๐บ๐ธ
TPI-Abuse
2026-07-18 21:41:25
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 17:41:19.111972 2026] [security2:error] [pid 3404:tid 3404] [client 140.248.75.116:13060] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.susanleeward.com"] [uri "/.git/config"] [unique_id "alvy_2G2UXGb6RvNX76mdwAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-18 21:18:40
(4 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 21:14:22
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 17:14:18.082970 2026] [security2:error] [pid 995993:tid 995993] [client 140.248.75.116:19806] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.glamorgirl.net"] [uri "/.git/config"] [unique_id "alvsqnYtrtsTjQsQ4H9XfwAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 16:04:42
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 12:04:36.320232 2026] [security2:error] [pid 1023114:tid 1023114] [client 140.248.75.116:9452] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.phenoxcaribbean.com"] [uri "/.git/config"] [unique_id "alpSlOwPB1ljVW1bdQ4SwgAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Holger
2026-07-17 13:41:54
(1 day ago)
URL probing: GET /.git/config
Web App Attack
๐ฎ๐น
CoreTech srl
2026-07-17 06:33:57
(1 day ago)
cloudlinux2 fail2ban: 2026-07-17 08:29:39,277 fail2ban.filter [1598]: INFO [plesk-modsecu ...
show more
cloudlinux2 fail2ban: 2026-07-17 08:29:39,277 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.21 - 2026-07-17 08:29:38cloudlinux2 fail2ban: 2026-07-17 08:29:39,287 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.21 - 2026-07-17 08:29:38cloudlinux2 fail2ban: 2026-07-17 08:29:56,305 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 34.90.29.14 - 2026-07-17 08:29:56cloudlinux2 fail2ban: 2026-07-17 08:30:01,139 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.116 - 2026-07-17 08:30:00cloudlinux2 fail2ban: 2026-07-17 08:30:04,328 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.134 - 2026-07-17 08:30:04cloudlinux2 fail2ban: 2026-07-17 08:30:04,340 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.134 - 2026-07-17 08:30:04cloudlinux2 fail2ban: 2026-07-17 08:30:01,128 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.116 - 2026-07-17 0
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-17 06:06:12
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 02:06:07.270904 2026] [security2:error] [pid 444357:tid 444357] [client 140.248.75.116:34442] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.marinawestyachtclub.com"] [uri "/.git/HEAD"] [unique_id "alnGT635TqsjRWG35_47jgAAAA8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
McClay
2026-07-17 05:34:04
(1 day ago)
Illegal access attempt:140.248.75.116 - - [17/Jul/2026:07:34:03 +0200] "GET /.git/config HTTP/1.1" 4 ...
show more
Illegal access attempt:140.248.75.116 - - [17/Jul/2026:07:34:03 +0200] "GET /.git/config HTTP/1.1" 401 5234 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
...
show less
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 02:32:16
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 22:32:10.885606 2026] [security2:error] [pid 7587:tid 7587] [client 140.248.75.116:9906] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.rlysue.com"] [uri "/.git/config"] [unique_id "almUKjrIwsHEWdQJxT72XwAAACY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:25:04
(2 days ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 13:00:51
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 09:00:47.466431 2026] [security2:error] [pid 28913:tid 28913] [client 140.248.75.116:21110] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.intellian.us"] [uri "/.git/config"] [unique_id "aljV_6Lf4D85Bfx9uwc8JAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-16 07:32:27
(2 days ago)
"GET /.git/config HTTP/1.1"
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 05:33:30
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:33:22.994268 2026] [security2:error] [pid 30788:tid 30788] [client 140.248.75.116:12842] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.mroxygen.org"] [uri "/.git/config"] [unique_id "alhtIuKR6fCk0fP4CE1E_gAAABk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 05:05:30
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:05:24.972942 2026] [security2:error] [pid 15123:tid 15123] [client 140.248.75.116:2684] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.pnwdso.org"] [uri "/.git/config"] [unique_id "alhmlDo1rxJEbdGBd3MrRAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:34:58
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.116 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:34:52.383532 2026] [security2:error] [pid 32266:tid 32266] [client 140.248.75.116:42822] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.sundollsforever.org"] [uri "/.git/HEAD"] [unique_id "alhfbOjEce33dOmkjfZtcAAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack