๐บ๐ธ
TPI-Abuse
2026-07-17 13:37:47
(12 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 09:37:40.233369 2026] [security2:error] [pid 24528:tid 24528] [client 140.248.227.11:2430] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.karendraughon.com"] [uri "/.git/HEAD"] [unique_id "alowJDXfhhrVa4vrY_To3AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
CoreTech srl
2026-07-17 02:48:56
(23 hours ago)
cloudlinux2 fail2ban: 2026-07-17 04:44:27,147 fail2ban.filter [1812]: INFO [plesk-modsecu ...
show more
cloudlinux2 fail2ban: 2026-07-17 04:44:27,147 fail2ban.filter [1812]: INFO [plesk-modsecurity] Found 140.248.75.120 - 2026-07-17 04:44:27cloudlinux2 fail2ban: 2026-07-17 04:44:27,137 fail2ban.filter [1812]: INFO [plesk-modsecurity] Found 140.248.75.120 - 2026-07-17 04:44:27cloudlinux2 fail2ban: 2026-07-17 04:44:32,029 fail2ban.filter [1812]: INFO [plesk-wordpress] Found 216.24.219.204 - 2026-07-17 04:44:31cloudlinux2 fail2ban: 2026-07-17 04:44:31,892 fail2ban.filter [1812]: INFO [plesk-wordpress] Found 136.144.19.55 - 2026-07-17 04:44:31cloudlinux2 fail2ban: 2026-07-17 04:44:42,688 fail2ban.filter [1812]: INFO [plesk-modsecurity] Found 140.248.227.11 - 2026-07-17 04:44:42cloudlinux2 fail2ban: 2026-07-17 04:44:42,677 fail2ban.filter [1812]: INFO [plesk-modsecurity] Found 172.111.80.11 - 2026-07-17 04:44:42cloudlinux2 fail2ban: 2026-07-17 04:44:44,052 fail2ban.filter [1812]: INFO [plesk-wordpress] Found 185.251.19.6 - 2026-07-17 04:44:
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 02:22:42
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 22:22:38.623971 2026] [security2:error] [pid 31909:tid 31909] [client 140.248.227.11:15082] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.ngmweb.com"] [uri "/.git/HEAD"] [unique_id "almR7rkGhpjlt7ip-6ObBgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 13:08:02
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:07:57.448355 2026] [security2:error] [pid 6388:tid 6388] [client 140.248.227.11:21552] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.unicomp.us"] [uri "/.git/config"] [unique_id "aljXrTwI0akUVoIRH9wKSAAAACA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:19:42
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:19:36.243835 2026] [security2:error] [pid 26589:tid 26589] [client 140.248.227.11:25466] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.gbcwoodbine.org"] [uri "/.git/HEAD"] [unique_id "alhb2J0kZvlgZLhvvUuLtwAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 07:47:40
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 03:47:36.267306 2026] [security2:error] [pid 24365:tid 24365] [client 140.248.227.11:56802] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.montebiancoltd.com"] [uri "/.git/config"] [unique_id "alc7GMIXdT4mboJQqt4n6QAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 05:47:04
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 01:46:57.617818 2026] [security2:error] [pid 7719:tid 7719] [client 140.248.227.11:43272] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.frickandfracks.com"] [uri "/.git/config"] [unique_id "alce0R6KOaQQUX2IkYGxgwAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 03:41:09
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 23:41:03.812476 2026] [security2:error] [pid 2906:tid 2906] [client 140.248.227.11:47892] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.expertprofessionalcleaners.com"] [uri "/.git/HEAD"] [unique_id "alcBTzrGgLzEUjgFk1wa_AAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-12 17:47:06
(5 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 12 13:47:01.107140 2026] [security2:error] [pid 21979:tid 21999] [client 140.248.227.11:10854] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "energy.brucejoell.com"] [uri "/.git/HEAD"] [unique_id "alPTFQRH1-Dn_Gmi-BCW8AAAAQI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
big-cloud.nl
2026-07-02 23:58:15
(2 weeks ago)
Try to access /.git/HEAD
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-03 18:30:38
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 03 14:30:34.863665 2026] [security2:error] [pid 19551:tid 19551] [client 140.248.227.11:5436] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/api/.env.sample"] [unique_id "afeUSmnWOFwbIn_aa2NKgQAAAAY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-03-23 19:23:23
(3 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 15:23:19.365883 2026] [security2:error] [pid 21322:tid 21322] [client 140.248.227.11:27870] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/shop/.env.staging"] [unique_id "acGTJ0zbV39HckO2MBLf3AAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-01 09:00:48
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.227.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 03:59:51.688746 2026] [security2:error] [pid 32750:tid 32750] [client 140.248.227.11:47754] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/FE/huey/.env"] [unique_id "aX8WBzS8YWZjruQlJPZ5xwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack