๐บ๐ธ
TPI-Abuse
2026-07-17 06:36:53
(15 hours ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 02:36:48.153259 2026] [security2:error] [pid 531501:tid 531501] [client 183.87.97.47:32196] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.heatherweathers.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.heatherweathers.com"] [uri "/403.shtml"] [unique_id "alnNgIY5gZBku841TzH7JwAAAAA"], referer: https://heatherweathers.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 07:13:53
(1 day ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 03:13:45.953752 2026] [security2:error] [pid 8400:tid 8400] [client 183.87.97.47:54180] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||3dworld-wide.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "3dworld-wide.com"] [uri "/"] [unique_id "aliEqTh8PFyuo9wGy6JiiQAAABI"], referer: https://3dworld-wide.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 20:37:31
(2 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 16:37:25.350854 2026] [security2:error] [pid 2684:tid 2684] [client 183.87.97.47:32157] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||doorofhopechurch.org|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "doorofhopechurch.org"] [uri "/"] [unique_id "alfvhYNyIpr27j5tV83LfAAAAAs"], referer: https://doorofhopechurch.org/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 11:42:06
(2 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 07:41:59.893357 2026] [security2:error] [pid 1596:tid 1596] [client 183.87.97.47:39019] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||jerusalem-korczak-home.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "jerusalem-korczak-home.com"] [uri "/125/125konz.html"] [unique_id "aldyB0zY7jib5UqkgXN_GAAAAAs"], referer: https://jerusalem-korczak-home.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 08:22:25
(2 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 04:22:21.539829 2026] [security2:error] [pid 22727:tid 22742] [client 183.87.97.47:13749] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||royallawsociety.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "royallawsociety.com"] [uri "/"] [unique_id "aldDPfq-H_0Fs-IzSLQyBgAAAM0"], referer: https://royallawsociety.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 02:38:51
(2 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 22:38:47.956708 2026] [security2:error] [pid 12353:tid 12353] [client 183.87.97.47:45735] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||asociacioncopan.org|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "asociacioncopan.org"] [uri "/"] [unique_id "albyt0vHpkHM2d_7lHAoFQAAAAI"], referer: https://asociacioncopan.org/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 13:53:18
(3 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 09:53:11.772003 2026] [security2:error] [pid 5075:tid 5075] [client 183.87.97.47:16917] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||cameronwv.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "cameronwv.com"] [uri "/location.htm"] [unique_id "alY_R2ruuT2YDOTm41ILogAAABc"], referer: https://cameronwv.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 04:18:07
(4 days ago)
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports ...
show more
(mod_security) mod_security (id:210350) triggered by 183.87.97.47 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 00:17:56.190161 2026] [security2:error] [pid 14224:tid 14224] [client 183.87.97.47:20554] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||www.recetabook.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.recetabook.com"] [uri "/403.shtml"] [unique_id "alRm9I3snCMc7plczYNtvQAAACE"], referer: https://recetabook.com/
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
kosada.com
2026-07-06 19:40:41
(1 week ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-06 06:55:34
(1 week ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-07-03 01:10:38
(2 weeks ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot
๐บ๐ธ
stechusa
2026-07-02 10:58:19
(2 weeks ago)
ELEVATED_THREAT | country=HK | ASN=HUAWEI CLOUDS | Recv-Q=1529 bytes on ESTABLISHED connection (thre ...
show more
ELEVATED_THREAT | country=HK | ASN=HUAWEI CLOUDS | Recv-Q=1529 bytes on ESTABLISHED connection (threshold=1000) | 10 different user-agents from same IP in last 10 requests | GET to POST-only endpoint: /wishlist/index/add/product/24217/form_key/ipqoegx6dfizgvti (status=301)
show less
Bad Web Bot
DDoS Attack
Anonymous
2026-06-30 08:01:48
(2 weeks ago)
Unauthorized connection attempt
Port Scan
Hacking
Exploited Host
๐บ๐ธ
kosada.com
2026-06-29 10:26:23
(2 weeks ago)
Web bot: DDoS
DDoS Attack
Bad Web Bot
๐บ๐ธ
kosada.com
2026-06-29 07:40:58
(2 weeks ago)
Web bot: denial-of-service flood
DDoS Attack
Bad Web Bot