๐บ๐ธ
TPI-Abuse
2026-07-18 11:29:04
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 18 07:28:56.493869 2026] [security2:error] [pid 3820:tid 3820] [client 140.248.75.168:19532] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "coiledtubingdrilling.com.antech.net"] [uri "/.git/HEAD"] [unique_id "altjeOKqI0RNh0blsQRhSQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-18 01:03:56
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 21:03:49.432005 2026] [security2:error] [pid 16674:tid 16674] [client 140.248.75.168:50288] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.riccibuilders.net"] [uri "/.git/config"] [unique_id "alrQ9eYkCk5VWOqWVE51UgAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 09:54:50
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 05:54:46.459783 2026] [security2:error] [pid 30086:tid 30086] [client 140.248.75.168:16440] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "fwa51.com"] [uri "/.git/HEAD"] [unique_id "aln75uowxTjynrXYVf4XpQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 07:41:52
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 17 03:41:49.127747 2026] [security2:error] [pid 9885:tid 9885] [client 140.248.75.168:11932] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.johnandramonadunn.com"] [uri "/.git/HEAD"] [unique_id "alncvS2cgb4R2jwPsjyOOgAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
CoreTech srl
2026-07-17 04:08:56
(1 day ago)
cloudlinux2 fail2ban: 2026-07-17 06:04:00,034 fail2ban.filter [1598]: INFO [plesk-modsecu ...
show more
cloudlinux2 fail2ban: 2026-07-17 06:04:00,034 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.168 - 2026-07-17 06:03:59cloudlinux2 fail2ban: 2026-07-17 06:04:00,832 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 9.154.222.16 - 2026-07-17 06:04:00cloudlinux2 fail2ban: 2026-07-17 06:04:00,045 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 140.248.75.168 - 2026-07-17 06:03:59cloudlinux2 fail2ban: 2026-07-17 06:04:23,301 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 9.154.222.16 - 2026-07-17 06:04:23cloudlinux2 fail2ban: 2026-07-17 06:05:09,914 fail2ban.actions [1598]: NOTICE [plesk-modsecurity] Ban 9.154.222.16cloudlinux2 fail2ban: 2026-07-17 06:05:09,922 fail2ban.filter [1598]: INFO [recidive] Found 9.154.222.16 - 2026-07-17 06:05:09cloudlinux2 fail2ban: 2026-07-17 06:05:09,206 fail2ban.filter [1598]: INFO [plesk-modsecurity] Found 9.154.222.16 - 2026-07-17 06:05:09cloudlinux2 fail2ban: 2026-07-1
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-17 03:59:10
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 23:59:05.284131 2026] [security2:error] [pid 221309:tid 221309] [client 140.248.75.168:8450] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "borzoi-color.borzois.com"] [uri "/.git/HEAD"] [unique_id "almoiQBWzaG3GvngEc1JfAAAAA4"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
masterguru
2026-07-17 02:40:25
(1 day ago)
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.248.75.168 (GB/United Kingdom/-): ...
show more
(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 140.248.75.168 (GB/United Kingdom/-): 1 in the last 3600 secs (0-195)
show less
Hacking
๐ฌ๐ง
consul.to
2026-07-17 01:53:25
(1 day ago)
Web attack/malicious scanning detected
Web App Attack
๐ฎ๐น
VHosting
2026-07-17 01:25:04
(1 day ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 12:26:19
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 08:26:13.940747 2026] [security2:error] [pid 30190:tid 30190] [client 140.248.75.168:40524] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.imerka.com.mx"] [uri "/.git/HEAD"] [unique_id "aljN5YgLZJcuS6aXi48v3wAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 07:53:42
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 03:53:39.919824 2026] [security2:error] [pid 19040:tid 19040] [client 140.248.75.168:31690] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "exresearch.com.ieas.org"] [uri "/.git/HEAD"] [unique_id "aliOA_7NlMKgxkSgY3iDbgAAAAQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
CBJ
2026-07-16 07:20:16
(2 days ago)
fail2ban: apache-filepath-recon
...
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 05:26:02
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 01:25:59.300616 2026] [security2:error] [pid 22051:tid 22051] [client 140.248.75.168:46010] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.boens.org"] [uri "/.git/config"] [unique_id "alhrZxoNaVgR1CkkUmpeAwAAAAk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-16 04:47:48
(2 days ago)
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Por ...
show more
(mod_security) mod_security (id:210492) triggered by 140.248.75.168 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 16 00:47:43.720672 2026] [security2:error] [pid 6644:tid 6644] [client 140.248.75.168:5726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.adona.org"] [uri "/.git/config"] [unique_id "alhib8yAAPUphJrvBxh4uAAAABI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2026-07-16 04:46:05
(2 days ago)
[16/Jul/2026:04:46:04 +0000] host=voyager.lovelyrender.app server=voyager.lovelyrender.app ip=140.24 ...
show more
[16/Jul/2026:04:46:04 +0000] host=voyager.lovelyrender.app server=voyager.lovelyrender.app ip=140.248.75.168 method=GET req=/.git/HEAD uri=/index.php status=200 bytes=5309 rt=0.028 urt=0.028 ref="-" ua="Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
...
show less
Web App Attack
Bad Web Bot