๐ซ๐ท
SpaceHost-Server
2026-06-04 22:30:31
(3 weeks ago)
Brute-Force
Web App Attack
๐ซ๐ท
pm33
2026-05-22 06:06:43
(1 month ago)
Excessive crawling HTTP 404
Web App Attack
๐ฎ๐น
VHosting
2026-05-01 02:25:04
(1 month ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-02 00:12:25
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 19:12:18.509617 2026] [security2:error] [pid 20829:tid 20829] [client 2a09:bac5:55ff:15f::23:477:60456] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "castagnino.com"] [uri "/sftp-config.json"] [unique_id "aaTV4glJQs3IWG6yVK57IAAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 23:43:28
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 18:43:20.480447 2026] [security2:error] [pid 13021:tid 13021] [client 2a09:bac5:55ff:15f::23:477:29384] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cyber507.net"] [uri "/sftp-config.json"] [unique_id "aaTPGKvXsRO_Ppw5lSc1dgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
ParaBug
2026-03-01 22:42:07
(3 months ago)
2a09:bac5:55ff:15f::23:477 - - [01/Mar/2026:23:42:07 +0100] "GET /sftp-config.json HTTP/1.1" 301 557 ...
show more
2a09:bac5:55ff:15f::23:477 - - [01/Mar/2026:23:42:07 +0100] "GET /sftp-config.json HTTP/1.1" 301 557 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0"
...
show less
Phishing
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 18:41:30
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 13:41:23.416938 2026] [security2:error] [pid 31839:tid 31839] [client 2a09:bac5:55ff:15f::23:477:38262] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "blackriverarc.org"] [uri "/sftp-config.json"] [unique_id "aaSIU32H5LeOZmn89z1tpAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 17:39:58
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 12:39:51.913176 2026] [security2:error] [pid 2911:tid 2911] [client 2a09:bac5:55ff:15f::23:477:41658] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coast22.net"] [uri "/sftp-config.json"] [unique_id "aaR552QJ3EfJU7r8FYGInAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 11:00:38
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 06:00:30.386461 2026] [security2:error] [pid 13299:tid 13299] [client 2a09:bac5:55ff:15f::23:477:13380] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advantage-plus.net"] [uri "/sftp-config.json"] [unique_id "aaQcTr_ME_OGhmKXiIVGPwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐น
NotACaptcha
2026-03-01 08:51:35
(3 months ago)
webserver:80 [01/Mar/2026] "GET /sftp-config.json HTTP/1.1" 302 483 "-" "Mozilla/5.0 (Macintosh; In ...
show more
webserver:80 [01/Mar/2026] "GET /sftp-config.json HTTP/1.1" 302 483 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0"
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 08:44:08
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 03:44:01.422977 2026] [security2:error] [pid 14069:tid 14069] [client 2a09:bac5:55ff:15f::23:477:43292] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "digitaldatatechnologies.net"] [uri "/sftp-config.json"] [unique_id "aaP8UXiYYWbq6YiBj3hOhAAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 08:15:34
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 03:15:28.515922 2026] [security2:error] [pid 26714:tid 26714] [client 2a09:bac5:55ff:15f::23:477:51712] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "advantagept.org"] [uri "/sftp-config.json"] [unique_id "aaP1oIwuG61PuhFGaucFHgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 06:55:32
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 01:55:28.548481 2026] [security2:error] [pid 3844:tid 3844] [client 2a09:bac5:55ff:15f::23:477:12368] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "agribrokers.net"] [uri "/sftp-config.json"] [unique_id "aaPi4K03IDzC76mUhmOZAgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-01 05:19:08
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the ...
show more
(mod_security) mod_security (id:210492) triggered by 2a09:bac5:55ff:15f::23:477 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 00:19:01.706155 2026] [security2:error] [pid 29839:tid 29839] [client 2a09:bac5:55ff:15f::23:477:48226] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alafiariverrendezvous.org"] [uri "/sftp-config.json"] [unique_id "aaPMRWjlGj5L2uD_1h9FBgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack