fail2Ban in plesk-postfix jail
Brute-Force
๐ฉ๐ช
NewGastroline
2026-06-30 14:58:06
(5 days ago)
Malicious request blocked by CrowdSec on gastro-prod1.boreus.de
Bad Web Bot
Web App Attack
๐จ๐ญ
SOC [GOLINE SA]
2026-06-30 06:02:58
(6 days ago)
FortiGate detected IPS attack from IPv4 address 161.248.14.96
Hacking
๐จ๐ญ
SOC [GOLINE SA]
2026-06-29 05:02:47
(1 week ago)
FortiGate detected IPS attack from IPv4 address 161.248.14.96
Hacking
๐จ๐ญ
SOC [GOLINE SA]
2026-06-28 05:01:51
(1 week ago)
FortiGate detected IPS attack from IPv4 address 161.248.14.96
Hacking
๐ท๐บ
DZBOT
2026-06-27 05:05:23
(1 week ago)
DZBOT: [MTA] Brute-force users
Brute-Force
๐จ๐ญ
SOC [GOLINE SA]
2026-06-27 04:01:57
(1 week ago)
FortiGate detected IPS attack from IPv4 address 161.248.14.96
Hacking
๐บ๐ธ
TPI-Abuse
2026-06-27 02:53:19
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:53:15.383421 2026] [security2:error] [pid 9038:tid 9038] [client 161.248.14.96:50081] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||therealseska.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "therealseska.com"] [uri "/cgi-bin/php.exe"] [unique_id "aj87G8TP8em2Ib1zXOEEiAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 02:10:38
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 22:10:30.376831 2026] [security2:error] [pid 31431:tid 31431] [client 161.248.14.96:58834] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||nnrentacar.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "nnrentacar.com"] [uri "/php-cgi/php-cgi.exe"] [unique_id "aj8xFhqfc18W2i3e-UmvzwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 21:17:21
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 17:17:14.621482 2026] [security2:error] [pid 7343:tid 7343] [client 161.248.14.96:60587] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||jessicalevant.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "jessicalevant.com"] [uri "/index.php"] [unique_id "aj7sWiKMyLf7YbSG9yOFKQAAABw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 20:18:11
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 16:18:04.711803 2026] [security2:error] [pid 2385:tid 2385] [client 161.248.14.96:62534] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||expertprofessionalcleaners.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "expertprofessionalcleaners.com"] [uri "/cgi-bin/php-cgi.exe"] [unique_id "aj7efPRM0YYHkew0MegV1QAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 19:47:07
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 161.248.14.96 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 26 15:47:00.536347 2026] [security2:error] [pid 22568:tid 22568] [client 161.248.14.96:59522] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||creationorevolution.net|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "creationorevolution.net"] [uri "/index.test"] [unique_id "aj7XNPeMrEWG2jVKra0gZAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack