๐บ๐ธ
TPI-Abuse
2026-07-11 04:09:30
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 00:09:23.095659 2026] [security2:error] [pid 18661:tid 18661] [client 188.241.126.53:2182] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "quakeprediction.com"] [uri "/sftp-config.json"] [unique_id "alHB88SCIOSLJmEcxSASpwAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-11 03:22:12
(3 hours ago)
dot file probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-11 00:25:44
(6 hours ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 10 20:25:36.632665 2026] [security2:error] [pid 4034:tid 4034] [client 188.241.126.53:40282] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "apfarrell.com"] [uri "/sftp-config.json"] [unique_id "alGNgBxhqmhJDvZHXtKFLQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-10 23:35:53
(7 hours ago)
141 requests with url.path *config.json
Brute-Force
Bad Web Bot
๐ฉ๐ช
big-cloud.nl
2026-07-10 22:25:19
(8 hours ago)
Try to access /.vscode/sftp.json
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 22:02:56
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 18:02:51.332778 2026] [security2:error] [pid 1584:tid 1584] [client 188.241.126.53:4890] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "essentialee.com"] [uri "/sftp-config.json"] [unique_id "alAai5GAqaUjZjRUK78WngAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 07:26:55
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 03:26:47.144225 2026] [security2:error] [pid 21536:tid 21536] [client 188.241.126.53:29588] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "esad.com"] [uri "/sftp-config.json"] [unique_id "ak9NN3HkChjRuQNtKHY5ZQAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 03:15:11
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 23:14:59.500237 2026] [security2:error] [pid 28263:tid 28263] [client 188.241.126.53:7550] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "entertainer-review.com"] [uri "/sftp-config.json"] [unique_id "ak3As0ekDQ2wOUp1B4cxUgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 22:46:44
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 18:46:38.345747 2026] [security2:error] [pid 10004:tid 10004] [client 188.241.126.53:27818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "enjoy2dance.com"] [uri "/sftp-config.json"] [unique_id "ak2BznG-1BDagbR1QMmfqwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 10:43:01
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 06:42:55.541554 2026] [security2:error] [pid 27185:tid 27185] [client 188.241.126.53:38834] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "enchantmenttours.com"] [uri "/sftp-config.json"] [unique_id "akzYLyQcJcvYQMHiA1oAzAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฆ๐บ
2000cn.com.au
2026-07-07 10:24:53
(3 days ago)
This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files
Web App Attack
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-06 23:12:47
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.53 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 19:12:42.049770 2026] [security2:error] [pid 24585:tid 24585] [client 188.241.126.53:16818] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emelecsrl.com"] [uri "/sftp-config.json"] [unique_id "akw2akTyIx5gQKfW0Z6pdwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-06 19:16:52
(4 days ago)
(y4) Failed scan -byebye- from 188.241.126.53 (IT/Italy/-): (CF_ENABLE)
Hacking
๐ฉ๐ช
FeG Deutschland
2026-07-06 12:15:25
(4 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐ฌ๐ง
consul.to
2026-07-06 10:36:45
(4 days ago)
Web attack/malicious scanning detected
Web App Attack