AbuseIPDB » 140.248.74.154
140.248.74.154
This IP was reported 3 times. Confidence of
Abuse
is 0% : ?
ISP
Fastly, Inc.
Usage Type
Data Center/Web Hosting/Transit
ASN
AS54113
Domain Name
fastly.com
Country
๐ฉ๐ช
Germany
City
Frankfurt am Main, Hesse
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
Important Note: 140.248.74.154 is an IP address from within
our whitelist belonging to the subnet
140.248.64.0/18 ,
which we identify as: "Fastly CDN" .
Whitelisted netblocks are typically owned by trusted entities, such as Google
or Microsoft who may use them for search engine spiders. However, these same entities
sometimes also provide cloud servers and mail services which are easily abused. Pay special
attention when trusting or distrusting these IPs.
IP Abuse Reports for 140.248.74.154 :
This IP address has been reported a total of
3
times from
2 distinct
sources.
140.248.74.154 was first reported on
February 1st 2026 , and the most recent report was
1 week ago
Old Reports:
The most recent abuse report for this IP address is from
1 week ago
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฎ๐ณ
Bharat Datacenter
2026-06-11 20:15:04
(1 week ago)
1: date=2026-06-12 time=01:43:24 eventtime=1781208805036180933 tz="+0530" logid="0720018432" type="u ...
show more
1: date=2026-06-12 time=01:43:24 eventtime=1781208805036180933 tz="+0530" logid="0720018432" type="utm" subtype="anomaly" eventtype="anomaly" level="alert" vd="root" severity="critical" srcip=140.248.74.154 srccountry="Germany" dstip=107.181.139.175 dstcountry="United Kingdom" srcintf="x2" srcintfrole="wan" sessionid=0 action="clear_session" proto=6 service="SCCP" count=163194 attack="tcp_syn_flood" srcport=19376 dstport=2000 attackid=100663396 policyid=1 policytype="DoS-policy" ref="http://www.fortinet.com/ids/VID100663396" msg="anomaly: tcp_syn_flood, 2001 > threshold 2000, repeats 163194 times since last log, pps 1926 of prior second" crscore=50 craction=4096 crlevel="critical"
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-03-23 19:10:56
(2 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.74.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.74.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 15:10:45.689900 2026] [security2:error] [pid 28887:tid 28887] [client 140.248.74.154:2188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/wp-config.php.2"] [unique_id "acGQNUT3yfLaC7oYM5k0lQAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-01 08:56:47
(4 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.74.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.74.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 03:54:51.812218 2026] [security2:error] [pid 22178:tid 22178] [client 140.248.74.154:58296] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/mail/.env"] [unique_id "aX8U24RX6RHO4dX4AtDLkgAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
3
of 3 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: