๐บ๐ธ
mnsf
2026-07-08 01:05:14
(1 day ago)
Too many Status 40X (17)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 13:35:54
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 09:35:50.000067 2026] [security2:error] [pid 21603:tid 21603] [client 188.241.126.55:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ccamp.dev"] [uri "/sftp-config.json"] [unique_id "akuvNVt35XcbdgcuRgxmMgAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
Oakley
2026-07-06 12:03:26
(2 days ago)
(confirmed_bot_sig) Confirmed bot
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-06 10:40:16
(2 days ago)
(mod_security) mod_security (id:210580) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210580) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 06:40:09.262744 2026] [security2:error] [pid 28849:tid 28849] [client 188.241.126.55:29000] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_url. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||www.cayman-boat-registration.com|F|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_url: https:/cavenderapproved.com/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "www.cayman-boat-registration.com"] [uri "/.vscode/sftp.json"] [unique_id "akuGCYlDUL6bPwletFPEZQAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 09:21:22
(2 days ago)
(mod_security) mod_security (id:210580) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210580) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 05:21:14.787587 2026] [security2:error] [pid 5041:tid 5041] [client 188.241.126.55:15760] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_url. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||catzpaw.com|F|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_url: https:/cartimedover.com/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "catzpaw.com"] [uri "/.vscode/sftp.json"] [unique_id "aktzigDknPh4ayNgu2bWqQAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 05:15:17
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 01:15:12.411429 2026] [security2:error] [pid 29793:tid 29807] [client 188.241.126.55:14088] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coloradosellers.com"] [uri "/sftp-config.json"] [unique_id "aks54NZFD_hhGEm92bgpJwAAAEs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
iNetWorker
2026-07-06 05:04:34
(2 days ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:38:38
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:38:30.743281 2026] [security2:error] [pid 5716:tid 5716] [client 188.241.126.55:13692] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "casapapayasanmiguel.com"] [uri "/sftp-config.json"] [unique_id "akrc5nlt8WienPKdTudNywAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:09:48
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:09:39.853627 2026] [security2:error] [pid 11447:tid 11447] [client 188.241.126.55:20030] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "casalaaldehuela.com"] [uri "/sftp-config.json"] [unique_id "akrWI-xXZPul-YqK6UsWRgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-05 22:00:17
(3 days ago)
Auto-ban: >3000 req/min op 2026-07-05
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-05 21:40:29
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 17:40:21.595739 2026] [security2:error] [pid 25102:tid 25102] [client 188.241.126.55:54252] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "casademunt.com"] [uri "/sftp-config.json"] [unique_id "akrPRfsDsu1a1TPusPDo1gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
nyt
2026-07-05 18:55:09
(3 days ago)
Deploy Config Probe
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 07:32:39
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 03:32:33.671807 2026] [security2:error] [pid 24195:tid 24195] [client 188.241.126.55:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nyemdr.org"] [uri "/sftp-config.json"] [unique_id "akoIkdp__i_ELlAioTjWmgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 03:42:51
(4 days ago)
(mod_security) mod_security (id:210580) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210580) triggered by 188.241.126.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 23:42:44.010044 2026] [security2:error] [pid 7834:tid 7834] [client 188.241.126.55:60634] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_url. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||emelecsrl.com|F|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_url: https:/corvusjanitorial.com/locations/jacksonville/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "emelecsrl.com"] [uri "/.vscode/sftp.json"] [unique_id "aknStPIQzgq2C8nxD6xPKQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack