๐ฎ๐ฑ
spd.co.il
2026-07-15 15:02:03
(18 hours ago)
Web application attack detected
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-14 07:01:43
(2 days ago)
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 03:01:33.823573 2026] [security2:error] [pid 4150:tid 4150] [client 1.86.247.79:53386] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||bizzybeejunkremoval.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /files/?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bizzybeejunkremoval.com"] [uri "/files/"] [unique_id "alXezcVQMtW_355Z-mHhvQAAABE"], referer: http://bizzybeejunkremoval.com/files/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
Sklurk
2026-07-14 05:47:36
(2 days ago)
Web App Attack
Web App Attack
๐ฉ๐ช
LRob
2026-07-14 01:43:32
(2 days ago)
CrowdSec: crowdsecurity/http-path-traversal-probing | req: /qui-sommes-nous/?print=/etc/passwd | 4 d ...
show more
CrowdSec: crowdsecurity/http-path-traversal-probing | req: /qui-sommes-nous/?print=/etc/passwd | 4 distinct paths | UA: Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0
show less
Hacking
Anonymous
2026-07-13 20:41:02
(2 days ago)
XSS Attempt
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-13 20:23:14
(2 days ago)
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 16:23:08.972893 2026] [security2:error] [pid 2982:tid 2982] [client 1.86.247.79:51635] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||zendogenpets.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "zendogenpets.com"] [uri "/"] [unique_id "alVJLLPOqoRQzl4MNjdaGQAAAAc"], referer: http://zendogenpets.com/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
Mangelot Hosting
2026-07-13 19:10:42
(2 days ago)
(modsecurity) srv102 ModSecurity 1.86.247.79 (CN/China/-): 10 in the last 3600 secs; Ports: *; Direc ...
show more
(modsecurity) srv102 ModSecurity 1.86.247.79 (CN/China/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs:
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 18:56:24
(2 days ago)
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 14:56:16.121054 2026] [security2:error] [pid 1392:tid 1392] [client 1.86.247.79:53834] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||aupapierjaponais.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /index.php?lang=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aupapierjaponais.com"] [uri "/index.php"] [unique_id "alU00KTIPzYhDnNN8JsZJAAAABA"], referer: http://aupapierjaponais.com/index.php?lang=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
WeCloudit-Anti-Abuse
2026-07-13 18:39:20
(2 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-probing
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-13 16:54:47
(2 days ago)
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:211190) triggered by 1.86.247.79 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 12:54:40.071898 2026] [security2:error] [pid 22746:tid 22746] [client 1.86.247.79:50882] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||bigredgraphicdesign.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigredgraphicdesign.com"] [uri "/"] [unique_id "alUYUCTWcswE37n-k4LiRAAAAAE"], referer: http://bigredgraphicdesign.com/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
mikekarl
2026-07-13 12:55:00
(2 days ago)
SQL INJECTION ''[0]
SQL Injection
๐ซ๐ท
dynamix
2026-07-13 07:22:33
(3 days ago)
Multiple WAF Violations
Web App Attack