๐บ๐ธ
TPI-Abuse
2026-07-01 13:44:59
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 09:44:54.619506 2026] [security2:error] [pid 30177:tid 30177] [client 136.143.250.8:46866] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "wisdomwfm.com"] [uri "/sftp-config.json"] [unique_id "akUZ1r0JpEMI-kwiMuwyUQAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 13:25:38
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 09:25:32.336045 2026] [security2:error] [pid 23244:tid 23262] [client 136.143.250.8:2664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "kiehnefamily.us"] [uri "/sftp-config.json"] [unique_id "akUVTK4Uigzr05tJXI07jQAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-01 13:09:43
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 09:09:36.284645 2026] [security2:error] [pid 26208:tid 26208] [client 136.143.250.8:18216] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.accordionfactory.com"] [uri "/sftp-config.json"] [unique_id "akURkDtPD_rXFyQXO9_a_AAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
filstal.org
2026-06-30 00:50:24
(2 days ago)
Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels an ...
show more
Web reconnaissance detected: automated probing for sensitive files, backup archives, admin panels and known vulnerability paths.
show less
Hacking
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 23:38:58
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 19:38:50.379535 2026] [security2:error] [pid 11787:tid 11787] [client 136.143.250.8:44544] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.relayer.net"] [uri "/dd//sftp-config.json"] [unique_id "akMCCo9lT71dZkItcoGUmAAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 18:33:09
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 14:33:04.339891 2026] [security2:error] [pid 17259:tid 17259] [client 136.143.250.8:31648] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "danzadance.info"] [uri "/sftp-config.json"] [unique_id "akK6YKxtuQ01L27PPnsG8wAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 09:51:10
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:51:04.902900 2026] [security2:error] [pid 29072:tid 29072] [client 136.143.250.8:40728] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "danharrisphotoart.com"] [uri "/sftp-config.json"] [unique_id "akJACEOKlTWW7UySiry6JAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-29 09:15:38
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 29 05:15:31.753985 2026] [security2:error] [pid 17744:tid 17744] [client 136.143.250.8:36022] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.idmadventures.com"] [uri "/sftp-config.json"] [unique_id "akI3s0eY84u0ARdTOPoaTgAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-28 00:06:36
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 20:06:31.026379 2026] [security2:error] [pid 31214:tid 31214] [client 136.143.250.8:4666] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cycontechnology.com"] [uri "/sftp-config.json"] [unique_id "akBlh0MFpSyctICFZJGghgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-27 17:32:20
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 13:32:14.824233 2026] [security2:error] [pid 6475:tid 6497] [client 136.143.250.8:16068] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cwminstitute.com"] [uri "/sftp-config.json"] [unique_id "akAJHhPWzj3MbX9tPcaNIAAAANE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฌ๐ง
poundawebsiteltd
2026-06-26 21:58:41
(6 days ago)
Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 136.143.250.8 - - [26/Jun/2026:22 ...
show more
Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:80 136.143.250.8 - - [26/Jun/2026:22:58:39 +0100] GET /sftp-config.json HTTP/1.1 403 214 - Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
show less
Web App Attack
Anonymous
2026-06-26 21:42:05
(6 days ago)
Unauthorized access (80/tcp/http)
Port Scan
Web App Attack
๐ฉ๐ช
4server
2026-06-25 23:33:40
(6 days ago)
[FriJun2601:33:38.2739662026][security2:error][pid2588690:tid2588694][client136.143.250.8:0]ModSecur ...
show more
[FriJun2601:33:38.2739662026][security2:error][pid2588690:tid2588694][client136.143.250.8:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\\\\\\\\.vscode/\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"1189\"][id\"350593\"][rev\"1\"][msg\"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessstoredvscodepasswords\"][severity\"CRITICAL\"][hostname\"craniosacraltherapy.ch\"][uri\"/.vscode/sftp.json\"][unique_id\"aj260kcL_XiraE6ZN92H0gAAAAE\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-25 16:04:47
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 25 12:04:39.922624 2026] [security2:error] [pid 5794:tid 5794] [client 136.143.250.8:44132] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.orientaltb.com"] [uri "/sftp-config.json"] [unique_id "aj1Rl3O9iTuWpTadX2PLdgAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-15 03:41:54
(2 weeks ago)
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Port ...
show more
(mod_security) mod_security (id:210492) triggered by 136.143.250.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:41:50.197847 2026] [security2:error] [pid 22702:tid 22702] [client 136.143.250.8:5334] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.domainexecs.com"] [uri "/sftp-config.json"] [unique_id "ai90fq9YnXMRrTb2_umIFwAAACU"]
show less
Brute-Force
Bad Web Bot
Web App Attack