๐ซ๐ท
ELYAZ
2026-07-09 12:45:42
(5 hours ago)
(y4) Failed scan -byebye- from 178.212.207.23 (DE/Germany/-): (CF_ENABLE)
Hacking
๐บ๐ธ
mnsf
2026-07-08 01:05:13
(1 day ago)
Request Overload (104)
Brute-Force
Web App Attack
๐ฌ๐ง
openstrike.co.uk
2026-07-07 05:15:00
(2 days ago)
2 attacks on password grabbing URLs:
GET /.vscode/sftp.json HTTP/1.1
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-06 10:40:15
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 06:40:08.419322 2026] [security2:error] [pid 28723:tid 28723] [client 178.212.207.23:36944] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cayman-boat-registration.com"] [uri "/sftp-config.json"] [unique_id "akuGCDfsPEpxOSowXchvTwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 09:21:17
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 05:21:13.676014 2026] [security2:error] [pid 2437:tid 2437] [client 178.212.207.23:59884] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "catzpaw.com"] [uri "/sftp-config.json"] [unique_id "aktziSMxWctZjwImEZyT2AAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Axel
2026-07-06 06:46:02
(3 days ago)
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /sftp-config. ...
show more
Blocked by ModSecurity. Rule ID: 210492 Message: None Phase: 1 Severity: CRITICAL URI: /sftp-config.json Server: UK-01
show less
Web App Attack
Hacking
SQL Injection
๐ง๐ช
cmbplf
2026-07-05 23:56:41
(3 days ago)
100 requests with url.path *sftp.json
Brute-Force
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-05 23:31:28
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 19:31:25.126380 2026] [security2:error] [pid 21773:tid 21773] [client 178.212.207.23:42698] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "caschettaconsulting.com"] [uri "/sftp-config.json"] [unique_id "akrpTW5FFlTcOqkNFYnqOQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-05 21:59:18
(3 days ago)
Auto-ban: >3000 req/min op 2026-07-05
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-05 20:02:57
(3 days ago)
(mod_security) mod_security (id:210580) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210580) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 16:02:48.856077 2026] [security2:error] [pid 5019:tid 5019] [client 178.212.207.23:19876] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_url. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||cartoondelivery.com|F|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_url: https:/cartimedover.com/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "cartoondelivery.com"] [uri "/.vscode/sftp.json"] [unique_id "akq4aNAokUvexmHopnOvZQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 19:40:32
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 15:40:25.148341 2026] [security2:error] [pid 1829:tid 1829] [client 178.212.207.23:40222] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carterslawncare.net"] [uri "/sftp-config.json"] [unique_id "akqzKejE4HQwhmEfuje-TQAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nyt
2026-07-05 18:55:08
(3 days ago)
Deploy Config Probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 03:42:42
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 23:42:32.172305 2026] [security2:error] [pid 22330:tid 22330] [client 178.212.207.23:39570] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "15cherryavenue.com"] [uri "/sftp-config.json"] [unique_id "aknSqGe4qUuUx1fqPGOz4QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-04 19:11:03
(4 days ago)
Web App Attack, Hacking
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 17:14:55
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 178.212.207.23 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 13:14:51.180826 2026] [security2:error] [pid 29295:tid 29295] [client 178.212.207.23:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "eddysgroup.com"] [uri "/sftp-config.json"] [unique_id "akk_i0gdLP_G_PNmd1VofQAAAAc"]
show less
Brute-Force
Bad Web Bot
Web App Attack