๐บ๐ธ
kosada.com
2026-07-08 15:45:02
(5 minutes ago)
Web vulnerability probing: /.vscode/ftp-sync.json
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 15:33:50
(16 minutes ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 11:33:45.141941 2026] [security2:error] [pid 32323:tid 32323] [client 165.232.172.37:64607] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "brookedramer.com"] [uri "/sftp-config.json"] [unique_id "ak5t2XjD4jWwPKhjbPNubQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 14:59:53
(50 minutes ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 10:59:48.556328 2026] [security2:error] [pid 12516:tid 12516] [client 165.232.172.37:59713] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "calebdavison.com"] [uri "/sftp-config.json"] [unique_id "ak5l5GB-5dSvdFmHdTaaUwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
i-turnradio.nl
2026-07-08 14:09:42
(1 hour ago)
2026-07-08 @ 16:09:42 (CET) ~ Blocked for trying to access: /sftp-config.json
Web App Attack
๐ฎ๐น
mediarama.com
2026-07-08 14:01:29
(1 hour ago)
Banned by Fail2Ban
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-08 13:57:15
(1 hour ago)
Try to access /.vscode/sftp.json
Web App Attack
๐บ๐ธ
mnsf
2026-07-08 13:05:38
(2 hours ago)
Too many Status 40X (18)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 11:16:57
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 07:16:52.226673 2026] [security2:error] [pid 5922:tid 5922] [client 165.232.172.37:56072] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bullsalerts.com"] [uri "/sftp-config.json"] [unique_id "ak4xpG22-k3o7QjXoW-EZwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 10:57:38
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 06:57:33.867162 2026] [security2:error] [pid 2863:tid 2863] [client 165.232.172.37:54352] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "broneksuchanek.com"] [uri "/sftp-config.json"] [unique_id "ak4tHfMRpLzKtJwR-oOYoQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 08:44:05
(7 hours ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 04:44:00.818479 2026] [security2:error] [pid 18952:tid 18952] [client 165.232.172.37:59942] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "btsalesrep.com"] [uri "/sftp-config.json"] [unique_id "ak4N0FgaD_qQevvnz2UbXgAAACo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-08 08:25:52
(7 hours ago)
Restricted File Access Attempt. Matched phrase "config.json" at REQUEST_FILENAME. (930130-197)
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 05:36:16
(10 hours ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 01:36:09.752066 2026] [security2:error] [pid 4218:tid 4218] [client 165.232.172.37:59041] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "busengakko.org"] [uri "/sftp-config.json"] [unique_id "ak3hyczFx4-IBYsqBAKgSAAAACM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-07-08 05:15:41
(10 hours ago)
2 attacks on password grabbing URLs:
GET /.vscode/sftp.json HTTP/1.1
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-08 04:24:11
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 165.232.172.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 08 00:24:05.250515 2026] [security2:error] [pid 22325:tid 22341] [client 165.232.172.37:57974] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bronnimann.org"] [uri "/sftp-config.json"] [unique_id "ak3Q5cCTH4VMJZ4WHGTIwQAAAIw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-08 03:29:06
(12 hours ago)
856 requests with url.path *config.json
531 requests with url.path *ftp-sync.json
167 requests wi ...
show more
856 requests with url.path *config.json
531 requests with url.path *ftp-sync.json
167 requests with url.path *sftp.json
show less
Brute-Force
Bad Web Bot