๐บ๐ธ
TPI-Abuse
2026-07-04 08:43:17
(16 hours ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 04:43:09.758098 2026] [security2:error] [pid 15086:tid 15086] [client 93.152.26.29:57316] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "odessatexas.us"] [uri "/sftp-config.json"] [unique_id "akjHnfKr4Cx9QNGgWdsJkgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 22:59:58
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 18:59:50.729091 2026] [security2:error] [pid 27145:tid 27145] [client 93.152.26.29:39244] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ocdentist.com"] [uri "/sftp-config.json"] [unique_id "akg-5pN1FJ7G8ItfhTbXdAAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 10:35:56
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 06:35:51.693554 2026] [security2:error] [pid 8302:tid 8302] [client 93.152.26.29:54340] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.proprocessor.com"] [uri "/deerprocessingequipment.htm/sftp-config.json"] [unique_id "aivhB4IKSZnkQpAbq0GVyQAAABM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 09:38:34
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:38:27.280269 2026] [security2:error] [pid 11345:tid 11358] [client 93.152.26.29:35354] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deeplykneaded.net"] [uri "/sftp-config.json"] [unique_id "aivTk5S1QDTOqjNhm8-KdgAAAEs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 06:08:40
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 02:08:35.196104 2026] [security2:error] [pid 28043:tid 28043] [client 93.152.26.29:62428] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deckmasterscompany.com"] [uri "/sftp-config.json"] [unique_id "aiuiY39bY3Us_X4kVm2XtQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 03:44:48
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 23:44:42.769300 2026] [security2:error] [pid 12978:tid 12996] [client 93.152.26.29:9276] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "debeneesse.com"] [uri "/sftp-config.json"] [unique_id "aiuAqrv7gV7GjZWRHFGbiAAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 02:53:47
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 22:53:43.205858 2026] [security2:error] [pid 27853:tid 27853] [client 93.152.26.29:53834] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deargrampy.net"] [uri "/sftp-config.json"] [unique_id "ait0tzHhCFGzTRRyvh-SOwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-12 02:32:01
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 22:31:53.866760 2026] [security2:error] [pid 21416:tid 21416] [client 93.152.26.29:39578] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "deanfountain.com"] [uri "/sftp-config.json"] [unique_id "aitvmetIvPl4LCfUf9bJxwAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-06-12 00:56:02
(3 weeks ago)
Try to access /.vscode/sftp.json
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 22:58:28
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 18:58:22.155425 2026] [security2:error] [pid 19154:tid 19154] [client 93.152.26.29:53544] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dcsteven.com"] [uri "/sftp-config.json"] [unique_id "ais9jiojuPLPh2_4AQZSNgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 21:51:52
(3 weeks ago)
(mod_security) mod_security (id:949110) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:949110) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 17:51:45.608062 2026] [security2:error] [pid 25621:tid 25621] [client 93.152.26.29:2832] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "dcagroupusa.com"] [uri "/sftp-config.json"] [unique_id "aist8aWkEpo2KxdPVJ3_QQAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 20:53:23
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 16:53:20.257872 2026] [security2:error] [pid 13197:tid 13197] [client 93.152.26.29:24412] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dbfitwell.com"] [uri "/sftp-config.json"] [unique_id "aisgQEQnGZLjLLhHcxX28wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 19:28:58
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 15:28:50.084828 2026] [security2:error] [pid 23530:tid 23530] [client 93.152.26.29:25102] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "daylightingit.com"] [uri "/sftp-config.json"] [unique_id "aisMclkwXEx5R79hNmfjLwAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 18:08:07
(3 weeks ago)
(mod_security) mod_security (id:210580) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210580) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 14:08:00.364439 2026] [security2:error] [pid 892:tid 892] [client 93.152.26.29:17520] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "sftp-config.json" at REQUEST_COOKIES:handl_landing_page. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/08_Global_Other.conf"] [line "57"] [id "210580"] [rev "2"] [msg "COMODO WAF: OS File Access Attempt||davisound.com|F|2"] [data "Matched Data: sftp-config.json found within REQUEST_COOKIES:handl_landing_page: http:/daveharsh.com/sftp-config.json"] [severity "CRITICAL"] [tag "CWAF"] [tag "Other"] [hostname "davisound.com"] [uri "/.vscode/sftp.json"] [unique_id "air5gPbpjNn5kMwgBl_gjwAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-11 16:47:17
(3 weeks ago)
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadb ...
show more
(mod_security) mod_security (id:210492) triggered by 93.152.26.29 (93-152-26-29.scldsl.managedbroadband.co.uk): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 12:47:10.748099 2026] [security2:error] [pid 5784:tid 5784] [client 93.152.26.29:10824] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "davidharrisgriffith.com"] [uri "/sftp-config.json"] [unique_id "airmjhIPxDlyC6ZXOG09gwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack