๐ฎ๐น
CoreTech srl
2026-07-17 07:08:58
(4 hours ago)
cloudlinux2 fail2ban: 2026-07-17 09:03:46,254 fail2ban.filter [1598]: INFO [plesk-modsecu ...
show more
cloudlinux2 fail2ban: 2026-07-17 09:03:46,254 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.154 - 2026-07-17 09:03:46cloudlinux2 fail2ban: 2026-07-17 09:03:46,270 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.154 - 2026-07-17 09:03:46cloudlinux2 fail2ban: 2026-07-17 09:03:59,080 fail2ban.actions [1598]: NOTICE [plesk-modsecurity] Ban 171.78.208.142cloudlinux2 fail2ban: 2026-07-17 09:03:59,088 fail2ban.filter [1598]: INFO [recidive] Found 171.78.208.142 - 2026-07-17 09:03:59cloudlinux2 fail2ban: 2026-07-17 09:03:59,022 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 171.78.208.142 - 2026-07-17 09:03:59cloudlinux2 fail2ban: 2026-07-17 09:05:36,329 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.93 - 2026-07-17 09:05:36cloudlinux2 fail2ban: 2026-07-17 09:05:36,868 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.189 - 2026-07-17 09:05:36cloudlinux2 fail2ban:
show less
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-17 04:03:00
(8 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 00:02:56.041878 2026] [security2:error] [pid 3305265:tid 3305265] [client 140.248.75.154:15176] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "astariamusic.com"] [uri "/.git/HEAD"] [unique_id "almpcHqzs_K9upJr8-3p2gAAAAM"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 02:59:43
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 22:59:36.093108 2026] [security2:error] [pid 8076:tid 8076] [client 140.248.75.154:23342] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.janajjmcgraw.com"] [uri "/.git/config"] [unique_id "almamN3onwDQJhWVdSewsgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 02:30:20
(9 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 22:30:14.058750 2026] [security2:error] [pid 26474:tid 26474] [client 140.248.75.154:16040] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.haroparke.com"] [uri "/.git/HEAD"] [unique_id "almTth267JEJsCj9jwy13QAAAB8"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:25:04
(10 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 07:04:14
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 03:04:11.139415 2026] [security2:error] [pid 5348:tid 5348] [client 140.248.75.154:38280] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dylancreates.org"] [uri "/.git/config"] [unique_id "aliCa5OE0fYCT4s6_ZUrTwAAAB0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:39:46
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:39:39.695598 2026] [security2:error] [pid 26154:tid 26154] [client 140.248.75.154:55208] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.tigerpathteam.org"] [uri "/.git/HEAD"] [unique_id "alhgizEpPPDiRpUlaVJMdgAAABU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:12:06
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:12:02.089981 2026] [security2:error] [pid 30698:tid 30698] [client 140.248.75.154:64566] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.blackberrycircle.org"] [uri "/.git/HEAD"] [unique_id "alhaEhcvRfqx22S16V53IAAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 03:27:04
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 23:26:59.560332 2026] [security2:error] [pid 26728:tid 26728] [client 140.248.75.154:64242] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "certifiedfarmersmarkets.org"] [uri "/.git/config"] [unique_id "alhPg7WqaQwS21vCXh0mUwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 07:18:50
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 15 03:18:43.194675 2026] [security2:error] [pid 29790:tid 29790] [client 140.248.75.154:46000] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.newcitypark.com"] [uri "/.git/config"] [unique_id "alc0UzUP9RRgWGn9cQg7awAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-15 03:53:37
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jul 14 23:53:31.526261 2026] [security2:error] [pid 1842658:tid 1842658] [client 140.248.75.154:11140] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.goatedlottosecrets.com"] [uri "/.git/config"] [unique_id "alcEO3rls2Xc1TzM9S70bAAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 22:13:47
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 18:13:42.077037 2026] [security2:error] [pid 24922:tid 24922] [client 140.248.75.154:51922] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "aoklandco.com.interforce.com"] [uri "/.git/HEAD"] [unique_id "alVjFlagAYCs00Pp4G2UOgAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-13 14:43:18
(3 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.154 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 13 10:43:11.568576 2026] [security2:error] [pid 20159:tid 20159] [client 140.248.75.154:14770] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.tckgbookkeeping.biz"] [uri "/.git/config"] [unique_id "alT5f9ddr_XPh5QvPh6MdAAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฏ๐ต
beon
2026-07-13 11:59:34
(4 days ago)
[DateTime=>2026-07-13T11:59:34Z (UTC)] , [HoneyPot_Hits=>twice] , [HoneyPots=>/.git/config, /.git/HE ...
show more
[DateTime=>2026-07-13T11:59:34Z (UTC)] , [HoneyPot_Hits=>twice] , [HoneyPots=>/.git/config, /.git/HEAD] , [total_Hits=>twice]
show less
Bad Web Bot
Web App Attack
Hacking
๐ซ๐ท
masterguru
2026-07-13 04:51:49
(4 days ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.248.75.154 (GB/United Kingdom/-): ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.248.75.154 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195)
show less
Hacking