๐บ๐ธ
TPI-Abuse
2026-03-06 23:47:27
(4 months ago)
(mod_security) mod_security (id:210350) triggered by 45.147.234.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 45.147.234.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Mar 06 18:47:21.727561 2026] [security2:error] [pid 12244:tid 12244] [client 45.147.234.203:50377] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||sahinozalit.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "sahinozalit.com"] [uri "/"] [unique_id "aatniaTUygIkBoYQNi8kUwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
sefinek.net
2026-02-01 03:56:35
(5 months ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:114.0) Gecko/20100101 Firefox/114.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ต๐ฑ
sefinek.net
2026-01-01 03:51:54
(6 months ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 12.5; rv:114.0) Gecko/20100101 Firefox/114.0
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐จ๐ฆ
wil.com
2025-11-29 13:54:02
(7 months ago)
GlobalProtect login attempts with user kelseytoobn089.
VPN IP
Brute-Force
๐ต๐ฑ
sefinek.net
2025-11-21 08:08:24
(7 months ago)
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1. ...
show more
Triggered Cloudflare WAF (firewallCustom) from US.
Action taken: MANAGED_CHALLENGE
Protocol: HTTP/1.1 (GET method)
Endpoint: /
UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Vivaldi/5.3.2679.68
This report was generated by:
https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐ฎ๐ฉ
Burayot
2025-11-19 05:18:11
(8 months ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.147.234.203 (US/United States/-) ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 45.147.234.203 (US/United States/-): 1 in the last 3600 secs
show less
Web App Attack
๐ฆ๐บ
Block Rockin' Beats
2025-10-21 19:05:03
(8 months ago)
Scanning forum with forged referal
Hacking
Web App Attack
Anonymous
2025-10-13 23:07:23
(9 months ago)
wordpress-trap
Web App Attack
Anonymous
2025-10-11 06:27:11
(9 months ago)
Forum/form spam
Web Spam
๐ฎ๐ฉ
BPS-StatisticsIndonesia
2025-10-09 05:55:09
(9 months ago)
WP Admin Scan Activities
Web App Attack
๐บ๐ธ
ecosmartfire.com.au
2025-09-11 21:47:00
(10 months ago)
45.147.234.203 - - [12/Sep/2025:07:32:09 +1000] "POST /warranty/ HTTP/1.1" 503 473 "https://heatscop ...
show more
45.147.234.203 - - [12/Sep/2025:07:32:09 +1000] "POST /warranty/ HTTP/1.1" 503 473 "https://heatscopeheaters.com/warranty/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0"
45.147.234.203 - - [12/Sep/2025:07:32:09 +1000] "POST /warranty/ HTTP/2.0" 503 248 "https://heatscopeheaters.com/warranty/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 CCleaner/130.0.0.0"
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2025-09-10 22:33:13
(10 months ago)
(mod_security) mod_security (id:210350) triggered by 45.147.234.203 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210350) triggered by 45.147.234.203 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 18:33:06.298914 2025] [security2:error] [pid 12849:tid 12849] [client 45.147.234.203:38331] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found||bohk.com|F|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "bohk.com"] [uri "/"] [unique_id "aMH8oghJfGtvwGOxhbXVlAAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack