๐บ๐ธ
TPI-Abuse
2026-07-05 22:04:17
(3 hours ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:04:09.461321 2026] [security2:error] [pid 17491:tid 17491] [client 117.35.133.148:32594] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||ohwaitiforgot.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?s=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ohwaitiforgot.com"] [uri "/"] [unique_id "akrU2SEWWUfCAxzKPkCYtQAAABI"], referer: https://ohwaitiforgot.com/?s=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 21:12:46
(4 hours ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 17:12:42.557378 2026] [security2:error] [pid 7753:tid 7856] [client 117.35.133.148:31027] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||officialseniorworldgolfranking.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /OSWGR History/2017/?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "officialseniorworldgolfranking.com"] [uri "/OSWGR History/2017/"] [unique_id "akrIyrGAlwivjaT3KbVOGgAAAg0"], referer: http://officialseniorworldgolfranking.com/OSWGR History/2017/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 20:27:55
(4 hours ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 16:27:50.956529 2026] [security2:error] [pid 32340:tid 32340] [client 117.35.133.148:32851] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||krislajeskiedesign.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "krislajeskiedesign.com"] [uri "/"] [unique_id "akq-RnLgGIkh7BKAMiRd_gAAAAM"], referer: http://krislajeskiedesign.com/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 19:41:02
(5 hours ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 15:40:58.699838 2026] [security2:error] [pid 2388:tid 2388] [client 117.35.133.148:33055] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||obgynhistory.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "obgynhistory.com"] [uri "/"] [unique_id "akqzSk3nVOu1giDa4NZv6AAAAA4"], referer: http://obgynhistory.com/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-07-05 05:08:18
(20 hours ago)
Multiple WAF Violations
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 04:22:06
(20 hours ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 00:21:58.780712 2026] [security2:error] [pid 30291:tid 30291] [client 117.35.133.148:32997] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||icro.net|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?C=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "icro.net"] [uri "/"] [unique_id "aknb5kaxNx3wijr8I1dgsAAAAAM"], referer: http://icro.net/?C=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
gadix
2026-07-05 00:04:07
(1 day ago)
[05/Jul/2026:02:04:04.828753 +0200] akmfdN3yC2oVS1Pz3AiLgAAAAIk 117.35.133.148 45614 127.0.0.1 7081
...
show more
[05/Jul/2026:02:04:04.828753 +0200] akmfdN3yC2oVS1Pz3AiLgAAAAIk 117.35.133.148 45614 127.0.0.1 7081
[05/Jul/2026:02:04:05.367909 +0200] akmfdd3yC2oVS1Pz3AiLgQAAAJU 117.35.133.148 45630 127.0.0.1 7081
[05/Jul/2026:02:04:05.664513 +0200] akmfdd3yC2oVS1Pz3AiLggAAAJI 117.35.133.148 45642 127.0.0.1 7081
...
show less
Web App Attack
๐ซ๐ท
mikekarl
2026-07-04 21:50:29
(1 day ago)
SQL INJECTION ''[0]
SQL Injection
๐บ๐ธ
TPI-Abuse
2026-07-04 18:16:12
(1 day ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 14:16:03.218109 2026] [security2:error] [pid 26406:tid 26406] [client 117.35.133.148:32824] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||www.dorioconnell.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /public_html/?tag=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.dorioconnell.com"] [uri "/public_html/"] [unique_id "aklN49nnPs8BirqebPYlywAAAAs"], referer: http://www.dorioconnell.com/public_html/?tag=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 16:38:09
(1 day ago)
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:211190) triggered by 117.35.133.148 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 12:38:05.772230 2026] [security2:error] [pid 31944:tid 31944] [client 117.35.133.148:31650] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt||dokuzadabirdeniz.com|F|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /?tag=/etc/passwd"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dokuzadabirdeniz.com"] [uri "/"] [unique_id "akk27Z5AKzAeEn-1GTtIIwAAAAg"], referer: https://dokuzadabirdeniz.com/?tag=/etc/passwd
show less
Brute-Force
Bad Web Bot
Web App Attack