๐บ๐ธ
kosada.com
2026-07-03 03:25:47
(16 hours ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-03 00:25:47
(19 hours ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-06-29 10:56:09
(4 days ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-06-29 07:40:57
(4 days ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐จ๐ญ
backslash
2026-06-26 13:21:00
(1 week ago)
block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-25 15:18:12
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 11:18:04.248688 2026] [security2:error] [pid 26862:tid 26862] [client 183.87.96.120:28635] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||socialstudiesforkids.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "socialstudiesforkids.com"] [uri "/articles/economics/wantsandneeds2.htm"] [unique_id "aj1GrMlSauzAiRxIwZUmTAAAABA"], referer: https://socialstudiesforkids.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 05:20:21
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 01:20:17.509724 2026] [security2:error] [pid 9146:tid 9146] [client 183.87.96.120:15091] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||marveldirectory.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "marveldirectory.com"] [uri "/individuals/k/knull.html"] [unique_id "ajy6kc79QhsJx69SgvjEQQAAABs"], referer: https://marveldirectory.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 04:36:22
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 00:36:16.146244 2026] [security2:error] [pid 16203:tid 16203] [client 183.87.96.120:49114] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||arsenalfordemocracy.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "arsenalfordemocracy.com"] [uri "/2015/04/18/an-age-old-struggle-that-isnt-age-old/"] [unique_id "ajywQGsvS2ijrkGXY-2O8wAAABo"], referer: https://arsenalfordemocracy.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 03:18:39
(1 week ago)
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 23:18:33.147846 2026] [security2:error] [pid 12022:tid 12022] [client 183.87.96.120:35235] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||thenursingsite.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "thenursingsite.com"] [uri "/category/self-care"] [unique_id "ajyeCc_YDJdHHmwYXN9bzgAAABE"], referer: https://thenursingsite.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-06-20 13:27:54
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐จ๐ฟ
netmagnet
2026-06-07 09:14:33
(3 weeks ago)
Automated HTTP request flood (2048 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= que ...
show more
Automated HTTP request flood (2048 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= query params; bad web bot / web app attack from Huawei Cloud HK.
show less
Web Spam
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-05-28 07:34:28
(1 month ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐จ๐ฆ
1gz
2026-05-20 16:23:47
(1 month ago)
Triggered Cloudflare WAF (firewallCustom) from HK.
Action taken: BLOCK
Protocol: HTTP/2 (GET method) ...
show more
Triggered Cloudflare WAF (firewallCustom) from HK.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /lajme/skandali-i-adeyem-me-arme-te-paligjshme-a-rrezikon-perjashtim-nga-gjermania/837789
UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 Edg/120.0.0.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
kosada.com
2026-05-17 23:45:38
(1 month ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-04-22 03:42:07
(2 months ago)
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.96.120 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 23:42:00.777343 2026] [security2:error] [pid 4587:tid 4587] [client 183.87.96.120:50412] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.bobbyunser.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.bobbyunser.com"] [uri "/"] [unique_id "aehDiCCxc1wAkP2KI8usmQAAABU"], referer: http://www.bobbyunser.com/
show less
Brute-Force
Bad Web Bot
Web App Attack