Posted on by

Suspected DDoS Traffic from 80.71.232.15

I am writing to report suspicious traffic originating from IP address 80.71.232.15, which appears to be participating in a distributed denial of service (DDoS) attack against our infrastructure.

Summary of the incident:

Target server: vintagevictuals.com (208.87.242.254)
Time window (UTC): 13:00 – approximately 21:00
Type of traffic: HTTP Flood

Our logs show a high volume of repeated requests from this IP address that are consistent with automated attack behavior and have negatively impacted service availability.

Example log entries:

80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://tomshardware.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://immobilienscout24.de/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://douyutv.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://thesportbible.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://sears.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://shareasale.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “-” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”
80.71.232.15 – – [06/May/2026:08:04:16 -0500] “GET / HTTP/2” 200 16375 “https://beeg.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/134.0.0.0 Safari/537.36”

Published by SpaceCore