๐ณ๐ฑ
e.fierstra
2026-07-09 00:15:27
(14 hours ago)
ModSecurity hits exceeded
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 10:15:27
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 06:15:20.693729 2026] [security2:error] [pid 16391:tid 16391] [client 136.143.250.28:3076] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "darrinlauritzen.com"] [uri "/sftp-config.json"] [unique_id "akuAOJ5dr66eRAXubNl3FQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-06 02:04:09
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 22:03:50.916846 2026] [security2:error] [pid 14800:tid 14800] [client 136.143.250.28:45496] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "accomplishedmagazine.com"] [uri "/sftp-config.json"] [unique_id "aksNBsdDC-ZQAXZr-12nVgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 14:08:05
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 10:08:00.647920 2026] [security2:error] [pid 9641:tid 9641] [client 136.143.250.28:7510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "4md.lol"] [uri "/sftp-config.json"] [unique_id "akplQAnvLZ-pvlz3OTj2IQAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 12:38:17
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 08:37:58.349851 2026] [security2:error] [pid 25423:tid 25423] [client 136.143.250.28:49256] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.levijoneslegal.com"] [uri "/sftp-config.json"] [unique_id "akpQJr5WxlhF_j7bnIeb0AAAADU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 20:46:01
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 16:45:55.780461 2026] [security2:error] [pid 19673:tid 19673] [client 136.143.250.28:45378] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "3dsportschannel.com"] [uri "/sftp-config.json"] [unique_id "aklxA7OOh6MfmTzypkf7jwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 23:07:33
(5 days ago)
(mod_security) mod_security (id:210580) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210580) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 19:07:22.483511 2026] [security2:error] [pid 1393:tid 1393] [client 136.143.250.28:12762] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_landing_page. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||www.eliseheritage.com|F|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_landing_page: http:/theozlottery.com/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "www.eliseheritage.com"] [uri "/.vscode/sftp.json"] [unique_id "akhAqtnbMOv4Q8zc4qTRkQAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 21:27:12
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 17:26:45.073237 2026] [security2:error] [pid 13663:tid 13671] [client 136.143.250.28:29700] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.giere.us"] [uri "/sftp-config.json"] [unique_id "akgpFRBkJo9dNQBt_UT9XQAAAIQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ง๐ช
cmbplf
2026-07-03 18:44:51
(5 days ago)
131 requests with url.path *config.json
Brute-Force
Bad Web Bot
๐ฉ๐ช
MusicLibrary
2026-07-03 15:16:14
(5 days ago)
Probing foreign-stack admin panels / known exploit paths (Joomla, phpMyAdmin, phpunit, OWA, etc.)
Bad Web Bot
Web App Attack