๐ฉ๐ช
4server
2026-07-15 08:52:51
(7 hours ago)
[WedJul1510:52:47.1567242026][security2:error][pid3186202:tid3186240][client188.214.199.70:0]ModSecu ...
show more
[WedJul1510:52:47.1567242026][security2:error][pid3186202:tid3186240][client188.214.199.70:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\\\\\\\\.vscode/\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"1189\"][id\"350593\"][rev\"1\"][msg\"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessstoredvscodepasswords\"][severity\"CRITICAL\"][hostname\"farmaciaferrari.ch\"][uri\"/.vscode/sftp.json\"][unique_id\"aldKX2kAAJvE7YvPMe0oLQAAAEI\"]
show less
Port Scan
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 04:57:36
(11 hours ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 00:57:32.670654 2026] [security2:error] [pid 518990:tid 518990] [client 188.214.199.70:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "levabet.xyz"] [uri "/sftp-config.json"] [unique_id "alcTPBXsLpZvG67Risd2XgAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-11 21:59:59
(3 days ago)
Auto-ban: 223 malicious requests on 2026-07-10 (e.g., env/backup probes, brute-force, or error burst ...
show more
Auto-ban: 223 malicious requests on 2026-07-10 (e.g., env/backup probes, brute-force, or error bursts).
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-11 04:09:31
(4 days ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 11 00:09:23.100990 2026] [security2:error] [pid 13905:tid 13905] [client 188.214.199.70:27988] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "partiklezoo.com"] [uri "/sftp-config.json"] [unique_id "alHB867cKcJ3w25ycIT-dQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
inlink.ltd
2026-07-11 03:22:13
(4 days ago)
dot file probe
Web App Attack
๐ง๐ช
cmbplf
2026-07-10 23:32:35
(4 days ago)
161 requests with url.path *config.json
Brute-Force
Bad Web Bot
๐ฉ๐ช
big-cloud.nl
2026-07-10 22:25:19
(4 days ago)
Try to access /.vscode/sftp.json
Web App Attack
๐ซ๐ฎ
000rosiu
2026-07-10 12:52:21
(5 days ago)
Triggered Cloudflare WAF (firewallCustom) from IT.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoi ...
show more
Triggered Cloudflare WAF (firewallCustom) from IT.
Action: BLOCK | Protocol: HTTP/1.1 (GET) | Endpoint: /.vscode/sftp.json | UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36 โข Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB
show less
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-09 23:04:38
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 19:04:34.465039 2026] [security2:error] [pid 8322:tid 8322] [client 188.214.199.70:34914] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "esslinger.us"] [uri "/sftp-config.json"] [unique_id "alApAikSKP1G1812zlU4AgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-09 12:30:01
(6 days ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 09 08:29:56.296651 2026] [security2:error] [pid 22372:tid 22372] [client 188.214.199.70:22896] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "esendeniz.net"] [uri "/sftp-config.json"] [unique_id "ak-URDo0srXaAaZuUtho1gAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-08 01:19:01
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 21:18:57.265619 2026] [security2:error] [pid 24726:tid 24726] [client 188.214.199.70:18126] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "enriquejezik.com"] [uri "/sftp-config.json"] [unique_id "ak2lgZ1r07A47LfXDTpwfwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 11:20:20
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 07:20:14.876282 2026] [security2:error] [pid 7896:tid 7896] [client 188.214.199.70:47146] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "encoremtmorris.com"] [uri "/info/jamfest//sftp-config.json"] [unique_id "akzg7mjJOka42vLikIzDTQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-07 08:09:46
(1 week ago)
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 188.214.199.70 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 07 04:09:41.394339 2026] [security2:error] [pid 941:tid 941] [client 188.214.199.70:22796] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/sftp-config.json" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "emsahara.org"] [uri "/sftp-config.json"] [unique_id "aky0RU3BUtV9kDv8gcAO0QAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
ELYAZ
2026-07-06 19:16:52
(1 week ago)
(y4) Failed scan -byebye- from 188.214.199.70 (IT/Italy/-): (CF_ENABLE)
Hacking
๐ฉ๐ช
big-cloud.nl
2026-07-06 18:02:04
(1 week ago)
Try to access /.vscode/sftp.json
Web App Attack