๐บ๐ธ
TPI-Abuse
2026-07-16 11:18:44
(8 hours ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 07:18:37.792671 2026] [security2:error] [pid 13597:tid 13597] [client 183.87.97.38:23629] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||3DSportsChannel.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "3dsportschannel.com"] [uri "/inde.cgi.com/index.cgi"] [unique_id "ali-DTeqaEd6OHeQje2lowAAAAU"], referer: https://3dtvsport.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
thetomtaylor.co.uk
2026-07-16 08:07:01
(11 hours ago)
Fail2Ban - [NGINX]Malicious request blocked on nginx-444 ... [wa01,wa02]
Hacking
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-15 11:03:42
(1 day ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 07:03:39.243701 2026] [security2:error] [pid 18207:tid 18207] [client 183.87.97.38:34008] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||sigridsnaturalfoods.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "sigridsnaturalfoods.com"] [uri "/personal-care/oral-care"] [unique_id "aldpC_oTE0dSNHMFx8Q3EwAAABQ"], referer: https://sigridsnaturalfoods.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 21:48:32
(1 day ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 17:48:27.793882 2026] [security2:error] [pid 6621:tid 6621] [client 183.87.97.38:54109] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.apenglishexamprep.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.apenglishexamprep.com"] [uri "/403.shtml"] [unique_id "alauq1qq78kxKhg9sWfbbgAAACM"], referer: https://apenglishexamprep.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฆ
1gz
2026-07-14 01:36:33
(2 days ago)
Triggered Cloudflare WAF (firewallCustom) from HK.
Action taken: BLOCK
Protocol: HTTP/2 (GET method) ...
show more
Triggered Cloudflare WAF (firewallCustom) from HK.
Action taken: BLOCK
Protocol: HTTP/2 (GET method)
Endpoint: /sport/ancelotti-e-kthen-ne-prioritet-transferimin-e-yllit-belg-te-licesterit/159251
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:125.0) Gecko/20100101 Firefox/125.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-13 03:59:17
(3 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 23:59:09.441726 2026] [security2:error] [pid 1861:tid 1861] [client 183.87.97.38:50522] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||janyoors.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "janyoors.com"] [uri "/life/jans-writings/reflections"] [unique_id "alRijWreIMSgFmnyF8fi7gAAAAA"], referer: https://janyoors.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-10 10:12:43
(6 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 28
Exploited Host
Web App Attack
Anonymous
2026-07-07 06:13:58
(1 week ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐บ๐ธ
kosada.com
2026-07-06 20:18:54
(1 week ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-06 08:55:34
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-03 01:40:38
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
Anonymous
2026-06-30 08:27:24
(2 weeks ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐บ๐ธ
kosada.com
2026-06-29 07:40:58
(2 weeks ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-06-29 05:40:48
(2 weeks ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 01:40:40.598826 2026] [security2:error] [pid 11270:tid 11270] [client 183.87.97.38:62552] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||seagrovesrealty.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "seagrovesrealty.com"] [uri "/brittany-leyburn"] [unique_id "akIFWKDbFMOQNaf9FphbswAAABQ"], referer: https://seagrovesrealty.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-26 03:29:45
(2 weeks ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.38 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 23:29:39.976303 2026] [security2:error] [pid 29683:tid 29683] [client 183.87.97.38:59201] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||socialstudiesforkids.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "socialstudiesforkids.com"] [uri "/articles/currentevents/articles/worldhistory/sumerianfirsts1.htm"] [unique_id "aj3yI1fHRfaQD2LSPShzrAAAAB8"], referer: https://socialstudiesforkids.com/
show less
Brute-Force
Bad Web Bot
Web App Attack