๐บ๐ธ
TPI-Abuse
2026-07-06 04:23:36
(4 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 06 00:23:32.086890 2026] [security2:error] [pid 19079:tid 19079] [client 140.248.75.157:49014] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.wies.name"] [uri "/.git/config"] [unique_id "akstxJExEfDrYIOyVfzZ4QAAAAg"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
wlt-blocker
2026-07-05 23:24:22
(9 hours ago)
Unauthorized access to webpage admin
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 19:03:32
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 15:03:28.665633 2026] [security2:error] [pid 21468:tid 21468] [client 140.248.75.157:3948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.mandel.vc"] [uri "/.git/config"] [unique_id "akqqgFVPJvzT2ODAfrQGMwAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 07:46:43
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 03:46:27.569853 2026] [security2:error] [pid 4654:tid 4659] [client 140.248.75.157:27880] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.peapage.productions"] [uri "/.git/HEAD"] [unique_id "akoL01UYWvwtD5Oaf2wLrgAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฟ
Antinson
2026-07-05 01:03:57
(1 day ago)
Requests to unauthorized or suspicious endpoints (.git, .well-known, .php, etc.)
Bad Web Bot
๐ฎ๐ฉ
Burayot
2026-07-04 19:50:03
(1 day ago)
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.157 (DE/Germany/-): 1 in ...
show more
LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 140.248.75.157 (DE/Germany/-): 1 in the last 3600 secs
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 07:02:11
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 03:02:05.394035 2026] [security2:error] [pid 26977:tid 26977] [client 140.248.75.157:27210] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.allafricaadventures.com"] [uri "/.git/config"] [unique_id "akiv7UQ85ysVI6BOmj_vhgAAABE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ต๐ฑ
srebrakowski.com
2026-07-04 03:04:29
(2 days ago)
crowdsec/waf-detected-exploits
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-04 02:41:05
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 22:40:58.466242 2026] [security2:error] [pid 10704:tid 10704] [client 140.248.75.157:21778] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.register-yacht-guernsey.com"] [uri "/.git/config"] [unique_id "akhyul7gst0LLGrsXp5tIwAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-03 05:07:23
(3 days ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐บ๐ธ
mccsoft.io
2026-07-03 01:14:54
(3 days ago)
Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). So ...
show more
Web application attack / vulnerability scanning against our public nginx web server (TCP 80/443). Source matched a blocked-path security rule (jail nginx-444); server returned HTTP 444 (connection closed without response). TCP three-way handshake completed (full HTTP request received).
show less
Bad Web Bot
Web App Attack
๐ฆ๐บ
[email protected]
2026-02-26 00:21:15
(4 months ago)
[Drupal AbuseIPDB module] Request path is blacklisted. /wp-login.php
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-02-01 08:59:07
(5 months ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.157 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 01 03:57:47.849695 2026] [security2:error] [pid 27447:tid 27447] [client 140.248.75.157:3058] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thelotsmokehouse.com"] [uri "/cp/.env"] [unique_id "aX8Vi52umkrVLmIfTx0XLwAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack