๐ซ๐ท
โจ
2026-07-08 01:57:17
(19 hours ago)
Rule : FTP
2026-07-08 01:41:59 2803:6ae0:2db:205:be24:11ff:fee1:d88a - 2a01:239:286:3b00::1 21 PASS ...
show more
Rule : FTP
2026-07-08 01:41:59 2803:6ae0:2db:205:be24:11ff:fee1:d88a - 2a01:239:286:3b00::1 21 PASS *** 530 1326 41 25 19 0 3c82f993-7e42-46d2-9e7a-14811e71f0f6 -
show less
FTP Brute-Force
Anonymous
2026-07-06 16:31:42
(2 days ago)
Failed login attempt detected by Fail2Ban in plesk-proftpd jail
Brute-Force
๐ง๐ท
KingHost
2026-07-06 01:51:04
(2 days ago)
Brute-Force
๐ซ๐ท
โจ
2026-07-06 01:32:12
(2 days ago)
Rule : FTP
2026-07-06 00:42:24 2803:6ae0:2db:205:be24:11ff:fee1:d88a - 2a00:5d80:7821:701::150 21 PA ...
show more
Rule : FTP
2026-07-06 00:42:24 2803:6ae0:2db:205:be24:11ff:fee1:d88a - 2a00:5d80:7821:701::150 21 PASS *** 530 1326 41 25 29 0 47ccbeb7-371b-42e9-905a-406f6c4bcbd0 -
show less
FTP Brute-Force
๐ณ๐ฑ
Roderic
2026-07-06 01:14:07
(2 days ago)
2803:6ae0:2db:205:be24:11ff:fee1:d88a (PE/Peru/Lima region/-/-/[redacted]
Brute-Force
๐ฉ๐ช
ghostwarriors
2026-07-06 00:50:13
(2 days ago)
Unauthorized connection to FTP port 21
FTP Brute-Force
Brute-Force
๐ซ๐ท
โจ
2026-07-06 00:42:12
(2 days ago)
Rule : FTP
2026-07-06 00:12:57 2803:6ae0:2db:205:be24:11ff:fee1:d88a - 2a01:239:343:df00::1 21 USER ...
show more
Rule : FTP
2026-07-06 00:12:57 2803:6ae0:2db:205:be24:11ff:fee1:d88a - 2a01:239:343:df00::1 21 USER massagesalonalmi 534 5 25 26 23 0 2451b292-0de6-4d31-bdda-0d34b6d44c4f -
show less
FTP Brute-Force
๐บ๐ธ
TPI-Abuse
2026-06-15 20:47:24
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 16:47:20.734594 2026] [security2:error] [pid 19692:tid 19692] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:36552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "californiabrokers.net"] [uri "/api/.env"] [unique_id "ajBk2Ng2sovl0x9brmlJuQAAABo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 20:07:13
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 16:07:05.353948 2026] [security2:error] [pid 16589:tid 16640] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:39074] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "financialcertified.com"] [uri "/functions/.env"] [unique_id "ajBbaVoZjolUg0ZlqUbM6AAAAY0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 19:05:27
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 15:05:23.116982 2026] [security2:error] [pid 6343:tid 6343] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:40958] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "proinsaca.com"] [uri "/.env"] [unique_id "ajBM88K1s0WB3ck2avIqDwAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 18:13:46
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 14:13:42.112938 2026] [security2:error] [pid 9613:tid 9613] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:57552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3-6trucking.com"] [uri "/functions/.env"] [unique_id "ajBA1psS8Owf_A1V8L-oKQAAADA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-06-15 18:04:25
(3 weeks ago)
T: f2b 404 5x
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 17:50:07
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:50:01.182775 2026] [security2:error] [pid 3982:tid 3982] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:48856] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fundingworkingcapital.com"] [uri "/api/.env"] [unique_id "ajA7SSsiPdRr9aXguHX7_gAAACE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 17:05:07
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 13:05:00.959151 2026] [security2:error] [pid 10050:tid 10050] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:37924] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kalourislawfirm.com"] [uri "/.env"] [unique_id "ajAwvIbn4Wo6vLzdp7bl5QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 16:46:38
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown) ...
show more
(mod_security) mod_security (id:210492) triggered by 2803:6ae0:2db:205:be24:11ff:fee1:d88a (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 12:46:30.239534 2026] [security2:error] [pid 9558:tid 9558] [client 2803:6ae0:2db:205:be24:11ff:fee1:d88a:50118] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "franchiseconsultants.org"] [uri "/.env"] [unique_id "ajAsZgro61tMiK5VbZ5QJAAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack